stoney core: Authentication Resource Mapping (REST - LDAP)
From stoney cloud
Also visit stoney core: Authentication Resource - REST API.
Overview
Auth action
Auth retrieval (GET)
The following sequence describes the authentication and role retrieval:
- Look-up the user in the OpenLDAP directory (with a configurable service user):
- Currently, this will be cn=Manager,dc=stoney-cloud,dc=org
- Later on, this will be a service user.
- If the user exists, try to bind with the users credentials.
- If the bind was successful, retrieve the users roles with the service user.
Auth Mapping
| API Attribute | LDAP Object DN | LDAP Attribute | Details |
|---|---|---|---|
| Reseller uid (per Reseller) | |||
| id | uid=4000000,ou=reseller | uid | Always read-only. |
| isCompany | uid=4000000,ou=reseller | sstIsCompany | |
| isActive | uid=4000000,ou=reseller | sstIsActive | |
| resellerName | uid=4000000,ou=reseller | organizationName | |
| (none) | uid=4000000,ou=reseller | sstExternalID | |
| (none) | uid=4000000,ou=reseller | sstBelongsToResellerUID | Internally set to the same value as uid |
| organizationName | ou=address,uid=4000000,ou=reseller | organizationName | |
| Reseller Billing Address | |||
| address.gender | ou=address,uid=4000000,ou=reseller | sstGender | |
