Use cases :
- If LDAP not available (connection problem, etc), then fallback to SonarQubeDatabase.
- Manual creation of local accounts (which does not exist in LDAP) : set all fields (login, password, full name, email).
- Manual creation of external accounts: set login, all other fields should come from external system.
SONAR-3137- Warning message about passwords.
- Automatic user creation.
- Already implemented -
SONAR-1334, but should be tuned -SONAR-3137andSONAR-2292
- Already implemented -
- Manual creation of local groups (which does not exist in LDAP) : set name, members.
- Already implemented.
- Manual creation of external groups: set name, members of this group should be determined automatically from external system.
We are not going to cover following use cases for now :
- Multiple servers - fail-over
- Different schemas
- UI for configuration
- Single Sign On - SONAR-2950
Useful links :
- http://www.sonatype.com/books/nexus-book/reference/ldap.html
- http://platform.xwiki.org/xwiki/bin/view/AdminGuide/Authentication#HLDAPAuthentication
- http://markmail.org/message/u3cx5fpwkqkgibsi
- http://shiro.apache.org/architecture.html
- http://confluence.atlassian.com/display/DOC/Connecting+to+an+LDAP+Directory
Labels
