Jump to:

17452 Posts in 4473 Topics by 1971 members

Archive

SilverStripe Forums » Archive » LDAP support for Silverstripe

Our old forums are still available as a read-only archive.

Moderators: martimiz, Sean, biapar, Willr, Ingo, simon_w

Page: 1 2 3 4
Go to End
Author Topic: 13493 Views
  • lancer
    Avatar
    57 Posts

    Re: LDAP support for Silverstripe Link to this post

    OK, nothing much to do today so....

    I recoded the LDAP module into the Simple Authentication Module. It has 2 drivers now, LDAP and IMAP/POP3. Not submitting this to trac yet, since it isn't finished. It works, but I still need to do the internationalization (and maybe more drivers).

    Putting it here to give people a chance to look at it first and/or play with it. Unpack it in your silverstripe root dir and look at the documentation to do the rest.

  • Tim
    Avatar
    Core Development Team
    201 Posts

    Re: LDAP support for Silverstripe Link to this post

    Dude, you rock! Keep up the great work

  • Ingo
    Avatar
    Forum Moderator
    801 Posts

    Re: LDAP support for Silverstripe Link to this post

    wow, looks very good so far! thanks for your work

    one little suggestion: the naming of "SimpleAuthenticator" is a bit confusing.
    we currently have MemberAuthenticator (arguably the "simplest" method) and OpenIDAuthenticator. especially if we decide to include ldap-auth into sapphire (rather than a module), it doesn't really aid the developer in choosing the preferred method. how about ServiceAuthenticator? ProtocolAuthenticator? DirectoryAuthenticator?

    ingo

  • lancer
    Avatar
    57 Posts

    Re: LDAP support for Silverstripe Link to this post

    Then I simply go with what it reads on the login page tab; "External Authenticator". That OK?

    Some suggestions for useful drivers? (Like SMB/SMTP, but they probably won't work without some PEAR modules. AD should be supported already, but I forgot the default settings for it so I should do dome digging around in my archives).

    Also for 0.2 I plan to have a user autocreate possibility (with preset group memberships and permissions).

    After the renaming I'll continue this thread in the "Modules" topic and create a wiki page for documentation.

  • Markus
    Avatar
    Google Summer of Code Hacker
    152 Posts

    Re: LDAP support for Silverstripe Link to this post

    I would suggest to name them POP3Authenticator, IMAPAuthenticator, LDAPAuthenticator, ...

  • Tim
    Avatar
    Core Development Team
    201 Posts

    Re: LDAP support for Silverstripe Link to this post

    SMB is really interesting idea, I may be miss understanding it, but would that in theory enable us to browse a remote SMB directory from within a SilverStripe site? If so that opens up a wide range of possibilities in terms of Intranet applications, for example if a company wanted open up part of their file server as as part of an extranet (which we've had a number of requests for in the past).

    It also brings up the bigger issue of other "file systems" - for example, some video based content which we stream for clients, we host on Streaming net , a mini Alkami service, other clients with lots of big files may want to host those files on the Amazon S3 service as the bandwidth and storage is cheaper than what can be offered by most web hosts.

    So, in the future I'm guessing we'll need to deal with a number of "files" areas, beyond "files on your webserver"..

    ...another file based authentication protocol to think about is WebDAV.

    Anyway, really excited by your work

  • lancer
    Avatar
    57 Posts

    Re: LDAP support for Silverstripe Link to this post

    @Markus, not possible. It is one module (that needs the name) with 2 different drivers and maybe more in the future.

    @Tim, the PEAR stuff I worked with was just for password. If you want that kind of functionality I think you'd have to add a filesystem virtualization layer to SilverStripe. The best and easiest filesystem types to add first would be DAV and ftp, but I think you will need PEAR/PECL modules to do it (unless you want to do it all by yourself). That means that this will probably only be usable for "managed" servers. Those servers already have an alternative. Either mount SMB/CIFS natively or use FUSE (http://fuse.sourceforge.net), which is becoming more common in the newer Linux distributions (which you'd already need because of the PHP5 requirement). I use it personally to mount my network homedir, using only the ssh daemon server side. Windows users are out of luck though (but hey, Windows certainly supports SMB natively ;-) )

    ---> Continued in Modules with new pre release

    13493 Views
Page: 1 2 3 4
Go to Top

Want to know more about the company that brought you SilverStripe? Then check out SilverStripe.com

Comments on this website? Please give feedback.