Hi Will,
I actually just confirmed that you can create a console .net core app, as well as an
asp.net core web app that you can use the .net core with or fully fledged .net framework.
My question is now this 389ds is a web app or a console app?
Also how would one integrate this into 389ds as well as cockpit. Does 389 have an irc
channel on a network somewhere?
Regards,
Jonathan
From: Jonathan Aquilina <jaquilina(a)eagleeyet.net
Sent: 10 July 2020 06:23
To: General discussion list for the 389 Directory server project.
<389-users(a)lists.fedoraproject.org
Subject: [389-users] Re: syncronizing users to 389ds from Azure AD
Thanks for the words of encouragement Will đ
What I need to confirm and if I am not mistaken Visual Studio 2019 actually allows you to
create a .net core project to be fair so that might be perfect for compatability sake, but
it means we would then need some wrapper of some sort to integrate into the existing
codebase.
Regards,
Jonathan
-----Original Message-----
From: William Brown <wbrown@suse.de<mailto:wbrown@suse.de>
Sent: 10 July 2020 06:19
To: 389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org
Subject: [389-users] Re: syncronizing users to 389ds from Azure AD
On 10 Jul 2020, at 13:25, Jonathan Aquilina
<jaquilina@eagleeyet.net<mailto:jaquilina@eagleeyet.net>> wrote:
Hi Will,
I was actually thinking .net to be fair but not sure given .net core
is only available on linux what functionality we would have if written in .net and what
would be lost or missing.
Even if the POC is in .net, that can still go a long way to a rewrite in rust or similar
for mainlining. But yes, the risk is that as a linux-centric project, we may not have
access to .net core, and no one one the team has (?) much experience in .net :(
But don't let that stop you, it's better to start somewhere Ithink in a task like
this.
Regards,
Jonathan
-----Original Message-----
> From: William Brown <wbrown@suse.de<mailto:wbrown@suse.de>
Sent: Friday, 10 July 2020 05:19
> To: 389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org
Subject: [389-users] Re: syncronizing users to 389ds from Azure AD
> On 10 Jul 2020, at 13:11, Jonathan Aquilina
<jaquilina@eagleeyet.net<mailto:jaquilina@eagleeyet.net>> wrote:
>
>
Hi Will,
>
> Thanks for the below. My next question for 389ds what language
would this need to be developed in?
Again, it depends. If the tool was external, today it's probably
best to use python and lib389. If it was a plugin in the server that would be C. However,
we are also starting to develop Rust support, and I personally am biased to prefer Rust
(especially it's tools for json like serde are excellent).
If you were to do this in Rust as an external tool, the jump to
making it a part of the server core would also be easier too if we decided to rearchitect
and integrate it too. So my vote preference order is:
1 - Rust
2 - Python (if external sync tool)
3 - C (if external or internal)
Of course, part of it's also what you're happy to work in
too.
Hope that helps,
>
>
Regards,
>
Jonathan
>
>
-----Original Message-----
>> From: William Brown <wbrown@suse.de<mailto:wbrown@suse.de>
> Sent: Friday, 10 July 2020 05:01
>> To:
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org
>
Subject: [389-users] Re: syncronizing users to 389ds from Azure AD
>
>
>
>> On 10 Jul 2020, at 11:57, Jonathan Aquilina
<jaquilina@eagleeyet.net<mailto:jaquilina@eagleeyet.net>> wrote:
>>
>> Hi William,
>>
>> This is something I would love to work with the community on
and help to develop myself just not sure where I would start.
>
> There are a few ways you could approach it. One way would be an
external daemon that runs and feeds data into a seperate 389 topology.
>
> Another way would be a new "replication plugin" in the
server so that 389 can consume data from azure AD.
>
> But both of them will need to read data from azure AD and know:
>
> * What have we seen before?
> * What's changed?
> * How to transform the azure ad entry to something 389 can
understand.
>
> So I think the first place to start is knowing what API's
azure AD has for external applications to synchronise data from azure AD. (Getting back
into azure is another problem of it's own that can be for later).
>
> Maybe these two urls are a starting point.
>
> -
> connect-sync-endpoint-api-v2
>
> OR
>
> o
> verview?view=graph-rest-beta
>
> So I think that's where to start. Then you could probably
write a toy-demo application that can read from the sync api. Then you can build it out
from there to push data to 389.
>
> Does that help?
>
>
>
>
>
>>
>>
>>
-----Original Message-----
>>> From: William Brown <wbrown@suse.de<mailto:wbrown@suse.de>
>> Sent: Friday, 10 July 2020 01:26
>>> To:
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org
>>
Subject: [389-users] Re: syncronizing
users to 389ds from Azure AD
>>
>>
>>
>>> On 10 Jul 2020, at 02:19, Jonathan Aquilina
<jaquilina@eagleeyet.net<mailto:jaquilina@eagleeyet.net>> wrote:
>>>
>>> Hi Guys,
>>>
>>> I am just wondering is it possible to sync users from
Azure AD to a 389ds server?
>>
>> I don't know of anyone that has done it today, but that
doesn't mean
>> it's not possible. It also depends what Azure AD offers
for
>> consuming their data. So I think some work would be needed,
but as a
>> project, we'd love to support you and advise in anyway we
can if you
>> want to do this (but sadly like anything we don't have
time to
>> implement it on your behalf today :( )
>>
>>>
>>>
Regards,
>>> Jonathan Aquilina
>>> EagleEyeT
>>>
>>> Phone: +356 2033 0099
>>> Moblie + 356 7995 7942
>>>> Email: sales@eagleeyet.net<mailto:sales@eagleeyet.net
>>>
>>> _______________________________________________
>>> 389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
>>> unsubscribe send an email to
>>>>
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
>>> Fedora Code of Conduct:
>>> List Guidelines:
>>> List Archives:
>>> a
>>> p
>>> r
>>
>> â
>> Sincerely,
>>
>> William Brown
>>
>> Senior Software Engineer, 389 Directory Server SUSE Labs
>> _______________________________________________
>> 389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
>>> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
>> Fedora Code of Conduct:
>> List Guidelines:
>> List Archives:
>> p r
oject.org
_______________________________________________
>> 389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
>>> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
>> Fedora Code of Conduct:
>> List Guidelines:
>> List Archives:
>> p
>> r
>
> â
> Sincerely,
>
> William Brown
>
> Senior Software Engineer, 389 Directory Server SUSE Labs
> _______________________________________________
> 389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
>> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct:
> List Guidelines:
> List Archives:
> r
oject.org _______________________________________________
> 389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
>> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
> Fedora Code of Conduct:
> List Guidelines:
> List Archives:
> r
â
Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server SUSE Labs
_______________________________________________
389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct:
List Guidelines:
List Archives:
oject.org _______________________________________________
389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
> unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct:
List Guidelines:
List Archives:
â
Sincerely,
William Brown
Senior Software Engineer, 389 Directory Server SUSE Labs
_______________________________________________
389-users mailing list --
389-users@lists.fedoraproject.org<mailto:389-users@lists.fedoraproject.org> To
unsubscribe send an email to
389-users-leave@lists.fedoraproject.org<mailto:389-users-leave@lists.fedoraproject.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/389-users@lists.fedoraproje...