+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...
Give a REST to your LDAP directory services
1. Directories for the REST of us
Ludovic Poitou
OpenDJ Product Manager - ForgeRock
2. About me
Director ForgeRock France
OpenDJ Product Manager
Also community manager, contributor
and blogger
15 Years at Sun
Mostly on Sun Directory Services
Developer, Tech lead, Architect
Ludovic Poitou!
Community Manager for OpenDS
3. LDAP ?
Good protocol
Great products and services
Main problem : Where are
the developers ?
LDAP or directory services at
University ?
Enjoy the Dev Kits !
Protocol from another era : ASN1,
BER…
(cc) http://www.flickr.com/photos/bloodlessr/
5. So what else ?
HTTP for transport
JSON for data
representation
Loosely coupled
Fueling the API economy
⇒ RESTfull APIs
(cc) http://www.flickr.com/photos/iain/
6. Introducing REST to LDAP
/users
/groups
But also any object or collection can be configured
/hosts
/networks …
All CRUD operations:
Queries, with filters and returned attributes
Put / Post / Delete / Patch…
Directory specific operations: Modify password…
8. 2 Options
In OpenDJ server
Embedded
Direct access to the data and services
More secure
As a standalone web application
Gateway between HTTP and LDAP
Works with any LDAP server
Can be scaled like any other web application
Network latency
9. Embedded REST to LDAP
Delivered part of OpenDJ 2.6 by default.
Just needs to be enabled
As well as http logs (for auditing and
troubleshooting)
Configuration as a json file
LDAP based configuration is coming
30. REST to LDAP vs SCIM
OpenDJ REST to LDAP is inspired by SCIM
Filters
Queries
Identifiers
Json representation
SCIM is still a moving target
SCIM is Identity centric vs REST to LDAP is generic
SCIM support will be a strip down, hardwired
configuration of REST to LDAP