I want to use several webapps and want a single source of authentication data for my users.
Currently my users only use Roundcube Webmail. In the future I'd like to add Owncloud (with contacts and calendars) and other webapps that allow authentication via ldap.
A first question that pops up is how users would be able to change their passwords. They way I see it I'd need to implement an ldap webclient to let them do it in one of the webapps used (owncloud doesn't seem to allow it).
Are there better solutions to go about this? It seems ldap is the common denominator for authentication between all webapps I've seen.
How does Shibboleth fit into this mix?
[link][33 comments]