Using Active Directory

From DreamFactory
Jump to: navigation, search
DreamFactoryTutorialsUsing Active Directory
(Created page with "Kitchen Cabinets: Options for Material, Design And Construction <br><br>Do no despair in case you just have a tiny kitchen. These days it's very common for home owners to have...")
 
 
(12 intermediate revisions by 4 users not shown)
Line 1: Line 1:
Kitchen Cabinets: Options for Material, Design And Construction <br><br>Do no despair in case you just have a tiny kitchen. These days it's very common for home owners to have a little one. The important thing is that it's functional. You can transform your kitchen in a functional one through getting practical tips about small kitchen design. You do not need a substantial kitchen specifically kitchen isn't an effective one. <br><br>With the help of an experienced Derby kitchen designer you will get complete treating your Derby kitchen layout and collection of materials, the sole limiting factor could be the physical space that the Derby kitchen should easily fit into to along with your imagination. Ideas doesn't have to be completely original, it is possible to gather them from DIY stores, Derby kitchen showrooms and magazines and then adapt these phones suit the method that you use your home and the method that you want these phones function. <br><br>That isn't to state that you should give up on your plans and allow the designer to any or all from the work. In fact, you ought to find a Kitchen designer in Toronto that you are able to use, that happen to be capable of implement numerous of one's ideas as you can. Take all of your notes, pictures you have clipped from magazines as well as your dreams on the kitchen designer. Together, you will be able to come up with something that you love. <br><br>The kitchen "work triangle" is created through your cooking area, utility area plus clean-up space. Picture yourself working in the biggest market of this triangle. If at all possible, you would like to go from one corner from the triangle towards the other corner in a tiny number of steps. Especially consider the counter space between the kitchen kitchen appliances plus the sink. This will be the places you where you do the work most with the time. Is there adequate cooking space here? Can you efficiently have the stirring spoon plus a napkin from a drawer? Have you got a convenient cutlery drawer in the area? <br><br>Ideally, you shouldn't purchase anything in your first trip to the paint store, because your initial goal must be to obtain ideas. Once you are capable to look at the color swatch display, put everything from your mind and just choose colors that interest you, even if you realize that tangerine won't work in your house-if it speaks to you, figure it out. Make sure you go with a few neutrals that could work, cool and warm colors, to help you consider the samples home and begin the operation of elimination. Warm colors, such as golds and reds, become appetite stimulants and best complement food, although cooler colors may help calm and brighten your kitchen If you're ready to find more info on [http://david0r0p9oc4.exteen.com/20150522/high-quality-non-stick-cookware Derby kitchen colors pictures] review our web site. .
+
=== Tutorial ===
 +
 
 +
To use Active Directory (AD) authentication over LDAP in a DreamFactory instance, you must have the PHP LDAP extension enabled. In APT the package is <code>php5-ldap</code>, in Yum it’s <code>php-ldap</code>, and in Windows Bitnami instances it’s provided as <code>php_ldap.dll</code>.
 +
 
 +
You can then provision an AD service from the 'Services' tab in Admin Console. Click on the 'Create'
 +
button on the services tab to create a new service. Select 'adLdap Integration' from the 'Service Type'
 +
drop down menu. For the name field use a short, meaningful, one word name for your service. This will be used as your
 +
AD service identifier. Fill out rest of the information on this form and then go to the 'Config' tab.
 +
 
 +
[[File:Tutorial using ad 1.png|800px]]
 +
 
 +
On the config form you will need to provide all the details of your AD server and select a default role for your
 +
AD service. This role will be assigned (for all applications in the system) to all users signing in using this AD service.
 +
 
 +
[[File:Tutorial using ad 2.png|850px]]
 +
 
 +
'''''Note:''' Username and Password fields are optional. Provide your Active Directory Username and Password to enable additional features of this service.''
 +
 
 +
=== API Endpoint ===
 +
 
 +
<pre>POST https://your-url/api/v2/user/session?service={ad_service_name}</pre>
 +
<source lang="JavaScript">
 +
{
 +
    "username" : "user_name",
 +
    "password" : "password"
 +
}
 +
</source>
 +
 
 +
-- OR --
 +
 
 +
<pre>POST https://your-url/api/v2/user/session</pre>
 +
<source lang="JavaScript">
 +
{
 +
    "username" : "user_name",
 +
    "password" : "password",
 +
    "service"  : "ad_service_name"
 +
}
 +
</source>
 +
 
 +
=== Example - Sign-in using Active Directory Authentication ===
 +
 
 +
* AD service name: demo
 +
* Request URL:
 +
<pre>POST https://your-url/api/v2/user/session?service=demo</pre>
 +
 
 +
<source lang="JavaScript">
 +
{
 +
  "username" : "user_name",
 +
  "password" : "password"
 +
}
 +
</source>
 +
* Response:
 +
<source lang="JavaScript">
 +
{
 +
    "session_token": “abc.123abc.efg”,
 +
    "session_id": “abc.123abc.efg”,
 +
    "id": 1,
 +
    "name": "John",
 +
    "first_name": "John",
 +
    "last_name": "Doe",
 +
    "email": "jdoe@gmail.com",
 +
    "is_sys_admin": false,
 +
    "last_login_date": "2015-06-30 16:46:59",
 +
    "host": "your-url"
 +
}
 +
</source>
 +
 
 +
One source of confusion among first time users pertains to the lack of a '''POST''' endpoint in the Active Directory or LDAP service's API Docs interface. This does not exist because when authenticating, the URL references '''/api/v2/user/session?...''' rather than the Active Directory / LDAP resource. In other words, session creation occurs by way of the '''user''' REST resource rather than through the mounted directory service itself, with the directory service being identified by the '''service=...''' parameter.

Latest revision as of 16:09, 26 July 2018

Tutorial

To use Active Directory (AD) authentication over LDAP in a DreamFactory instance, you must have the PHP LDAP extension enabled. In APT the package is php5-ldap, in Yum it’s php-ldap, and in Windows Bitnami instances it’s provided as php_ldap.dll.

You can then provision an AD service from the 'Services' tab in Admin Console. Click on the 'Create' button on the services tab to create a new service. Select 'adLdap Integration' from the 'Service Type' drop down menu. For the name field use a short, meaningful, one word name for your service. This will be used as your AD service identifier. Fill out rest of the information on this form and then go to the 'Config' tab.

Tutorial using ad 1.png

On the config form you will need to provide all the details of your AD server and select a default role for your AD service. This role will be assigned (for all applications in the system) to all users signing in using this AD service.

Tutorial using ad 2.png

Note: Username and Password fields are optional. Provide your Active Directory Username and Password to enable additional features of this service.

API Endpoint

POST https://your-url/api/v2/user/session?service={ad_service_name}
{
    "username" : "user_name",
    "password" : "password"
}

-- OR -- 

POST https://your-url/api/v2/user/session
{
    "username" : "user_name",
    "password" : "password",
    "service"  : "ad_service_name"
}

Example - Sign-in using Active Directory Authentication

  • AD service name: demo
  • Request URL: 
POST https://your-url/api/v2/user/session?service=demo
{
   "username" : "user_name",
   "password" : "password"
}
  • Response: 
{
    "session_token": “abc.123abc.efg,
    "session_id": “abc.123abc.efg,
    "id": 1,
    "name": "John",
    "first_name": "John",
    "last_name": "Doe",
    "email": "jdoe@gmail.com",
    "is_sys_admin": false,
    "last_login_date": "2015-06-30 16:46:59",
    "host": "your-url"
}

One source of confusion among first time users pertains to the lack of a POST endpoint in the Active Directory or LDAP service's API Docs interface. This does not exist because when authenticating, the URL references /api/v2/user/session?... rather than the Active Directory / LDAP resource. In other words, session creation occurs by way of the user REST resource rather than through the mounted directory service itself, with the directory service being identified by the service=... parameter.

Retrieved from "https://wiki.dreamfactory.com/index.php?title=DreamFactory/Tutorials/Using_Active_Directory&oldid=34402"