Small width layout Medium width layout Maximum width layout Small text Medium text Large text
     Search
Downloads Downloads Directory Directory Forums Forums Forge Forge Blogs Blogs        Marketplace Marketplace Careers Program Careers
Community › Forums Register  |  

PortalWebHosting
  Ads  
 


  Sponsors  

Meet Our Sponsors

SourceGear - Tools for Developers
.: CounterSoft :.
telerik
ExactTarget email software solutions
Merak Mail Server
WebSecureStores -- ASP.NET & DotNetNuke Hosting Solutions
 


DotNetNuke Forums
 
  Forum  General DotNetN...  Extend It! ( Pr...  Urgent authentication question......
Previous Previous
 
Next Next
New Post 9/19/2006 9:44 AM
User is offline Chris Harry
7 posts
10th Ranked


Urgent authentication question...... 
Ive posted here before but never received any responses.  I can no longer "sweep the issue under the carpet" so I must begin development very soon.....

I understand the built-in Active Directory authentication, but what I need to do is authenticate against a non-Active Directory LDAP setup.  Basically a server running OpenLDAP, the user password is encrypted and saved as a user attribute in the LDAP tree.

I cant figure out the best way to go about linking DNN up with this system.  I figure I have two choices: 1.  Create a login module that calls out to the LDAP system to see if the password is valid, and then log the user in if they are.  2.  Create a custom authentication provider that does the same, then just configure the site to use the custom provider.

The issues Ive run into with both approaches:

Approach #1.  Calling the LDAP system is trivial, Ive used components to do that before.  However, exactly what needs to be done to log the user into DNN?  I still need to declare group membership (we will be running modules that rely on data segregation based on users logging in), and I would want to save the user in the DNN userbase just for informational purposes.  How does one go about doing this programmatically?

Approach #2.  Ive opened the ADSIAuthenticationProvider project to look and see whats going on.  It looks quite complex, and I wouldnt know where to start to try and create my own provider.  I havent found any tutorials on how to do such a thing, as such Im beginning to think a custom module would be the easiest way to go....however, I would prefer the auth provider approach because then it (should) become a lot more reusable and modular (i.e. I can setup a different portal and just leave that auth provider set to the default).  *IF* I write a custom provider, what are the steps for "registering" (if any) it with the DNN system, and what steps would need to be taken to configure the portal to use the new provider?

This is really a stickler in our project, as the LDAP system is not going away anytime soon (although a migration to AD is planned, we all know how slowly things like that happen).  ANY (I mean ANY) help you can provide would be greatly appreciated.

Thanks in advance.
-Chris
 
New Post 9/20/2006 10:46 PM
User is offline Fuji Nguyen
194 posts
9th Ranked




Re: Urgent authentication question...... 

I did a similar project using an existing Single SignOn (SSO) db as authentication source to DNN 3.1, 3.2 and DNN 4.3.  I documented and posted the source code here.  I used the Approach #1.  I have not looked into Approach #2 but it  sounds interesting

 

Fuji Nguyen
FREE Visitor Hit Counter
Visit opensource.indyneinc.com for detail.
 
New Post 9/21/2006 12:14 AM
User is offline Measurelink
84 posts
10th Ranked


Re: Urgent authentication question...... 

Without meaning to trivialise the issue in any way, it seems to me that a rewrite of WindowsSignin.aspx might be the easiest way to achieve a seamless login.  That way you dont need to modify the core in any way; rather just point the site at WindowsSigninCustom.aspx.  It also means that you don't need to work through the authentication stuff.

I'm faced with a similar problem and have decided to look at one of two alternatives:

1.   Grab the Windows Login info and then query an (imported) database (from MS Exchange) (the only valid store of User data).  The advantage here is the ability to pick up Group information based on standard Email groups;

or

2.   Using CDO, query the Exchange Server to determine the user ID.

In both cases I dont need a password, as the User has already been authenticated through their standard Windows login.

I might point out that our use of AD (a historical problem) is rubbish and therefore I need to look at workarounds.

HTH in some way.

Steve T
 
 Page 1 of 1
Previous Previous
 
Next Next
  Forum  General DotNetN...  Extend It! ( Pr...  Urgent authentication question......
 


Forum Policy

These Discussion Forums are dedicated to the discussion of the DotNetNuke Web Application Framework.

For the benefit of the community and to protect the integrity of the project, please observe the following posting guidelines:

1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DotNetNuke.
2. Discussion or promotion of DotNetNuke product releases under a different brand name are strictly prohibited.
3. No Flaming or Trolling.
4. No Profanity, Racism, or Prejudice.
5. Site Moderators have the final word on approving/removing a thread or post or comment.
6. English language posting only, please.
 


The Standard in Senior Housing Information
SNAPforSeniors provides consumers with free online resources to assist them with their search for senior housing
www.snapforseniors.com 		DotNetNuke Web Hosting w/ ASP.NET 3.5
Unlimited email boxes, Unlimited databases, Unlimited domains. Plans start at $4.97
www.MyWinHosting.com 		SteadyRain
Founded in 1999, SteadyRain has extensive experience delivering Internet technology strategies and solutions for a diverse client base, ranging from Fortune 500 firms to successful start-ups.
www.steadyrain.com

DotNetNuke Corporation   Terms Of Use  Privacy Statement
DotNetNuke®, DNN®, and the DotNetNuke logo are trademarks of DotNetNuke Corporation
Hosted by MaximumASP