towards a common java ldap api
play

Towards a Common Java LDAP API Emmanuel Lecharny Apache Directory - PowerPoint PPT Presentation

Jan 12, 2024 •464 likes •678 views

Towards a Common Java LDAP API Emmanuel Lecharny Apache Directory elecharny@apache.org Ludovic Poitou OpenDS ludovic.poitou@sun.com A poor man's choice: JNDI or JLDAP/Netscape LDAP SDK Good News: Apache Directory Client API OpenDS

  1. Towards a Common Java LDAP API Emmanuel Lecharny Apache Directory elecharny@apache.org Ludovic Poitou OpenDS ludovic.poitou@sun.com

  3. A poor man's choice: JNDI or JLDAP/Netscape LDAP SDK

  4. Good News: Apache Directory Client API OpenDS Client SDK UnboundID LDAP SDK

  5. Why this resurgence of activity ? • Servers need to issue outbound connections • A directory product is wrapped with tools • Previous effort to agree on standard API stalled

  6. Is the LDAP developers ecosystem that large ? We just need one good common API

  7. The foundation • JLDAP/Netscape SDK as template • Leveraging Java5 language constructions • Synchronous and Asynchronous methods

  8. Connection Request Response Handling Data

  9. Connection • LDAPConnection is an interface • Factory – to hide I/O library – to handle single connection vs pooled connections • Referral Policies (including Authentication)

  10. Request / Responses Synchronous vs Asynchronous 3 approaches Just a question of style

  11. Handling data Entries Attributes Values Names

  12. Entry description • Base object for the server • Contains the DN and the Attributes • Uses ellipsis : entry.add( "ObjectClass", "top", "person" ); • Constructor or factory ?

  13. Example : JNDI DirContext ctx = new InitialDirContext( env ); Attributes attrs = new BasicAttributes( true ); // case-ignore Attribute objclass = new BasicAttribute("objectclass"); objclass.add("top"); objclass.add("organizationalUnit"); attrs.put(objclass); attrs.put( "ou", "fruits" ); Context result = ctx.createSubcontext("ou=Fruits", attrs); Example : New API Entry entry = new EntryImpl( new DN( "ou=fruits, dc=example, dc=com" ) ); entry.add( "objectClass", "top", "organizationalUnit" ); entry.add( "ou", "fruits" ); connection.add( entry );

  14. Values description • Much more an internal representation of attribute data • Should it be exposed to the client? • It contains • either String (for H/R attributeTypes) • Or byte[] (Binary AttributeTypes) • From the server point of view, everything is a byte[]

  16. Search responses • Enumeration of Searched Entries • Should search always try to page (like RDMBs queries) ? • Should it be additional APIs built on the basic Search request ?

  17. Schema • Schema is required for handling DNs, Entries, Values... • Some servers may return non schema compliant data • Application may not know Server's schema or works with multiple servers with different schema • API needs to handle all scenarii

  18. Schema • Default schema must be present – At least the standard one • Should be able to extend from file or server • How to deal with server specific schema elements requiring code (Syntax, MatchingRules) ?

  19. Other aspects • Security : TLS handled under the hood • Exceptions • Extended operations • Controls • DSML • Reader / Writer / Utilities • LDIF • Reader / Writer / Utilities

  20. Conclusion • There is NO common API yet. • There are many aspects to address as a community • Server vendors have their needs and their proposed solutions • Application developers should participate and provide input • It will take time to have that single best of the world common LDAP JAVA API ! • Interested ? Join the effort !

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Introduction to LDAP Frank A. Kuse Introduction to LDAP AGENDA Understanding LDAP

Introduction to LDAP Frank A. Kuse Introduction to LDAP AGENDA Understanding LDAP

Introduction to LDAP Frank A. Kuse Introduction to LDAP AGENDA Understanding LDAP LDAP Servers Information Structure Protocol Overview LDAP operations UNDERSTANDING LDAP LDAP stands for Lightweight Directory Access

268 views • 12 slides
How we implemented an LDAP directory Multiple Simultaneous Requests . . . . . . . . . . . . . . .

How we implemented an LDAP directory Multiple Simultaneous Requests . . . . . . . . . . . . . . .

Getting Started What do you already know about ldap ? . . . . . . . . . . . . . . slide #3 What Do You Want? . . . . . . . . . . . . . . . . . . . . . . . . . . . . slide #4 Argument for LDAP Account Information . . . . . . . . . . . . . . . . .

442 views • 26 slides
JAVA Language Mapping Java IDL (CORBA) introduced in Version 1.2 of the Java 2 platform,

JAVA Language Mapping Java IDL (CORBA) introduced in Version 1.2 of the Java 2 platform,

BR 11/05 JAVA Language Mapping Java IDL (CORBA) introduced in Version 1.2 of the Java 2 platform, provides an interface between Java programs and distributed objects and services built using the Common Object Request Broker

355 views • 31 slides
LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com

LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com

LDB and the LDAP server in Samba4 Simo Sorce Samba Team idra@samba.org simo.sorce@quest.com http://www.samba.org/~idra What is LDB ? LDB is an LDAP-like database interface LDAP-like data model support LDAP like search expressions but it

1.03k views • 24 slides
JAVA Java vs. Java Java Language Specification

JAVA Java vs. Java Java Language Specification

BR 10/05 JAVA Java vs. Java Java Language Specification http://java.sun.com/docs/books/jls/second_edition/html/j.title.doc.html Java programming language is compiled into java byte code Java Virtual Machine Specification

1.07k views • 44 slides
DESIRE II LDAP Indexing System 45 IETF, Oslo LDAP Service Deployment - Take 2 BoF 15. July 1999

DESIRE II LDAP Indexing System 45 IETF, Oslo LDAP Service Deployment - Take 2 BoF 15. July 1999

DESIRE DESIRE II LDAP Indexing System 45 IETF, Oslo LDAP Service Deployment - Take 2 BoF 15. July 1999 Peter Gietz, University of Tbingen Peter.Gietz@directory.dfn.de DESIRE LDAP Index system

855 views • 12 slides
Security with LDAP Andrew Findlay Skills 1st Ltd www.skills-1st.co.uk February 2002

Security with LDAP Andrew Findlay Skills 1st Ltd www.skills-1st.co.uk February 2002

Security with LDAP Andrew Findlay Skills 1st Ltd www.skills-1st.co.uk February 2002 andrew.findlay@skills-1st.co.uk Security with LDAP Applications of LDAP White Pages NIS (Network Information System) Authentication

257 views • 15 slides
LDAP LDAPv3, Internet Standard RFC4510 RFC 4510-4521 and about 40 others for extensions Many

LDAP LDAPv3, Internet Standard RFC4510 RFC 4510-4521 and about 40 others for extensions Many

What is LDAP Lightweight Directory Access Protocol Phonebook Based on X.500 DAP on OSI stack Developed in '93 @ UMich LDAP LDAPv3, Internet Standard RFC4510 RFC 4510-4521 and about 40 others for extensions Many implementations OpenLDAP

544 views • 6 slides
The LDAP Directory Life After Sun A story of migration Alban MEUNIER IdM Senior consultant

The LDAP Directory Life After Sun A story of migration Alban MEUNIER IdM Senior consultant

The LDAP Directory Life After Sun A story of migration Alban MEUNIER IdM Senior consultant ameunier@smartwavesa.com www.smartwavesa.com Agenda Introduction Common layer Migrate a standalone instance Migrate a replicated infra

876 views • 32 slides
KDC LDAP Schema IETF 11/02 Donna Skibbie, IBM Overview KDC LDAP Schema draft: Defines all KDC

KDC LDAP Schema IETF 11/02 Donna Skibbie, IBM Overview KDC LDAP Schema draft: Defines all KDC

KDC LDAP Schema IETF 11/02 Donna Skibbie, IBM Overview KDC LDAP Schema draft: Defines all KDC attributes except for those used to store key data Keys Extension draft: Defines attributes used to store key data Flow of Data to LDAP

798 views • 10 slides
From LDAP to IdM Presentation at the Athens Eurocamp 2008 by Roland Hedberg

From LDAP to IdM Presentation at the Athens Eurocamp 2008 by Roland Hedberg

From LDAP to IdM Presentation at the Athens Eurocamp 2008 by Roland Hedberg <roland.hedberg@adm.umu.se> The transition -starting point Admin interface LDAP Scripts The transition - toward nirvana Admin interface LDAP Scripts

497 views • 22 slides
Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006)

Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006)

Multi-core in JVM/Java Concurrent programming in java Prior Java 5 Java 5 (2006) Java 7 (2010) Other topics Basic concurrency in Java Java Memory Model describes how threads interact through memory Single thread

812 views • 34 slides
Testing LDAP Implementations Emmanuel Lcharny Do who need tests anyway ? OSS projects don't

Testing LDAP Implementations Emmanuel Lcharny Do who need tests anyway ? OSS projects don't

Testing LDAP Implementations Emmanuel Lcharny Do who need tests anyway ? OSS projects don't need it... We have users ! We have users ! LDAP project phases Initial analysis Development + tests Costs Conformance tests Tests are

501 views • 27 slides
Java Java Basics Java Program Statements Java Review Conditional statements

Java Java Basics Java Program Statements Java Review Conditional statements

Java Java Basics Java Program Statements Java Review Conditional statements Repetition statements (loops) Writing Classes in Java Selim Aksoy Class definitions Bilkent University Encapsulation and Java modifiers

346 views • 11 slides
The Java Collections Framework Definition Set of interfaces, abstract and concrete classes that

The Java Collections Framework Definition Set of interfaces, abstract and concrete classes that

The Java Collections Framework Definition Set of interfaces, abstract and concrete classes that define common abstract data types in Java e.g. list, stack, queue, set, map Part of the java.util package Implementation Extensive use of

669 views • 22 slides
Common Java problems CS/SE Individual Practical Stephen Gilmore November 4, 2011 School of

Common Java problems CS/SE Individual Practical Stephen Gilmore November 4, 2011 School of

Java problems Home page Design and interface Lists Text Details Functionality Crashes Java problems Home page Design and interface Lists Text Details Functionality Crashes Common Java problems CS/SE Individual Practical Stephen

475 views • 5 slides
RUN-TIME ATTACK DETECTION IN CRYPTOGRAPHIC APIS Marco Squarcina 1 , joint work with Riccardo

RUN-TIME ATTACK DETECTION IN CRYPTOGRAPHIC APIS Marco Squarcina 1 , joint work with Riccardo

RUN-TIME ATTACK DETECTION IN CRYPTOGRAPHIC APIS Marco Squarcina 1 , joint work with Riccardo Focardi 1 August 23, 2017 1 Universit Ca Foscari Venezia (IT) / Cryptosense (FR) 30th IEEE Computer Security Foundations Symposium (CSF2017) Santa

1.1k views • 46 slides
A new graphics API Deepayan Sarkar Indian Statistical Institute, Delhi DSC 2014 Deepayan Sarkar

A new graphics API Deepayan Sarkar Indian Statistical Institute, Delhi DSC 2014 Deepayan Sarkar

Introduction Examples A new graphics API Deepayan Sarkar Indian Statistical Institute, Delhi DSC 2014 Deepayan Sarkar A new graphics API Introduction Examples Motivation Qt R Bindings (Michael Lawrence, 6 years) qtpaint

463 views • 20 slides
Deployment API Chris Mays, Principal Engineer, HERE Technologies Micah Noland, Lead Engineer, HERE

Deployment API Chris Mays, Principal Engineer, HERE Technologies Micah Noland, Lead Engineer, HERE

Deployment API Chris Mays, Principal Engineer, HERE Technologies Micah Noland, Lead Engineer, HERE Technologies Problem Statement Goal: Self Service Deployment Problem: DC/OS API has a learning curve docker run settings: Enable

330 views • 7 slides
Asha KR Shwetha D J Intel & McAfee Confidential PNSQC 2015 1 Bio Asha KR ,Senior Software

Asha KR Shwetha D J Intel & McAfee Confidential PNSQC 2015 1 Bio Asha KR ,Senior Software

API Testing Picking The Right Strategy Asha KR Shwetha D J Intel & McAfee Confidential PNSQC 2015 1 Bio Asha KR ,Senior Software QA Engineer at Intel Security, currently working in the Intel Security India Center in Bangalore.

484 views • 24 slides
Policy Options for Encouraging Membership of an NIR @APNIC 35 Sanjeev Gupta

Policy Options for Encouraging Membership of an NIR @APNIC 35 Sanjeev Gupta

Policy Options for Encouraging Membership of an NIR @APNIC 35 Sanjeev Gupta <sanjeev@dcs1.biz> DCS1 Pte Ltd The standard picture We will see more NIRs in this RIR We now have seven There are other countries big enough to run an

517 views • 14 slides
1 Overview Introduction DNSSEC mechanisms To authenticate servers (TSIG ) To

1 Overview Introduction DNSSEC mechanisms To authenticate servers (TSIG ) To

Welcome! DNS/DNSSEC Deployment tutorial Champika Wijayatunga <champika@apnic.net> 2 August 2006, Karachi, Pakistan In conjunction with SANOG 8 Background The original DNS protocol wasnt designed with security in mind It has

705 views • 15 slides
Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application

Network Layer Where we are in the Course Moving on up to the Network Layer! Application Transport Network Link Physical CSE 461 University of Washington 2 Topics Network service models Datagrams (packets), virtual circuits

524 views • 28 slides
Assessment, 5-years-on: Major Changes! Al Morton Note: Assessment not equal to

Assessment, 5-years-on: Major Changes! Al Morton Note: Assessment not equal to

Broadband QoS and QoE Assessment, 5-years-on: Major Changes! Al Morton Note: Assessment not equal to Regulation! Outline Turn-back the clock Improved Internet speed tests can enhance QoS and QoE , What were our

393 views • 14 slides

More recommend