[unchecked revision]

Revision as of 15:15, 29 April 2014

Overview

The following sequence describes the authentication and role retrieval:

Look-up the user in the OpenLDAP directory (with a configurable service user):

Currently, this will be cn=Manager,dc=stoney-cloud,dc=org

Later on, this will be a service user.
If the user exists, try to bind with the users credentials.
If the bind was successful, retrieve the users roles with the service user.

API Attribute	LDAP Object DN	LDAP Attribute	Details
People uid (per person)
id	uid=4000000,ou=reseller	uid	Always read-only.
isCompany	uid=4000000,ou=reseller	sstIsCompany
organizationName	ou=address,uid=4000000,ou=reseller	organizationName
People Roles
address.gender	ou=address,uid=4000000,ou=reseller	sstGender

@@ Line 18: / Line 18: @@
 ! Details
 |-
-| colspan=4 | [[stoney_core:_OpenLDAP_directory_data_organisation#Reseller_uid_.28per_Reseller.29 | Reseller uid (per Reseller)]]
+| colspan=4 | [[stoney_core:_OpenLDAP_directory_data_organisation#People_uid_.28per_person.29 | People uid (per person) ]]
 |-
 || '''id''' || uid=4000000,ou=reseller || uid || Always read-only.
 |-
 || isCompany || uid=4000000,ou=reseller || sstIsCompany ||
-|-
-|| isActive || uid=4000000,ou=reseller || sstIsActive ||
-|-
-|| resellerName || uid=4000000,ou=reseller || organizationName ||
-|-
-|| (none) || uid=4000000,ou=reseller || sstExternalID ||
-|-
-|| (none) || uid=4000000,ou=reseller || sstBelongsToResellerUID || Internally set to the same value as uid
 |-
 || organizationName || ou=address,uid=4000000,ou=reseller || organizationName ||
 |-
-| colspan=4 | [[stoney_core:_OpenLDAP_directory_data_organisation#Reseller_Billing_Address | Reseller Billing Address]]
+| colspan=4 | [[stoney_core:_OpenLDAP_directory_data_organisation#People_Roles | People Roles ]]
 |-
 || address.gender || ou=address,uid=4000000,ou=reseller || sstGender ||