[jbossseam-issues] [JBoss JIRA] Created: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
8:24 p.m.
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:10 a.m.
New subject: [jbossseam-issues] [JBoss JIRA] Commented: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=comments#action_12397791 ]
Joshua Partogi commented on JBSEAM-2559:
----------------------------------------
Will this depend on Appserver JAAS resource or will Seam connect to LDAP directly?
It would be great if Seam be able to connect to LDAP directly so we can deploy our
application on any Appserver.
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:24 a.m.
New subject: [jbossseam-issues] [JBoss JIRA] Commented: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=comments#action_12397792 ]
Shane Bryzak commented on JBSEAM-2559:
--------------------------------------
Seam will connect to the LDAP server directly. I've done this before, it's pretty
straight forward and will allow for the most portability. The most important thing is to
make the identity store configurable enough, as people structure their directories in all
sorts of different ways.
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
12:59 p.m.
New subject: [jbossseam-issues] [JBoss JIRA] Updated: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=all ]
Norman Richards updated JBSEAM-2559:
------------------------------------
Fix Version/s: 2.1.0.GA
(was: 2.1.0.A1)
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:06 p.m.
New subject: [jbossseam-issues] [JBoss JIRA] Commented: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=comments#action_12399294 ]
Joshua Partogi commented on JBSEAM-2559:
----------------------------------------
Wow cool. Can't wait for this feature ready. :)
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6:29 p.m.
New subject: [jbossseam-issues] [JBoss JIRA] Updated: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=all ]
Pete Muir updated JBSEAM-2559:
------------------------------
Fix Version/s: 2.1.0.GA
(was: 2.1.0.BETA1)
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
10:01 p.m.
New subject: [jbossseam-issues] [JBoss JIRA] Closed: (JBSEAM-2559) Create an LDAP Identity Store for Identity Management
[ http://jira.jboss.com/jira/browse/JBSEAM-2559?page=all ]
Shane Bryzak closed JBSEAM-2559.
--------------------------------
Resolution: Done
This feature is now completed, and tested extensively using OpenLDAP. If there are any
brave souls who could test this against their own LDAP server any feedback would be
greatly appreciated. Configuration is done in components.xml, and *most* of the
attributes should be pretty obvious. Here's an example:
<identity-management:ldap-identity-store
server-address="60.241.32.50"
bind-DN="cn=Manager,dc=bryzak,dc=com"
bind-credentials="secret"
user-DN-prefix="uid="
user-DN-suffix=",ou=Person,dc=bryzak,dc=com"
role-DN-prefix="cn="
role-DN-suffix=",ou=Roles,dc=bryzak,dc=com"
user-context-DN="ou=Person,dc=bryzak,dc=com"
role-context-DN="ou=Roles,dc=bryzak,dc=com"
user-role-attribute="roles"
role-name-attribute="cn"
user-object-classes="person,uidObject"
enabled-attribute="enabled"
/>
It also needs to be hooked up to the identity manager:
<identity-management:identity-manager
identity-store="#{ldapIdentityStore}"/>
Create an LDAP Identity Store for Identity Management
-----------------------------------------------------
Key: JBSEAM-2559
URL: http://jira.jboss.com/jira/browse/JBSEAM-2559
Project: JBoss Seam
Issue Type: Feature Request
Components: Security
Reporter: Shane Bryzak
Assigned To: Shane Bryzak
Fix For: 2.1.0.GA
We need one of these, as many people store their users and roles in LDAP. We should
ensure that it works with Red Hat Directory Server
(http://www.redhat.com/directory_server/) and OpenLDAP.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6065
days inactive
6125
days old
6 comments
4 participants
participants (4)
-
Joshua Partogi (JIRA) -
Norman Richards (JIRA)
-
Pete Muir (JIRA)
-
Shane Bryzak (JIRA)