Improved LDAP support


This issue contains several ideas around improving LDAP support in Jive Messenger. It is inspired by the following thread;

1) Use paged search controls when supported. This will increase performance and allow support for much larger sets of users. The following site has info on using the search control:

2) Add meta-data to LdapManager about supported features. When starting up, we should check the LDAP server to see what extensions it supports. This can be done with:

----------- Here is a simple program for finding out the list of extensions that an LDAP server supports.

// Create the initial context
DirContext ctx = new InitialDirContext();

// Read supportedextension from the root DSE
Attributes attrs = ctx.getAttributes(
"ldap://localhost:389", new String[]{"supportedextension"});

Here is the output produced by running this program against an LDAP server.

A list of controls at:
and the paged results at:

3) Try to extract ldap server vendor information:

4) Create an LDAP admin page in the admin console that displays LDAP info and allows some configuration changes. The new admin page should try to replace having to manually edit the wildfire.xml file. Moreover, the new page should let configure which groups are shared groups or let assume that all groups should appear in group members.




September 30, 2006, 6:00 AM

Closing this out. It really came to represent adding LDAP to the setup tool. Will re-file other issues from this original bug report as needed!

Norman Rasmussen
April 28, 2006, 9:30 PM

5) Allow binaryData to be used from LDAP. Base64 encode it before output. This would allow vCard photos to be stored in LDAP in the jpegPhoto field.