Joomla Membership platforms and OPENLDAP - joomla

I have several Joomla sites all tied to the same OPENLDAP security engine.
I am required to stand up a paypal-subscription platform, however most Joomla subscription components force mysql as the backend to manage the users. Since I have multiple sites all at once, I need to create/manage the accounts on OPENLDAP.
Does anyone know of any registration engines that will use OPENLDAP vice Mysql? I am also open to any non-joomla registration engines as well.
Thanks

Related

Saving organization-wide application settings in Teams app

I have a Teams application (Tab). I am an ISV provider, and provide a multi-tenant application that is installed by customers via Teams App Store in their organizations.
How do I save settings for my application organization-wide for the customers? For example, CustomerA has installed the app and then CustomerB. I want some storage that would be unique for CustomerA and CustomerB and the app, and located in customer's environment. The settings I want to save are not per-user, but per-organization (tenant).
Somewhat similar to "App Data" folder you have in Windows Desktop for example.
Does such a storage exist? Does API for this storage exist?
A tab app is a simply a web application that you render inside of Teams. As a result, what the app does, and where and how it does it, is totally up to you. This includes any data storage you choose to have behind the scenes. For example, your tab could be built in PHP and use MySQL, or built in ASP.Net and use SQL Azure or CosmosDB. It's totally up to you, but you need to implement it yourself, as an ISV.
The important piece to differentiate clients, however, is being aware of the TenantId for each user, so you can look up which client's settings you need from the database. The most simple way to do this is simply the tid property on the Teams tab context. You can read more about that here. Unfortunately, because it's just accessed via Javascript, it's not entirely secure - for a more secure mechanism, you should be creating an Azure Application, and generating jwt tokens that you can authenticate against in your backend. It's a much more complex topic, but hopefully this answer at least gives the background you need. For more info on the security aspects (validating the token etc.), please see this question: How to restrict access to Azure Function to only allow requests from a custom Microsoft Teams App?.

Laravel Multi-tenancy Best Practices

So we have an Admin Portal web app, a Client Portal web app, and an API app.
Admin Portal is built in Laravel 5.x
Client Portal is built in Laravel 5.y
API is built in Lumen 5.z
Admin Portal:
Acts like a CMS for our 100 employees to interact with customer data
This app sits on its own repo “admin_portal”
This app has its own sub-domain admin.company.com
Has an admin database schema, with employees table used for authentication (this table has login email and password of our 100 employees)
Has pages like reports, tickets etc.
Client Portal:
Acts like a Customer-facing portal where our 1,000 clients login and
perform actions like submit information requested and see status of
their current case
This app sits on its own repo “client_portal”
This app has its own sub-domain client.company.com
Has an customer database schema, with clients table used for authentication (this table has login email and password of our 1,000
clients)
API:
Acts like an API for outsider to interact with our 2 DB schemas
This app sits on its own repo “api”
This app has its own sub-domain api.company.com
Pretty much all pages, UIs, features in Admin Portal and Client Portal are different.
However, there are some repeated codes in Admin Portal and Client Portal: models, helper functions (i.e. both apps need to talk to some third-party API or need to generate similar PDFs) etc.
A developer in our team suggested combining Admin Portal, Client Portal, and API into 1 giant multi-tenant Laravel app so we can have less code-base and eaier to maintain.
We’re trying to research:
Whether we should do this? (in what use-case to implement a multi-tenancy app vs single-tenancy app)
What are the Pros and Cons (development, deployment, debugging, security, and maintenance)
Whether it’s doable with Laravel, or what would be the side-effects.
I’d like to have the community to give us your opinions and experiences. A few things to consider though:
We may want to eventually to lock down Admin Portal to our office IPs only
API is using OAuth while Admin Portal and Client Portal are not
We are exploring micro-services like Lambda functions to off load a lot of logic from PHP
Each app may need a different set of PHP packages/versions (defined in composer.json)
We are using Bitbucket Pipelines and AWS CodeDeploy, listening on each repo
Highly appreciated and cheers!

Web Configuration, Security in Oracle APEX

I want to build an web application in Oracle APEX, where i want users to enter into the database server through the application server, thus i can ensure more security in my application. IF this is hard, then is there any other way where i can ensure more security in a web application in Oracle APEX?
Oracle APEX is a very stable and secure environement.
As is,
you can encrypt and enforce high level passwords for the users
you can lock account to avoid brute force attacks
Devs and admins have accounts locked after a few attempts by default to avoid this issue
The service can be easily configured with any SSL
Webservices, like most of them, can be programmed to use access_tokens and other validations.
To my knowledge any additions security could be configured on the server and firewall. So I would say that you can do I lot, but it is up to you to perform good practices when defining your system's security.
Hope ity helps and good luck! :)

Apache 2 - LDAP/eDirectory(Novell) Automatic Login / Authentication

So I've been tasked to develop some enterprise web applications, but our users hate logging in to every site. After our users authenticate to eDirectory, is it possible to provide a Single Sign On feature for them. I know it's possible to do with AD, but I was wondering if anyone has actually done it with Novell?
Currently, I'm testing out solutions on WAMP (Apache 2.2). I was looking into mod_auth_sspi but I'm not sure if it will work with Novell.
The typical issue on these setups is how you are going to pass credentials from the Browser to the Web Application. You can setup Kerberos on eDirectory which should work similar to Microsoft Active Directory using GSSAPI which is vendor independent.
You may need to make some changes to browser settings to make any of these work seamlessly.
However, SPPI is a proprietary variant of GSSAPI with extensions and very Windows-specific data types and AFIK, will not work easily with eDirectory or browsers other than IE.
If possible, look into a Access Manager product that will be (at least nearly) seamless. Most will allow any(?) WEB based application to utilize SSO in one form or another.
-jim

Proof of concept for Magento multi-websites

I am not sure if my question is suitable here. If not, forgive me.
Magento supports multi-websites on a single installation. Let's say that I'd like to make e-commerce websites for fashion industry merchants. I would install an e-commerce solution for each merchant. However, since Magento supports multiple websites on a single installation, can I just install a single Magento to support all the merchants? Each merchant has a domain and they don't share any information each other.
Or should I install a Magento for each merchant?
Thanks.
Sam
Yes, it is possible to support multiple Magento stores on one hosting account. If your hosting account allows parked domains, then it is possible to use one IP address to secure all the sites using a Unified Communications (UC) or multi-domain SSL certificate available from most vendors. Some of these certificates may support up to 100 unique domain names.
There are still other issues regarding performance that you should consider.
Depending on what you want to do this is doable. I was actually searching for a similar thing and found this resource:
Magento KB: How Multiple Websites & Stores Work
It is thus possible to have different web sites (with different domains) or a single web site with different store fronts.
I also found this explanation from the point of view of a hosting service on how to add two domains to a single Magento installation. Please note that this is specific for this service but you get the idea and the steps inside Magento should be roughly the same:
How To Setup Multiple Magento Stores

Resources