2 Replies Latest reply on Dec 18, 2008 8:14 AM by (ravisuda)

    LDAP authenticating FLEX/AIR users

      Hi All,

      I would like to build an Flex/AIR application that initially provides LDAP authentication.

      I am new to these Flex/Actionscript/DataServices however I have managed to get a nice datagrid querying & updating a MySQL Db from a Flex App using AmfPHP... Nice. I'm learning :-)

      My question at the moment is what is the best/easiest way to enable LDAP authentication?

      Could I use the following setup?
      Flex/AIR IDE, LiveCycle Data Services ES Express, LDAP server?

      Or do I NEED a j2SE server in there somewhere? or even a Coldfusion server?
      I would like to try and avoid the need to include j2SE or Coldfusion servers at this stage.

      This article describes performing an LDAP Query (http://www.adobe.com/devnet/livecycle/articles/perform_ldap_resolution.html) so LDAP authentication must also be possible! Just need some help to point me in the right direction.

      Hope this makes sense.

      TIA
      Danny
        • 1. Re: LDAP authenticating FLEX/AIR users
          Steve L Walker Level 5
          Danny,

          For deploying to AIR, take a look at http://labs.adobe.com/wiki/index.php/AIR:HTML_Security_FAQ.

          FYI. For Flex applications deployed to Flash Player, in the generic use case you have to look no farther than the existing web application security.

          Since Flex applications run in Flash Player in an HTML wrapper, Flex utilizes the same security model as all web-based applications. The web application has a deployment descriptor (web.xml) that restricts resources based upon URL patterns, names the security roles that are allowed to access these resources, and names the users, or groups of users, in each role. Next, you choose an authentication method, typically BASIC or FORM-based. For FORM-based, you develop a login interface (in HMTL or Flex) that POSTs to the action 'j_security_check' which is defined in the Servlet API spec and recognized by the application servers HTTP server. Once authenticated, Flash Player then inherits the security context of the browser container and you are on your way.

          The following docs provide more detail:

          http://livedocs.adobe.com/flex/201/html/security2_117_01.html

          http://livedocs.adobe.com/livecycle/es/sdkHelp/programmer/lcds/security2_06.html

          I hope that helps.

          Steve
          • 2. Re: LDAP authenticating FLEX/AIR users
            Hi,
            Thanks for the reply. I have problem in showing the login page to the user. I used JAAS security in my web.xml and restricted the access to all pages. I mentioned login.html as the login page and login.swf is wrapped inside login.html.

            But Flash Player is not loading login.swf with JAAS security. Without JAAS, its able to load the swf file. What is preventing flash player to do this.

            Thanks
            Ravi