OpenDJ is both a full-fledged LDAP / LDAPS server, AND an HTTP / HTTPS REST-based server. This is an important distinction, because each can be run separately, or in tandem.
IAM Stack can runs both LDAP and HTTP/REST on the same server. It is possible to set up REST Gateways and other more custom configurations to further separate the two.
Here's where it gets interesting:
REST is not enabled by default
REST uses its own logger and connection handler
REST uses its own separate configuration file
REST presents only a "window" of OpenDJ schema data
The last point is important. The REST interface represents potential attribute data. In other words, it CAN respond to data queries for all data available in the directory. By default, it does not. Nor, is it aware of custom schema extensions by default.
When setting up OpenDJ, first get all DJ / LDAP components working correctly, then add HTTP support later.
No comments:
Post a Comment