Exactly! A little while back, I started re-familiarizing myself with ApacheDS, the LDAP API, and trying to do a basic mapping of an inetOrgPerson -> SCIM object, and then something else popped up and distracted me.
We could probably also start out with a more _limited_ SCIM server too, start with supporting just users, then add groups, then possibly add support for various extensions (Enterprise users, etc) My gut is telling me we should stick this in a separate repo, until we have something that is demo-able, though maybe a longer lived branch in SCIMple would work too (there shouldn't be any merge conflicts, if we add a new module in the. `scim-server-examples` folder.) I'd love to hear other thoughts/opinions (and what would work best for other folks)! e.g. we could potentially use this project as a showcase example for other Directory projects (which might hint at a separate repo) Or maybe there is a favored schema we should target first 🤷 On Sun, Sep 22, 2024 at 2:13 PM Shawn McKinney <[email protected]> wrote: > > > > On Sep 10, 2024, at 9:05 AM, Brian Demers <[email protected]> wrote: > > > > IMHO, one of the issues in making a _generic_ solution like this is > (IMHO) > > everyone does LDAP a little differently (different schemas, extensions, > > structure, etc) > > But this could start out as a simple example, supporting a single schema, > > and then grow into a more robust solution. > > Hello, > > I’ve been thinking about this too. One that can map from a generic > taxonomy exposed to the client to a more specific schema on the backend. > > Client < — > scimple -> generic user plug-in < — > ldap > > The plug-in would include > > - ldapv3 connection pooling > - configuration > - schema mapping > > Would the config use dictionaries to do this mapping? > > name: user > objects: inetOrgPerson, myOrgPerson > string: uid > string: description > base64: userPassword > string: ou > ... > game: group > objects: groupOf... > member: mymembers > ... > > Since scimple’s java so would be the connector. > > Anyway, these have been percolating for a while. Would like to find some > time to start implementing. > > Cheers > > — > Shawn
