[unchecked revision]

Revision as of 13:46, 1 May 2014

Overview

The following sequence describes the authentication and role retrieval:

Look-up the user in the OpenLDAP directory (with a configurable LDAP service user):

Currently, this will be cn=Manager,dc=stoney-cloud,dc=org

Later on, this will be a service user.
If the user exists, try to bind with the users credentials.
If the bind was successful, retrieve further information with the LDAP service user.

API Attribute	LDAP Object DN	LDAP Attribute	Details
People uid (per person)
id	uid=4000002,ou=people,dc=stoney-cloud,dc=org	uid	Always read-only.
user	uid=4000002,ou=people,dc=stoney-cloud,dc=org	mail

@@ Line 5: / Line 5: @@
 == Auth Retrieval (GET) ==
 The following sequence describes the authentication and role retrieval:
-# Look-up the user in the OpenLDAP directory (with a configurable service user):
+# Look-up the user in the OpenLDAP directory (with a configurable LDAP service user):
 #: Currently, this will be cn=Manager,dc=stoney-cloud,dc=org
 #: Later on, this will be a [[stoney_core:_OpenLDAP_directory_data_organisation#Services | service user]].
 # If the user exists, try to bind with the [[stoney_core:_OpenLDAP_directory_data_organisation#People_uid_.28per_person.29 | users credentials]].
-# If the bind was successful, retrieve the users [[stoney_core:_OpenLDAP_directory_data_organisation#People_Roles | roles]] with the service user.
+# If the bind was successful, retrieve further information with the LDAP service user.
 === Auth Retrieval (GET) Mapping ===