Comments (8)
2 apr 2015 kl. 23:15 skrev Steven Roose [email protected]:
Just a question and potential feature request: Can pyoidc be used an as OpenID layer around an LDAP server, like OpenID-LDAP.org’s (outdated) implementation?
OpenID Connect yes, OpenID no !
- Roland
"It is the consequence of humanity. We are all formed of frailty and error; let us pardon reciprocally each others’ folly - that is the first law of nature.” - Voltaire
from pyoidc.
How? If I may ask.
from pyoidc.
3 apr 2015 kl. 13:35 skrev Steven Roose [email protected]:
How? If I may ask.
Haven’t done exactly this so take this more as an outline then a
ready to use service.
When you configure the OP you have to define which authentication methods to use.
There are a couple of examples of such methods in src/oic/utils/authn the one of most
interest to you would be LDAPAuthn in ldapc.py.
This is just example code so you will probably have to modify it to work with
how your LDAP is laid out.
The second thing you need is where to get the user info.
Again you can find an example in the distribution, this time in src/oic/utils/userinfo/ldap_info.py .
Completely lacking documentation, sorry about that, but if you know ldap you can probably figure out
what’s needed to be done.
I’ll be happy to help you get it working.
Don’t have the time to do it for you though.
- Roland
"It is the consequence of humanity. We are all formed of frailty and error; let us pardon reciprocally each others’ folly - that is the first law of nature.” - Voltaire
from pyoidc.
I've never used LDAP myself either :p
I'm planning to move away from public cloud services and a lot of
alternative software (e-mail server, XMPP, CalDAV server) supports LDAP to
ease the user management aspect. I'd like to have a self-hosted OpenID
provider as well to do away with Gmail completely.
So I'll probably take a look at the files you mentioned and try to figure
it out once I got LDAP and the other things running. (I hope I'll get some
more insight in how LDAP works by then.)
On Fri, Apr 3, 2015 at 5:58 PM, Roland Hedberg [email protected]
wrote:
3 apr 2015 kl. 13:35 skrev Steven Roose [email protected]:
How? If I may ask.
Haven’t done exactly this so take this more as an outline then a
ready to use service.When you configure the OP you have to define which authentication methods
to use.
There are a couple of examples of such methods in src/oic/utils/authn the
one of most
interest to you would be LDAPAuthn in ldapc.py.This is just example code so you will probably have to modify it to work
with
how your LDAP is laid out.The second thing you need is where to get the user info.
Again you can find an example in the distribution, this time in
src/oic/utils/userinfo/ldap_info.py .Completely lacking documentation, sorry about that, but if you know ldap
you can probably figure out
what’s needed to be done.I’ll be happy to help you get it working.
Don’t have the time to do it for you though.
- Roland
"It is the consequence of humanity. We are all formed of frailty and
error; let us pardon reciprocally each others’ folly - that is the first
law of nature.” - Voltaire—
Reply to this email directly or view it on GitHub
https://github.com/rohe/pyoidc/issues/77#issuecomment-89336744.
from pyoidc.
3 apr 2015 kl. 18:05 skrev Steven Roose [email protected]:
I’ve never used LDAP myself either :p
I was actually part of the group that wrote the LDAP standards :-)
Ran the IETF working group for a number of years too.
So I know LDAP :-) :-)
Just haven’t connected my OIDC server to a LDAP server yet.
I'm planning to move away from public cloud services and a lot of
alternative software (e-mail server, XMPP, CalDAV server) supports LDAP to
ease the user management aspect. I'd like to have a self-hosted OpenID
provider as well to do away with Gmail completely.So I'll probably take a look at the files you mentioned and try to figure
it out once I got LDAP and the other things running. (I hope I'll get some
more insight in how LDAP works by then.)
- Roland
"It is the consequence of humanity. We are all formed of frailty and error; let us pardon reciprocally each others’ folly - that is the first law of nature.” - Voltaire
from pyoidc.
@stevenroose, have you gotten any further with this?
I'm also looking at doing something with LDAP in the coming months.
from pyoidc.
@lwm No, I haven't looked at this anymore, honestly.
from pyoidc.
I've rigged something up and it should be documented. Tagging this one as such.
from pyoidc.
Related Issues (20)
- Document release process / pypi upload HOT 2
- Create python 3.11 compatible release for pypi HOT 2
- Client.request_and_return no longer works with NoneResponse HOT 5
- Update conda-forge packages HOT 1
- Update URL references after repo move HOT 2
- AttributeError: 'dict' object has no attribute 'create_cookie' HOT 3
- Allow using different authn_method in Consumer.complete()
- Consumer.backchannel_logout and handling state HOT 11
- Architecture question regardings multiple app instances HOT 3
- Cannot add `scope` to registration request HOT 5
- Release 1.5.1 HOT 4
- Investigate failing readthedocs.io build HOT 1
- pydantic 2 seems to be incompatible with oic currently HOT 1
- Now in seconds vs. milliseconds: IATError: Issued in the future HOT 2
- Multiple matching kid support HOT 1
- Add support for RFC 9207 (?) HOT 1
- Why does `Client.do_access_token_refresh` require `state`? HOT 2
- Use SLSA workflow to create releases for PyPi HOT 1
- Client.parse_response misinterprets success as failure HOT 4
- Fix mypy
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pyoidc.