Difference between revisions of "stoney core: Authentication Resource Mapping (REST - LDAP)"
From stoney cloud
[unchecked revision] | [unchecked revision] |
(→Auth Retrieval (GET) Mapping) |
(→Auth Retrieval (GET)) |
||
Line 5: | Line 5: | ||
== Auth Retrieval (GET) == | == Auth Retrieval (GET) == | ||
The following sequence describes the authentication and role retrieval: | The following sequence describes the authentication and role retrieval: | ||
− | # Look-up the user in the OpenLDAP directory (with a configurable service user): | + | # Look-up the user in the OpenLDAP directory (with a configurable LDAP service user): |
#: Currently, this will be cn=Manager,dc=stoney-cloud,dc=org | #: Currently, this will be cn=Manager,dc=stoney-cloud,dc=org | ||
#: Later on, this will be a [[stoney_core:_OpenLDAP_directory_data_organisation#Services | service user]]. | #: Later on, this will be a [[stoney_core:_OpenLDAP_directory_data_organisation#Services | service user]]. | ||
# If the user exists, try to bind with the [[stoney_core:_OpenLDAP_directory_data_organisation#People_uid_.28per_person.29 | users credentials]]. | # If the user exists, try to bind with the [[stoney_core:_OpenLDAP_directory_data_organisation#People_uid_.28per_person.29 | users credentials]]. | ||
− | # If the bind was successful, retrieve | + | # If the bind was successful, retrieve further information with the LDAP service user. |
=== Auth Retrieval (GET) Mapping === | === Auth Retrieval (GET) Mapping === |
Revision as of 13:46, 1 May 2014
Also visit stoney core: Authentication Resource - REST API.
Contents
Overview
Auth Action
Auth Retrieval (GET)
The following sequence describes the authentication and role retrieval:
- Look-up the user in the OpenLDAP directory (with a configurable LDAP service user):
- Currently, this will be cn=Manager,dc=stoney-cloud,dc=org
- Later on, this will be a service user.
- If the user exists, try to bind with the users credentials.
- If the bind was successful, retrieve further information with the LDAP service user.
Auth Retrieval (GET) Mapping
API Attribute | LDAP Object DN | LDAP Attribute | Details |
---|---|---|---|
People uid (per person) | |||
id | uid=4000002,ou=people,dc=stoney-cloud,dc=org | uid | Always read-only. |
user | uid=4000002,ou=people,dc=stoney-cloud,dc=org |