Kanena neo ?

[Theodore J. Soldatos]

indyone wrote:
> Oso gia ta feaures, pisteyw ola einai efikta. Gia ayta omws pou den 
> eimai apolyta sigouros oti 8a doulepsei, einai o authenication me LDAP-
> PAM blahblahblah.... epeidh para poly liges gnwseis panw se ayta.
> OK omws to 3erw.... ligo diabasma kai 8a bgei ;-)

Den ksero ti paizei apo PHP, apo perl pantos einai poly aplo. Ksero akoma oti 
yparxei ena experimental module tou OpenLDAP pou xrhsimopoiei gia backend mia 
SQL database, pragma pou nomizo oti tha voleve mia kai oles oi douleies 
(insert, update) tha ginontai mesa apo to SQL interface, kathe melos tou 
syllogou tha exei mia monadikh eggrafh sth database (anti gia mia ston LDAP 
kai mia sthn vash) kai to mono pou tha exei na kanei h PHP me ton LDAP einai 
sketo authentication (kai oxi insert, update klp). Den exo dokimasei ton LDAP 
me SQL backend, katevazo tora source gia na kano mia dokimh. To PAM mhn sas 
mperdevei (gia osous den to exoun psaksei), perissotero aplopoiei ta pragmata.

Fysika tha mporousame na aplopoihsoume akoma perissotero ta pragmata 
katargontas ton LDAP kai xrhsimopoiontas pam_mysql, pam_pgsql[1] h kati 
paromoio gia authentication ton services, pragma pou epishs den to exo 
dokimasei kai den ksero ti leei... :-) Pantos opoio service yposthrizei PAM 
kai mporei na paiksei me pam_ldap, mporei na paiksei kai me pam_mysql h pam_pgsql.

Sas thymizo oti o vasikos stoxos einai kathe melos na exei ena userid kai ena 
password gia oles tis douleies - pshfofories, personal info, mail ....

Sthn periptosh pou xrhsimopoihsoume LDAP kai SQL db ksexorista (dhladh o LDAP 
na xrhsimopoiei to diko tou backend - BerkeleyDB synhthos) tha exoume to 
overhead na kratame sygxronismenes tis eggrafes tou LDAP kai ths vashs, me olo 
to authentication na ginetai apo LDAP kai to DN tou LDAP na xrhsimopoieitai os 
unique key sthn vash... Xmmm...

<snip>

T.

[1] Ta pam_mysql kai pam_pgsql einai pam modules pou xrhsimopoioun mysql kai 
postgresql antistoixa gia na kratane username/password kai na kanoun 
authenticate apo ekei. To pam_ldap xrhsimopoiei gia thn idia douleia ton ldap. 
Oso to skeftomai toso den vrisko logo na xrhsimopoihsoume LDAP - nomizo oti to 
PAM me kapoia db oxi mono arkei gia thn douleia pou to theloume, alla mas 
dieykolynei kiolas. Kamia idea epi tou thematos ? Kanenas idiaiteros logos na 
xrhsimopoihsoume LDAP ?

-- 
Theodore=J.=Soldatos=_\_======================================================
=  theodore at eexi.gr =_/_====== "Greed is never good" - Linus Torvalds ========
=   bafh at hellug.gr  =_\_============ http://w4u.eexi.gr/~theodore ============
=   tsol at space.gr   =_/_==================== Space Hellas ====================