Description
ldap bind authn for ws
nope, i'm good with apps beating on my ldap server - it's what it's there for. if you wanna provide it as an option for others to consider - sure!
/mrg
On May 8, 2013, at 11:56 AM, Chris Hyzer
wrote:
> One thing I do is hash the authn header and keep in a cache mapped to the username for a few minutes, so it doesn't have to authn each call, do you want that in yours? Thanks,
> Chris
>
> ----Original Message----
> From: grouper-users-request grouper-users-request On Behalf Of Michael R. Gettes
> Sent: Wednesday, May 08, 2013 11:53 AM
> To: Chris Hyzer
> Cc: grouper-users
> Subject: [grouper-users] Re: Web Services Authentication and LDAP
>
> I prefer user/pass over ldapS so the ldap server does authN. Bad practice to operate on the hashed pw.
>
> THANK YOU!
>
> /mrg
>
> On May 8, 2013, at 11:50 AM, Chris Hyzer
> wrote:
>
>> Whoops, this was my first response, but it didn't get sent
>>
>>
>> I have not heard of someone doing this, if someone has, let us know.
>>
>> It is very easy to do though. Do you want the user/pass in the basic auth header to be used as a bind to ldap(s)? Or is it comparing a hashed password? Give me the exact details and I can help throw something together...
>>
>> Thanks,
>> Chris
>>
>> ----Original Message----
>> From: grouper-users grouper-users-request On Behalf Of Michael R. Gettes
>> Sent: Wednesday, May 08, 2013 10:37 AM
>> To: grouper-users
>> Subject: [grouper-users] Web Services Authentication and LDAP
>>
>> Has anyone implemented authentication to Web Services against LDAP(S)???
>>
>> Would love to have this problem solved today!
>>
>> Thanks!
>>
>> /mrg
>