whada                 YAPC::Asia 2011                   2011/10/15                    tagomoris2011   10   15
2010/08   livedoor                 System Administration Group                    Develop Support Group2011   10   15
2011   10   15
whats WADA ?2011   10   15
WADA Pass                  (     )2011   10   15
whats whada ?2011   10   15
whada                 Whada Hits on the Advanced                  Dominant Authentication.                        Multi-Pr...
whada                        Multi-Protocol                 Authentication/Authorization                             Tool ...
Why whada ? (1)                 Many internal web services requires                   authentication/authorization.       ...
Why whada ? (2)                 Password dictionary is very sensitive                          and dangerous:             ...
Why NOT                   ActiveDirectory ?                 Managed by personnel department...                            ...
Why whada ? (3)                               We want to:                   add/drop new privilege definitions            ...
whada                      authorization data source:                       by whada privilege store                     a...
whada data                      Account: Account Name                  Privilege: Label for Authorization                 ...
2011   10   15
slapd perl backend                        Backend module runs in                  OpenLDAP Server (slapd) process         ...
2011   10   15
What i should do next ?                         OpenID / OAuth                       Improved Admin UI                   O...
Thank you!2011   10   15
Upcoming SlideShare
Loading in …5
×

Whada #yapcasia 2011

2,351 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
2,351
On SlideShare
0
From Embeds
0
Number of Embeds
504
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Whada #yapcasia 2011

  1. 1. whada YAPC::Asia 2011 2011/10/15 tagomoris2011 10 15
  2. 2. 2010/08 livedoor System Administration Group Develop Support Group2011 10 15
  3. 3. 2011 10 15
  4. 4. whats WADA ?2011 10 15
  5. 5. WADA Pass ( )2011 10 15
  6. 6. whats whada ?2011 10 15
  7. 7. whada Whada Hits on the Advanced Dominant Authentication. Multi-Protocol Authentication/Authorization Tool2011 10 15
  8. 8. whada Multi-Protocol Authentication/Authorization Tool (Now, LDAP only... )2011 10 15
  9. 9. Why whada ? (1) Many internal web services requires authentication/authorization. Authentication per services: chaos management worry poor UI2011 10 15
  10. 10. Why whada ? (2) Password dictionary is very sensitive and dangerous: new commers retired employees password changes2011 10 15
  11. 11. Why NOT ActiveDirectory ? Managed by personnel department... We cannot : change data structures add attirubutes normalize values (!) add ACL rule (!)2011 10 15
  12. 12. Why whada ? (3) We want to: add/drop new privilege definitions add/drop permission to/from anyone at anytime ignore password management use web centric authentication protocols2011 10 15
  13. 13. whada authorization data source: by whada privilege store authentication data source: external data source (ex: LDAP) client access protocol: LDAP (OpenID/OAuth comming soon!) https://github.com/tagomoris/whada2011 10 15
  14. 14. whada data Account: Account Name Privilege: Label for Authorization (ex: WHADA, BLOG, BLOG+ADMIN, ...)2011 10 15
  15. 15. 2011 10 15
  16. 16. slapd perl backend Backend module runs in OpenLDAP Server (slapd) process specified Perl Module. database perl suffix "dc=wada,dc=intranet" perlModulePath /root/whada/lib perlModule Whada::SlapdBackendHandler2011 10 15
  17. 17. 2011 10 15
  18. 18. What i should do next ? OpenID / OAuth Improved Admin UI Other password data source? (NIS? RDBMS?) Performance?2011 10 15
  19. 19. Thank you!2011 10 15

×