Hi all,
For a project at work I need to setup a LDAP server and make it possible to
authenticate allot of (yet unwriten) applications.
I have been reading for the past 2 days on the internet about this issue but
I have the feeling I do not have enough knowledge to provide a correct
setup.
The idea is that there are a few different ou¹s holding several users.
These users all hold login-profiles for the applications we are developping
right now.
Alldue this sounds kinda logic, I do not exactly understand how the
authentication should take place.
Lets say:
Dn=domain,dn=com
ou=test
-user
name=me
pass=secret
--app_1
username=appuser
password=appSecret
ap_related_opt=variable
--app_2
username=app2user
password=app2secret
other_ap_related_opt=variable
--app_3
username=app3user
password=app3secret
other_ap_related_opt=variable
-user /// Next user holding the same structure.
Now I wrote a master_app that should handle the authentication using LDAP.
It received the ³me² username with corresponding password and must fetch a
list of profiles used for the requested applications (say app_1 and app_2)
I¹m still in doubt about the app username and password, as without a
matching profile, application access would be denied anyways so I could
store some acl values to (is that right?)
Am I on the right track here, any ideas sugestions links or examples?
Thanks for reading!
Flip Vernooij