we're currently developing several zimlets that integrate with other systems (eg. cms, erp, etc).
These zimlets (more precisely: their backend jsp code) need the proper user credentials to these
For now, we're storing them in the user-zimlet-properties, but they can be accessed by frontend
datasource. Options are:
a) filesystem: a bit tricky to guarantee atomicity and not suited for multiserver (would require additional sychronization)
b) mailboxd database: not suited for multiserver, like w/ filesystem
c) ldap: requires schema extension (that must be maintained across zcs separate versions, more complex on zcs upgrades)
d) separate database server: quite complex to set up (far out of scope for a simple zimlet)
The first step we're probably going is to abstract away the access to such information, so we can choose the underlying actual storage later (maybe configurable or even supporting multiple ones).
Any ideas on this ?
- Zimbra Collaboration 8.6 Patch 9 now available (includes fix for CVE-2017-8802). Read the announcement.
- Zimbra Collaboration 8.8.7 + Zimbra Connector for Outlook 8.8.7 are available.. Read the announcement.
- Are you a Zimbra Developer? You can find some interesting stuff in our Official GitHub: https://github.com/Zimbra and check the Community Projects too: https://github.com/Zimbra-Community/
Have a great idea for extending Zimbra? Share ideas, ask questions, contribute, and get feedback.
2 posts • Page 1 of 1
Not a direct answer to your question, but you can use the zimbraZimletDataSensitiveInMixedModeDisabled ldap attr to disable zimlets exchanging sensitive data with the server operating in mixed (both http/https) mode.
Who is online
Users browsing this forum: No registered users and 3 guests