>>>>> "Rob" == Rob Gorrell <[log in to unmask]> writes:
Rob> I'm new to the moonshot community and still trying to wrap
Rob> my head around the project, however, I was wondering... we have
Rob> the need to provide a federated ldap service for authn, authz,
Rob> and provisioning to a collaborative application that requires a
Rob> single ldap source where one does not exist for this
Rob> community. Is moonshot (potentially) capable of providing ldap
Rob> as a service? or am I way off base with my thinking here? sorry
Rob> if this is ludicrous.
Yes.
One of our developers, Luke Howard, put together a proof of concept for
this.
He developed support so that you could use attributes transported in
Moonshot authentication for ACL/authorization decisions with OpenLDAP.
The Moonshot GSS mechanism works fine as a SASL mechanism and in that
role can be used for LDAP authentication.
--Sam
|