Ask - Test

I saw the comment on the new feature request asking if SCIM would help with this issue.  I read a little about it, and this talks about Identity management, so not really sure how this would help, as I am just wanting to use the Liferay LDAP integration, but with Google!  This is a feature that I'd like sooner, rather than later, so not sure waiting for an SCIM implementation will be possible, and the first delivery will likely have issues!  Based on previous experience!

I did not comment on the ticket directly, as I seem to not be able to get into the Jira system, I have had this issue before and it seems to stem from Us having our own Jira instance, and I just seem to get stuck in a lop trying to log in.

Regards

Hi Mark,

Sorry about being sloppy in my comment on the ticket.

One of the purposes of the SCIM is the same as the LDAP, to do the user provisioning. However, SCIM is more flexible. As the LDAP providers can generally act as a SCIM client, this is a way of provisioning user data that can be considered to change to. That may be able to solve such keystore related problems also with delegating that to the SCIM client. We would also support this direction.

That may be quicker, easier and less painful to implement than a properly working LDAP integration with key and certs added to a keystore.

Cannot that work to you?

Regards,
Zsigmond
 

Sorry, I somehow missed this reply!  

This all became irrelevant for us, as we're now using SAML for SSO and user provisioning, with a custom post login module.  And this seems to be working for us.

We were unable to expose the Google LDAP via SCIM, although Google does support SCIM it does, only for specific applications that can be selected from a list!  This may have changed, and I'm sure there will eventually be a 'custom' app support for this, but we found another way!