[Freeipa-users] users account functionality

Dmitri Pal dpal at redhat.com
Thu May 2 21:44:09 UTC 2013 

On 05/02/2013 09:49 AM, John Dennis wrote:
> On 05/02/2013 04:42 AM, Juan Armario wrote:
>> Hi,
>>
>> I'm Juan and I'm building a freeipa application and need to know if it
>> possible integrate a module or if is already developed, the typical
>> functionality when we want an authentication service for our users, like
>> remember password, create users, and send an email for confirmation, or
>> send a account delete  request.
>>
>> We have installed the basic freeipa and we need to incorporate this
>> functionality.
>>
>> Exist this or have I to implement it?
>
> It's a little hard to understand exactly what you're looking to
> accomplish, for instance what does "remember password" mean?
>
> It doesn't sound like what you're looking for requires adding a plugin
> module, rather you're looking to add a front-end to IPA which is easy
> to do with scripts. IPA is quite amenable to scripting because we
> provide a command line interface. You can either call the ipa command
> from a shell script or you can write your own Python scripts and
> invoke the IPA API directly. Be careful though, the type of operations
> you've described all require administrator privileges, it's not
> something a general user can do.
>
>
It looks like Juan is looking for some kind of more advanced self
service portal.
But it is not clear what the specific requirements are.
Juan can you please be more detailed in what are the workflows you have
in mind.
Are you looking for the self service registration with mail
confirmation? If yes this does not exist now and generally IPA is the
domain controller for the controlled environment it is not a good fit
for a general purpose accounting service unless you explicitly extend
it. If this is what you are looking for you can script the addition
flows with CLI or contribute code however you need to be sure your
security mode is sound. We do not want to add functionality that would
allow anyone to self register to any instance of IPA that would be a
security disaster.


-- 
Thank you,
Dmitri Pal

Sr. Engineering Manager for IdM portfolio
Red Hat Inc.


-------------------------------
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/

More information about the Freeipa-users mailing list