[jira] Commented: (OFBIZ-811) Authentication using LDAP

Fri, 23 May 2008 08:28:21 -0700 

    [ 
https://issues.apache.org/jira/browse/OFBIZ-811?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12599400#action_12599400
 ] 

Paul Anderson commented on OFBIZ-811:
-------------------------------------

Mohamed, Adrian, Si,

Has any further progress been made on this issue?

I am working on a project which is going to need authentication  via LDAP and I 
am desperatly trying to sort out a working solution, even if it's cobbled 
together in the short term.

I can connect and authenticate using the files and code put forward in this 
topic, but the next step is to be able to get a list of all the groups that a 
member belongs to from AD so that OFBiz can decide if the user has permissions 
for the requested resource. It is getting the list of all groups for a member 
from AD that I am really struggling with.... any help would be much appreciated.

Kind Regards,
Paul

> Authentication using LDAP
> -------------------------
>
>                 Key: OFBIZ-811
>                 URL: https://issues.apache.org/jira/browse/OFBIZ-811
>             Project: OFBiz
>          Issue Type: New Feature
>          Components: framework
>         Environment: all
>            Reporter: Mohamed Amine AZZI
>            Assignee: Si Chen
>            Priority: Trivial
>         Attachments: ldap_authentication.patch, ldap_properties.patch, 
> LoginServices.java, LoginServices.java.diff, security.properties.diff
>
>
> this feature, would enable Ofbiz users to authenticate their users using an 
> LDAP. I developed that change in response to a customer request who wanted 
> his employees to use the same passwords they use when openning a windows 
> session.
> the solution was to recreate the same usernames in the Party manager with an 
> unused password. and redirect the authentication to the LDAP when needed. The 
> choice is made in the security.properties file. all parameters needed to 
> connect to the LDAP are there also.
> After authentication all authorizations are taken out from the Party manager. 
>  This would give the same feature used by SharePoint, which is called cross 
> privileges
> the change is minor as you would see, but very helpfull for people needing 
> the same feature.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to