[jira] Commented: (OFBIZ-811) Authentication using LDAP

Fri, 16 Mar 2007 09:58:29 -0800 

    [ 
https://issues.apache.org/jira/browse/OFBIZ-811?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_12481715
 ] 

Mohamed Amine AZZI commented on OFBIZ-811:
------------------------------------------

Adrian, Si

thanks for your comments, but there is a problem with one of your suggestions:

- Update UserLogin entity on the Ofbiz database. I don't think this idea would 
please some customers as they don't want any system to steal their passwords 
and save them elsewhere from the ldap.

For other comments, I think it is a good idea to make a sparate service for 
ldap authentification.

For the library I used the one downloaded from 
http://www.mozilla.org/directory/ it's licenced under Mozilla licence common 
creative licence, I hope it's compatible with Apache, otherwise we would use 
the one suggested by Adrian "Apache directory", I'll check that tomorrow 
inchallah


> Authentication using LDAP
> -------------------------
>
>                 Key: OFBIZ-811
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-811
>             Project: OFBiz (The Open for Business Project)
>          Issue Type: New Feature
>          Components: framework
>         Environment: all
>            Reporter: Mohamed Amine AZZI
>         Assigned To: Si Chen
>            Priority: Trivial
>         Attachments: ldap_properties.patch, LoginServices.java.diff, 
> security.properties.diff
>
>
> this feature, would enable Ofbiz users to authenticate their users using an 
> LDAP. I developed that change in response to a customer request who wanted 
> his employees to use the same passwords they use when openning a windows 
> session.
> the solution was to recreate the same usernames in the Party manager with an 
> unused password. and redirect the authentication to the LDAP when needed. The 
> choice is made in the security.properties file. all parameters needed to 
> connect to the LDAP are there also.
> After authentication all authorizations are taken out from the Party manager. 
>  This would give the same feature used by SharePoint, which is called cross 
> privileges
> the change is minor as you would see, but very helpfull for people needing 
> the same feature.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to