On Mon, Mar 3, 2014 at 10:44 PM, Glen Mazza <[email protected]> wrote:
> Hi Team, I'm getting close to reactivating LDAP with Roller trunk ( > https://issues.apache.org/jira/browse/ROL-1987) -- I took a recent user's > email configuration and updated it for the Spring Security 3 that Roller > uses. I plan on updating the security.xml with commented-out LDAP > configuration to make it easier for users to switch to LDAP if they wish. > > One issue is what should be done when a user is defined in the LDAP > directory but not in the roller tables (userrole and rolleruser) e.g., a > new employee who hasn't created his first blog yet. The default role the > code gives them ("register") indicates I should redirect them to the > registration page (Register.jsp) where they fill out all information except > password (Register.jsp is already coded to hide the password fields when > SSO is activated.) I think I'll do that, another option though is to skip > the registration screen and just automatically populate the rolleruser and > userrole tables with default info so the user can jump in and create his > first blog without registering first. I guess the former is the more > robust solution, as it allows us to collect information possibly not > available within the LDAP directory. > Yes, that is how the LDAP registration is supposed to work. I think there is some conditional logic in the JSP pages that enforces that "except for password" thing. - Dave
