Hi,
We have developed web service and need to add security. The idea is to create a separate service(eg. ABC) which can get requests from various clients and delegate them to different authentication methods, such as authenticate username/password in database, authenticate user in active directory through LDAP...and so on. We want to also want to create something where we can add some new authentication method without making code changes to or redeploying ABC.
While searching i found SASL. I think this might be the solution but couldnt find much material/examples online.
Can anybody help me with this?