Database Reference
In-Depth Information
Configuration
option name
Description
context (LDAP
context
configuration)
eXist supports the notion of storing and retrieving metadata about a user account, and provides some
support for searching for accounts using these metadata properties. For the purposes of LDAP, this
metadata is read-only. However, if you want seamless integration with such functionality in eXist,
then there are a number of properties that you must map to properties of the accounts in your LDAP
directory.
eXist currently supports the following metadata properties, all of which may be retrieved, but only
some of which are used for search. We would recommend you configure at least the properties that
are used for searching:
metadata-
search-
attribute
Metadata property
Used for search?
http://axschema.org/namePerson
Yes
http://axschema.org/namePerson/first
Yes
http://axschema.org/namePerson/last
Yes
http://axschema.org/namePerson/friendly
No
http://axschema.org/contact/email
No
http://axschema.org/contact/country/home
No
http://axschema.org/pref/language
No
http://axschema.org/pref/timezone
No
http://exist-db.org/security/description
No
An optional whitelist of LDAP user accounts that are permitted access to eXist. The
blacklist
is
always
evaluated before the
whitelist
. If a
whitelist
is provided, a user must appear in the
list to get access to eXist; otherwise, she will be denied access via LDAP.
whitelist
Search WWH ::
Custom Search