lemonldap ng 1 3 david coutadeur
play

LemonLDAP::NG 1.3 David Coutadeur New features of LemonLDAP::NG 1.3 - PowerPoint PPT Presentation

Feb 16, 2023 •419 likes •616 views

LemonLDAP::NG 1.3 David Coutadeur New features of LemonLDAP::NG 1.3 www.ow2.org Twitter #ow2con About the speaker www.ow2.org Twitter #ow2con David Coutadeur LDAP engineer since 2010 in LINAGORA company, with experiences in SUN/Oracle

  1. LemonLDAP::NG 1.3 David Coutadeur New features of LemonLDAP::NG 1.3 www.ow2.org Twitter #ow2con

  2. About the speaker www.ow2.org Twitter #ow2con

  3. David Coutadeur ● LDAP engineer since 2010 in LINAGORA company, with experiences in SUN/Oracle to OpenLDAP migration ● Integrator for LinID solutions http://linid.org ● Member of the LTB team http://ltb-project.org ● Member of the LSC team http://lsc-project.org ● Member of LemonLDAP::NG project core-team http://lemonldap-ng.org www.ow2.org Twitter #ow2con

  4. LemonLDAP::NG www.ow2.org Twitter #ow2con

  5. Components ● LemonLDAP::NG main components: ● Portal : authentication process, user interaction, application menu, password change form ● Manager : configuration interface, sessions explorer ● Handler : Apache agent, manage access authorizations ● Perl, only Perl, just Perl ● Relies on Apache and mod_perl www.ow2.org Twitter #ow2con

  6. Follow the white request www.ow2.org Twitter #ow2con

  7. What's new ? ● FastCGI Portal ● Authentication/user modules: – Active Directory, – BrowserID, – WebID, – Google, – Facebook ● JSON file configuration backend ● Captcha ● Aliases for virtual hosts ● CLI LemonLDAP Manager www.ow2.org Twitter #ow2con

  8. FastCGI Portal ● CGI interfaces applications to web servers ● FastCGI reduces overhead thanks to persistent processes, joined by a socket or TCP connexion ● LemonLDAP::NG CGIs can now be easily extended to FastCGI: – Manager (not so useful) – Portal ● Improves response time ● Scalability not tested yet (cgi farm servers) www.ow2.org Twitter #ow2con

  9. Active Directory module ● Active Directory is a "special" LDAP directory ● AD module is nearly the same as LDAP ● Specific default values for filters to match AD schema ● Compatible password modification ● Reset password on next logon workflow www.ow2.org Twitter #ow2con

  10. BrowserID module ● Authentication database only ● Mozilla Persona : implementation of a distributed login system based on BrowserID protocol ● Similar to OpenID ● BrowserID based on email address / OpenID based on a complicated URL ● Cross-browser (if recent) ● Public key cryptography ● Involves users, Relying Parties, and Identity Providers www.ow2.org Twitter #ow2con

  11. WebID module FOAF ● Invented by a community group at W3C ● Public Key WebID = URI that refers to a person → uniquely identifies a user by his relation to a public key e.g. https://mywebsite.net/#dco ● WebID protocol is based on these URIs and a client certificate ● You may already have one! By joining a social network site: Libre.fm, MyOpera, Twitter ● URI can be linked to other profiles, to create a linked web of trust ● FOAF sites: store Friend of a a friend datas can provision users module in LemonLDAP::NG www.ow2.org Twitter #ow2con

  12. Google module ● Authentication and users databases ● Users log in with Google authentication process ● LemonLDAP uses OpenID protocol to trust the latter ● OpenID ● decentralized authentication system based on URL, involving Providers, Relying parties and users, ● user chooses what data he wants to be accessible for each RP ● Mail used as login name ● A few data available: country, email, firstname, language, lastname www.ow2.org Twitter #ow2con

  13. Facebook module ● More than 1.1 billion users in the world ● Authentication and users databases ● Oauth2 as authorization protocol (no authentication) ● Oauth2 – Based on access and refresh tokens exchanged between client application and resource server – Binding between LemonLDAP (client) and Facebook (resource server) is done by getting an application ID and a secret www.ow2.org Twitter #ow2con

  14. JSON file configuration backend ● "JavaScript Object Notation" ● Generic data format allowing to represent structured information ● Configuration stored in a more readable way ● Can be shared by – any files sharing system (NFS, NAS, SAN,…) – SOAP configuration backend proxy www.ow2.org Twitter #ow2con

  15. And much more... ● Captcha ● Can be used – At user connection – In mail reset component ● Extra control to ensure one is human ● Aliases for virtual hosts ● Allows numerous vhosts creation owning same headers and same protection rules ● CLI LemonLDAP Manager ● Tool to manage LemonLDAP configuration with the command line www.ow2.org Twitter #ow2con

  16. What's next ? ● Configuration and cache optimization ● Code refactoring with Moose/Mouse for a better OO code ● Handler modularization ● compatibility with apache MPM-event or Nginx ? www.ow2.org Twitter #ow2con

  17. The end... almost www.ow2.org Twitter #ow2con

  18. Thanks ● Thanks to: ● OW2 Con organizers ● LINAGORA company ● LemonLDAP::NG and Perl community ● Stay in touch: ● IRC: stryg #lemonldap-ng@freenode www.ow2.org Twitter #ow2con

  19. Questions? www.ow2.org Twitter #ow2con

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

(Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David Reckhow CEE 680 #1 2 David

(Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David Reckhow CEE 680 #1 2 David

Print version Updated: 22 January 2020 Lecture #1 Intro: Course Administration, Scope and Chemistry Review (Stumm & Morgan, Chapt. 1) (pp.1-4) (Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David Reckhow CEE 680 #1 2 David

501 views • 22 slides
UNDERSTAND PASSWORD POLICY IN OPENLDAP AND DISCOVER TOOLS TO MANAGE IT Pass the SALT 2020 $

UNDERSTAND PASSWORD POLICY IN OPENLDAP AND DISCOVER TOOLS TO MANAGE IT Pass the SALT 2020 $

UNDERSTAND PASSWORD POLICY IN OPENLDAP AND DISCOVER TOOLS TO MANAGE IT Pass the SALT 2020 $ ldapwhoami LemonLDAP::NG LDAP Tool Box LDAP Synchronization Connector FusionIAM WSweet Clment OUDOT KPTN Identity Solutions Manager

508 views • 24 slides
David Bolt David Apelt Kapsch Transmax david.bolt@kapsch.net david.apelt@transmax.com.au

David Bolt David Apelt Kapsch Transmax david.bolt@kapsch.net david.apelt@transmax.com.au

David Bolt David Apelt Kapsch Transmax david.bolt@kapsch.net david.apelt@transmax.com.au LinkedIn @davidbolt LinkedIn @davidapelt Austria Graph Integration Platform http://www.gip.gv.at/ US inspired DATEX II https://www.datex2.eu/ US

388 views • 10 slides
David Clarke and Model Predictive Control In celebration of David Clarkes contribution to MPC

David Clarke and Model Predictive Control In celebration of David Clarkes contribution to MPC

David Clarke and Model Predictive Control In celebration of David Clarkes contribution to MPC St Edmunds Hall, Oxford University, January 9, 2009 David Mayne Imperial College London IC p.1/30 David Congratulations on your many

445 views • 40 slides
genetic algorithm Antonio Gonzalez-Pardo, David Camacho David Camacho david.camacho@uam.es A

genetic algorithm Antonio Gonzalez-Pardo, David Camacho David Camacho david.camacho@uam.es A

Maximal Component detection in graphs using swarm-based and genetic algorithm Antonio Gonzalez-Pardo, David Camacho David Camacho david.camacho@uam.es A pplied I ntelligence & D ata A nalysis http://aida.ii.uam.es Universidad Autnoma de

600 views • 38 slides
OUTLOOK 2014 David P. Baskin, President David Baskin, LLB President David studied economics at

OUTLOOK 2014 David P. Baskin, President David Baskin, LLB President David studied economics at

OUTLOOK 2014 David P. Baskin, President David Baskin, LLB President David studied economics at the University of Colorado and law at the University of Toronto. Following his early career as a lawyer and banker, David founded Baskin Financial

645 views • 27 slides
Cryptographic Voting David Bernhard University of Bristol David Bernhard 1 / 49 Voting David

Cryptographic Voting David Bernhard University of Bristol David Bernhard 1 / 49 Voting David

Cryptographic Voting David Bernhard University of Bristol David Bernhard 1 / 49 Voting David Bernhard 2 / 49 Voting Verifiability Privacy David Bernhard 3 / 49 Dimensions T ype: preference, instant run-off, approval, range, ...

870 views • 49 slides
7/16/2018 David & Goliath What can the story of David and Goliath teach us about becoming

7/16/2018 David & Goliath What can the story of David and Goliath teach us about becoming

7/16/2018 David & Goliath What can the story of David and Goliath teach us about becoming people who are after Gods own heart? David & Goliath Scene 1: The Philistine invasion 1 Samuel 17:1-3 (NIV) Now the Philistines gathered

367 views • 10 slides
Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream Big;

Reclaiming Your Inner David: Finding Purpose and Promise in a World of Goliaths Rawle Andrews Jr., Esq. Regional Vice President June 20, 2017 1 Reclaiming Your Inner David in a World of Goliaths 2 Reclaiming Your Inner David: Dream

461 views • 21 slides
Welcome & landscape David L Miller & Jason J Roberts Welcome! Who are we? David L

Welcome & landscape David L Miller & Jason J Roberts Welcome! Who are we? David L

Welcome & landscape David L Miller & Jason J Roberts Welcome! Who are we? David L Miller (Dave) Research fellow, CREEM, University of St Andrews PhD with Simon Wood (author of mgcv ) Worked on R distance sampling (software) since 2005

384 views • 20 slides
(Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David Reckhow CEE 680 #1 2 1 CEE 680

(Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David Reckhow CEE 680 #1 2 1 CEE 680

CEE 680 Lecture #1 1/22/2020 Print version Updated: 22 January 2020 Lecture #1 Intro: Course Administration, Scope and Chemistry Review (Stumm & Morgan, Chapt. 1) (pp.1 4) (Benjamin, 1.1 & 1.4) David Reckhow CEE 680 #1 1 David

149 views • 11 slides
The Resilient Leader David Lee David Lee HumanNature@Work Email: david@humannatureatwork.com

The Resilient Leader David Lee David Lee HumanNature@Work Email: david@humannatureatwork.com

1/5/2016 The Resilient Leader David Lee David Lee HumanNature@Work Email: david@humannatureatwork.com LinkedIn: www.linkedin.com/in/humannatureatwork/ https://twitter.com/HumanNatureWork Phone: 207-571-9898 1 1/5/2016 Agenda 1. What

518 views • 49 slides
Session Presenters David Heil David Heil & Associates,

Session Presenters David Heil David Heil & Associates,

Integrated STEM Educa0on Current Status, Opportuni0es and Considera0ons for Science Centers ASTC Annual Conference Albuquerque, NM / October 2013 DAVID

388 views • 19 slides
David Pillischer 585-413-4401 david@ebrailler.com Internet

David Pillischer 585-413-4401 david@ebrailler.com Internet

David Pillischer 585-413-4401 david@ebrailler.com Internet based Braille Education hardware / software that allows a teacher to teach one or more

149 views • 12 slides
Advanced Git DAVID PARSONS 1 Reminders DAVID PARSONS ADVANCED GIT 2 Generali(es DAVID

Advanced Git DAVID PARSONS 1 Reminders DAVID PARSONS ADVANCED GIT 2 Generali(es DAVID

Advanced Git DAVID PARSONS 1 Reminders DAVID PARSONS ADVANCED GIT 2 Generali(es DAVID PARSONS - ADVANCED GIT 3 Two fundamental rules ! Commit o5en Keep commits small and commit together only related changes (commit = minimal

1.04k views • 100 slides
Legacy Crypto Never Dies (Why won't DES just die???) David Hulton <david@toorcon.org>

Legacy Crypto Never Dies (Why won't DES just die???) David Hulton <david@toorcon.org>

Legacy Crypto Never Dies (Why won't DES just die???) David Hulton <david@toorcon.org> crack.sh is a service of the ToorCon Information Security RECON BRUSSELS 2017 Conference and is provided for research purposes only. DefCon 2012 Recap

578 views • 36 slides
About the speaker Michael 'manveru' Fellinger m.fellinger@gmail.com http://manveru.net Ramaze?

About the speaker Michael 'manveru' Fellinger m.fellinger@gmail.com http://manveru.net Ramaze?

About the speaker Michael 'manveru' Fellinger m.fellinger@gmail.com http://manveru.net Ramaze? A modular and easy to use web application framework. Web application framework Quoting Wikipedia: A software framework that is designed to

698 views • 32 slides
Mini-Flash Crowds Balachander Krishnamurthy http://www.research.att.com/~bala/papers Joint work

Mini-Flash Crowds Balachander Krishnamurthy http://www.research.att.com/~bala/papers Joint work

Mini-Flash Crowds Balachander Krishnamurthy http://www.research.att.com/~bala/papers Joint work with Pratap Ramamurthy and Aditya Akella (Univ of Wisconsin) Vyas Sekar (CMU), Anees Shaikh (IBM Research) 1 Inferring resource constraints of

392 views • 17 slides
THE LEADER IN DRUPAL PLATFORM DESIGN AND DEVELOPMENT Friday, November 16, 12 SHORT STACK

THE LEADER IN DRUPAL PLATFORM DESIGN AND DEVELOPMENT Friday, November 16, 12 SHORT STACK

THE LEADER IN DRUPAL PLATFORM DESIGN AND DEVELOPMENT Friday, November 16, 12 SHORT STACK INGREDIENTS FOR A SHORTER, SWEETER DRUPAL HOSTING STACK Friday, November 16, 12 http://www.flickr.com/photos/crobj/3306760492/ Friday, November 16, 12

1.02k views • 85 slides
FAMP FreeBSD/Apache/MySQL/PHP zswu Computer Center, CS, NCTU Introduction Web service

FAMP FreeBSD/Apache/MySQL/PHP zswu Computer Center, CS, NCTU Introduction Web service

FAMP FreeBSD/Apache/MySQL/PHP zswu Computer Center, CS, NCTU Introduction Web service Apache GWS, Nginx, IIS SQL service MySQL, MariaDB MS SQL, Oracle DB, PostgreSQL NoSQL service MongoDB Web backend language

1.53k views • 57 slides
THttpServer for ROOT Bertrand Bellenot, CERN Sergey Linev, GSI Darmstadt 28.02.2014 JSRootIO

THttpServer for ROOT Bertrand Bellenot, CERN Sergey Linev, GSI Darmstadt 28.02.2014 JSRootIO

THttpServer for ROOT Bertrand Bellenot, CERN Sergey Linev, GSI Darmstadt 28.02.2014 JSRootIO Written on JavaScript, works in all major browsers IE, Firefox, Opera, Safari, Android, Allows to draw many kinds of ROOT objects

808 views • 23 slides
PHP 5.3 Johannes Schlter PHP Roadmap Johannes Schlter 2 PHP 4 Photo: Patricia Hecht

PHP 5.3 Johannes Schlter PHP Roadmap Johannes Schlter 2 PHP 4 Photo: Patricia Hecht

PHP 5.3 Johannes Schlter PHP Roadmap Johannes Schlter 2 PHP 4 Photo: Patricia Hecht Johannes Schlter 3 PHP 5.2 Photo: Gabriele Kantel Johannes Schlter 4 PHP 5.3 Photo: Jamie Sanford Johannes Schlter 5 PHP 6 Photo: G4Glenno

1.11k views • 70 slides
Day 15: Web Applications suggested reading: Agile Web Development with Rails (3e), by Ruby,

Day 15: Web Applications suggested reading: Agile Web Development with Rails (3e), by Ruby,

CS 368 Intro to Scripting Languages Day 15: Web Applications suggested reading: Agile Web Development with Rails (3e), by Ruby, Thomas, & Heinemeier Hansson but I may be biased (^_^) Summer 2009 Cartwright, De Smet, LeRoy 1 CS

301 views • 19 slides
Introduction to our VDOM.pm & vdom-webkit cluster Introduction to our VDOM.pm &

Introduction to our VDOM.pm & vdom-webkit cluster Introduction to our VDOM.pm &

Introduction to our VDOM.pm & vdom-webkit cluster Introduction to our VDOM.pm & vdom-webkit cluster agentzh@yahoo.cn (agentzh) 2009.9 VDOM Visual DOM DOMs with vision information window

809 views • 49 slides

More recommend