I've setup an OpenLDAP, and hacked my (UniformServer) Apache2 to use mod_auth_sspi, configured my virtual hosts,
and finally hacked CustomContent, using some tips I learned while suffering with WebSphere LDAP integration :
- so my user is now automatically authentified using NTLM/Integrated Authentication (ie, Windows Login credentials): user login is in $_SERVER['REMOTE_USER'];
- I can serve CustomContent according to the user or his belonging to a group, through LDAP
- and I can populate lists in my cmsms usertags, using LDAP queries to read groups
This should work with IIS instead of Apache (this thing was invented by Microsoft...), and Active Directory instead of OpenLDAP.
The code is ugly so far, but it will go nicer...
I'm NOT publishing it right now 'cause I want to conduct some tests against an AD first.
Here are my problems:
Problem #1 right now is to find an AD I can query through LDAP... Do you know any (I googled for this, but no success) ? If you have one, can you open it for me through your firewall (I have a fixed IP) ?
Problem #2 would be to find some beta-testers.... so we can validate together it works in other environments
Problem #3 will be to put all this in a nice container - I've not being thinking so far about using this from other modules, apart from CustomContent... I'll / we'll have to decide wether to put this in a Tag or a Module (it involves some configuration...)
Tell me what you think of this / if you can bring me an AD / are interested !!!
(Proud) Fred
