In January Packt publishing published the first book on OpenAM.
I've been reading on it the last couple of weeks, and it's now time to give it a score.
The book is quite thorough with its 292 pages, you can get a lot of good info from it; especially if you're a rookie.
Because most of the info is on the basic level, it will give you an insight on the functionality in OpenAM.
What you don't get, is tips on which functionality you should use, or which functionality that will be trickier and perhaps should be avoided.
Indira Thangasamy has clearly a lot of knowledge about OpenAM, and must have used it in many different occasions. Throughout the book he uses the commandline tools to perform the different configurations, this is very good, and is perhaps the number 1 tip from his book. It is too many that uses the console, and writes installation and configuration guides based on the console. Please pick up on Indira's use of the commandline tools. He even takes in to consideration the move from test to production in chapter 10.
Do I miss something in the book?
I understand that the purpose of the book is to cover all the functional aspects of OpenAM, so perhaps what I miss is a new book. I would love a book covering all the small details that you always learn the hard way.
Examples of things to write about in a new book:
- Scaling of OpenAM, what do you need to do to OpenAM to get a setup that actually will scale to a large system? (moving the Berkeley database out of the same application server)
- When build custom authentication modules you should always avoid using JATO. Because you should try to make authentication modules that actually is possible to unit test.
- There is some hidden, less known, admin jsps in OpenAM that in the standard setup is available to customer. How should you avoid deploying these? This could actually be a book in its self, hardening OpenAM. Hope somebody will take their time to write this one.
I will recommend the book; it's a good book to have lying around. But the book is NOT the answer to ALL your OpenAM questions. So if you have an OpenAM installation you also should have a copy of OpenAM.