Matt Raible wrote:
So, does this mean that Roller is more portable (between servers) when
using Acegi, but if you want to leverage all the features of an app
server, CMA is better?
I think that's right, but the problem is that Tomcat doesn't have a huge
amount of flexibility when it comes to LDAP support, so the bigger
question here is what is the preferred container for Roller. If it is
tomcat then I think Roller still needs Acegi for the features that are
in Acegi and not in Tomcat.
1. How are you doing remember me? I'm guessing SSO handles this?
yup, SSO for enterprises is a whole business unto itself, so we don't
worry about implementing something like remember me in the app itself.
2. How do you handle SSL Switching?
This is handled by the apache server in front of the app server. In
general we build all apps to be just deployed on http without any
switching. We then detail the redirect rules that should be in the
apache server.
3. Do you allow admins to manage users from the UI - or did you
disable that feature completely?
disabled it completely
Rob
