Expand my Community achievements bar.

Join us in celebrating the outstanding achievement of our AEM Community Member of the Year!
SOLVED

LCCS and LDAP

Avatar

Former Community Member

Hello,

Is it possible to integrate LCCS and LDAP?

Maybe there are any samples of it?

Thank you in advance,

Kioshin10

1 Accepted Solution

Avatar

Correct answer by
Employee

Hi and sorry for the delay.

It is possible to integrate LCCS with LDAP but we don't have a specific example of how to do it. You would use the external authentication APIs and we have some example of how to generate a valid authentication token given a user name and a unique id.

Basically this is the deal:

- your client authenticates into your LDAP system on your server backend (via an HTML form or a Flash application that interacts with your server).

- once authenticated you take a "unique identifier" from your LDAP "record" (the uid, gid/uid or potentially the full distinguished name but I would not recommend that) and the user name and use it to generate an authentication token for a specific session in a room.

- then you send the token to your Flash/Flex client or start a Flash/Flex client that will connect to the specified room and authenticate with that token.

In general LCCS doesn't require strict integration with your authentication system. You authenticate into your system and then generate a signed token that tells LCCS that the user "carrying" that token is a valid user that has been authorized to access a specific room.

Anyway, please check the documentation and the examples for external authentication and if you have any specific question, or you get into implementation details and need more help, don't hesitate to ask here.

View solution in original post

1 Reply

Avatar

Correct answer by
Employee

Hi and sorry for the delay.

It is possible to integrate LCCS with LDAP but we don't have a specific example of how to do it. You would use the external authentication APIs and we have some example of how to generate a valid authentication token given a user name and a unique id.

Basically this is the deal:

- your client authenticates into your LDAP system on your server backend (via an HTML form or a Flash application that interacts with your server).

- once authenticated you take a "unique identifier" from your LDAP "record" (the uid, gid/uid or potentially the full distinguished name but I would not recommend that) and the user name and use it to generate an authentication token for a specific session in a room.

- then you send the token to your Flash/Flex client or start a Flash/Flex client that will connect to the specified room and authenticate with that token.

In general LCCS doesn't require strict integration with your authentication system. You authenticate into your system and then generate a signed token that tells LCCS that the user "carrying" that token is a valid user that has been authorized to access a specific room.

Anyway, please check the documentation and the examples for external authentication and if you have any specific question, or you get into implementation details and need more help, don't hesitate to ask here.