[Typo3-dev] LDAP System Extensions II
Martin T. Kutschker
Martin.no5pam.Kutschker at blackbox.n0spam.net
Tue Dec 7 13:44:57 CET 2004
Daniel Thomas wrote:
> Hi Masi
>
> There are three operations mentioned in your sentence:
> - try to find the user
> - try to authenticate the user
> - try to load his/her data
>
> The authentification system needs to take care of the first two. Whether
> a service wants to load data for a user is up to the service and not
> responsibility of the framework. (Imaging a service authenticating a
> usergroup on the basis of an IP. No Userrecord involved at all.)
>
> The getUser() function tries to find the user.
> The authUser() function tries to authenticate the user.
What then is the the "load data" function?
>> Think authentication via passwd and details in an external db.
>>
>> I know that it was done this way because it was convenient in the LDAP
>> case, but it's not correct.
>
> There is no inherent connection whatsoever between the LDAP authservice
> and the service system. René developped the former completely independ.
Well, the (old) LDAP code I read used definitely the getUser to find and
load the user data. The authUser() call merely looked for a flag in the
array returned by getUser(). Of course this was only an
LDAP-implemention of an auth services. But I don't remember any "load data".
But due lack of time I didn't check the current source.
Masi
More information about the TYPO3-dev
mailing list