将Jabber/XMPP与其他系统集成(身份验证,密码共享) [英] Integrating Jabber/XMPP with other systems (authentication, password sharing)
问题描述
是否可以指示jabber/xmpp服务器将身份验证委派给另一个模块?我们正在使用XMPP构建内部应用程序,如果我们可以让用户保留其在Web应用程序中使用的标准用户名/密码,那就太好了. Web应用程序当前正在哈希密码,因此数据库中的密码不是以纯文本格式存储的.如果不是这种情况,跨系统共享密码将很容易,但是,当然,在服务器端数据库中存储纯文本密码是一个很大的禁忌.
Is it possible to instruct the jabber/xmpp server to delegate authentication to another module? We are building an internal application using XMPP and it would be fantastic if we could let users keep their standard username/password that they use in our web-apps. The web-apps are currently hashing passwords, and so the passwords in the DB are not stored in plain-text form. It would have been easy to share passwords across systems if this were not the case, but then, of course, storing plain-text passwords in the server-side database is a big no-no.
理想情况下,我们可以告诉jabber服务器嘿,只需将您的用户名/身份验证请求传递到此处",然后运行其他处理身份验证的进程(也许甚至是xmpp bot?).
Ideally we could just tell the jabber server "hey, just pass off your username/authentication request to here" and have some other process running (perhaps even just an xmpp bot?) that handles authentication.
我们当前正在使用ejabberd作为我们的服务器,我相信它是用Erlang编写的.但是我们不依赖ejabberd.我知道XMPP很大,并且在很大程度上是可扩展的-但是我还没有在服务器端找到有关可扩展身份验证的任何信息.
We are currently using ejabberd as our server, which I believe is written in Erlang. We're not tied to ejabberd though. I know that XMPP is huge, and largely extensible - but I haven't found anything about extensible authentication on the server side.
我在XMPP上找到了此网站,但这似乎是用于在客户端和服务器之间协商身份验证的协议,而不是服务器上的实际身份验证机制.
I found this on the XMPP website, but that appears to be the protocol for negotiating authentication between the client and the server, not the actual authentication mechanism on the server.
关于如何在XMPP服务器和我们的其他系统之间合并身份验证方案的任何指示?
Any pointers on how to merge authentication schemes between an XMPP server and our other systems?
推荐答案
ejabberd具有多种身份验证方式.例如,如果您有用于组织的LDAP服务器,则可以使用LDAP.这适用于我的公司,并为我们的Wiki,票务系统等提供了一次登录.
ejabberd has multiple ways to authenticate. You can use LDAP, for example, if you have an LDAP server for your organisation. This works at my company, and provides a single log in for our wiki, ticket system, etc.
请参阅用户指南中有关身份验证的部分.
Have a look at the section on authentication in the user guide.
这篇关于将Jabber/XMPP与其他系统集成(身份验证,密码共享)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
