I am looking for the best way to provide authorization, authentication, and auditing to web services. I will use the web service gateway device deployed in the DMZ, and there will be an LDAP instance as the repository of users behind the firewall. How to build it?
Greetings
K.A.
Update As indicated in the answer below, LDAP is not ideal for auditing. Now we look at the call of our CRM system for this function, since we can check the client’s use.
. (, "uid" ). , , DN .
" ", , , " ", , "groupOfNames" " DN " member ".
, . LDAP, , . , , syslog.
Source: https://habr.com/ru/post/1699303/More articles:Каков наилучший способ разрешить как сервлет, так и клиентские скрипты читать один и тот же файл? - javaDesigning a Wiki, Design Considerations and Feedback - designPermission management recommendations? - securityC # 4.0 Feedback - c #Is this heart rate detection method thread safe and consistent? - javaSWT Image concatenation or tile / mosaic - javaDesigning Modular Webmasters Using .Net 2.0 Wizard Control - designWhy is Build Fails with CruiseControl.NET, but it builds fine manually with the same settings? - c ++Getting various records from mysql query - joinHow to create an extension method for a class in C #? - c #All Articles