[Zope-dev] LDAPUserFolder
Jens Vagelpohl
jens@zope.com
Wed, 1 May 2002 09:45:27 -0400
i guess what you would need is an object that looks like a user folder but
most calls are redirected to a second, real, user folder. this object
would need to "implement" the typical user folder API and redirect most
calls, but override those methods that retrieve/compute the roles for a
given user.
jens
On Wednesday, May 1, 2002, at 08:59 , Dirk Datzert wrote:
>
>
> Jens Vagelpohl schrieb:
>
>> well, if all the user folders are configured the same way *except* for
>> the
>> groups-to-role bit then you should get the functionality you need.
>>
>
> Yes, I expect that. but what if you have 100 user-folders configured and
> need
> to change one option ?
> a lot or work.
>
>>
>> it's not trivial to program something that would allow retrieval of a
>> user
>> object at the root and then somehow mangle the list of roles based on
>> where
>> you are in the site.
>
> What is about the following:
> Have a central point of Configure, LDAP Schema, Custom Forms for all
> LDAPUserFolders and
> Caches, Users, Groups are local ?
>
> And do lookups again, not computed.
>
>>
>>
>> you might be able to patch the folder class so that local roles are
>> computed instead of just looked up, but that's hackish.
>>
>> jens
>>
>> On Wednesday, May 1, 2002, at 08:32 , Dirk Datzert wrote:
>>
>>> Hi Jens,
>>>
>>> one question about possibilities of LDAPUserFolder:
>>>
>>> We decide to install only one LDAPUserFolder in the Root-Folder and
>>> configure him to do the authentications against LDAP.
>>>
>>> In the subfolders we want to install 'LDAPUserFolders' which should not
>>> be configured again, but use the top-level LDAPUserFolder. In this
>>> 'LDAPUserFolders' there would be done the Groups Management on an base
>>> of LDAP-Group to Zope-Role mapping.
>>>
>>> Do you think it is possible to split this feature from LDAPUserFolder
>>> (with a little programming) ?
>>> Where should I look on programming and what need I take care about ?
>>>
>>> Regards,
>>> Dirk
>>>
>
>
>
> _______________________________________________
> Zope-Dev maillist - Zope-Dev@zope.org
> http://lists.zope.org/mailman/listinfo/zope-dev
> ** No cross posts or HTML encoding! **
> (Related lists -
> http://lists.zope.org/mailman/listinfo/zope-announce
> http://lists.zope.org/mailman/listinfo/zope )