LDAP only for authentication

Hi,

I would like to integrate ldap authentication mechanism to wildfire however with the following exception. User creation, vcard etc will be stored and managed by Wildfire. The only bit will be that when a user authenticates with Wildfire, it will first try ldap and upon failure perform normal user authentication. Hence, I can create users in Wildfire who do not belong to the ldap store and still allow them to login.

Ldap will only be used as a first layer authentication. Hence if a user logs in, it checks to seeif there is a Wildfire account, and then checks to see if there is an ldap entry. If so, it tries to authenticate with the ldap. Ldap could fail for two reasons - user does not exist or incorrect password. If it fails, the authentication is done with Wildfire and the result returned.

Any help or even an alternative approach would be greatly appreciated.

Thanks,

Rakesh

Hi Rakesh,

Take a look at using the HybridAuthProvider. From the documentation:

The hybrid auth provider allows up to three AuthProvider implementations to be strung together to do chained authentication checking. The algorithm is as follows:

  1. Attempt authentication using the primary provider. If that fails:

  2. If the secondary provider is defined, attempt authentication (otherwise return). If that fails:

  3. If the tertiary provider is defined, attempt authentication.

Hope that helps,

Ryan

Hi, i am in the same situation as Rakesh, so i tested the HybridAuthProvider appending the following to my wildfire.xml:

I already had a ldap setting so that’'s why you dont see it here.

As soon as i put those above lines, wildfire keep redirecting me to the setup wizard…

Do you see what could cause this ?

Thanks in advance

-Chris

The closing “className” is missing the “/className”

<className>org.jivesoftware.wildfire.auth.DefaultAuthProvider<className>

Hopefully JiveSoftware will print out a warning if wildfire.xml is not valid XML so one could be warned very early.

LG

geez you right, i pasted the code from the javadoc from the link above and I did not check it…

It works better now but not quite right yet,i can login providing my ldap password but it does not work with my wildfire database password, any idea ?

Thanks in advance.

-Chris