continuum-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joakim Erdfelt <joa...@erdfelt.com>
Subject Re: Using LDAP for authentication
Date Tue, 27 Feb 2007 15:22:48 GMT
Would you be willing to share this implementation?
As we would all be interested in getting access to this?

- Joakim Erdfelt

David Goemans wrote:
> Hi,
>
> I want to use LDAP to authenticate on Continuum. I tried to write a own
> RBAC-Manager and wanted to configure it in the file "components.xml" of
> the subproject continuum-security as follow:
>
> <!-- RBAC Manager, cached ldap -->
> <component>
> <role>org.codehaus.plexus.security.rbac.RBACManager</role>
> <role-hint>cached</role-hint>
> <implementation>org.codehaus.plexus.security.authorization.rbac.store.cached.CachedRbacManager</implementation>
> <description>CachedRbacManager is a wrapped RBACManager with
> caching.</description>
> <requirements>
> <requirement>
> 	<role>org.codehaus.plexus.security.rbac.RBACManager</role>
> 	<role-hint>ldap</role-hint>
> 	<field-name>rbacImpl</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>operations</role-hint>
> 	<field-name>operationsCache</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>permissions</role-hint>
> 	<field-name>permissionsCache</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>resources</role-hint>
> 	<field-name>resourcesCache</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>roles</role-hint>
> 	<field-name>rolesCache</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>userAssignments</role-hint>
> 	<field-name>userAssignmentsCache</field-name>
> </requirement>
> <requirement>
> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> 	<role-hint>userPermissions</role-hint>
> 	<field-name>userPermissionsCache</field-name>
> </requirement>
> </requirements>
> </component>
>
> <component>
>       <role>org.codehaus.plexus.security.rbac.RBACManager</role>
>       <role-hint>ldap</role-hint>
>       <implementation>"my implementation"</implementation>
>       <description>JdoRbacManager:</description>
>       <requirements>
>         <requirement>        	
> 	  <role>
>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
> 	  </role>
>           <field-name>jdo</field-name>
>         </requirement>
>       </requirements>
> </component>
> <component>   	
>  	<role>
>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
>         </role>  		              	
>         <implementation>
>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
>         </implementation>
>         <description>JdoTool - RBAC JDO Tools.</description>
>         <requirements>
>         	<requirement>
>           		<role>org.codehaus.plexus.jdo.JdoFactory</role>
>           		<role-hint>users</role-hint>
>           		<field-name>jdoFactory</field-name>
>         	</requirement>
>       </requirements>
> </component>
>
> The continuum uses now my implementation, but no roles, permissions, etc
> are defined. How can I configure the continuum roles, permissions, etc
> in the components.xml-file.
>
> My implementation extends the 	
> "org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoRbacManager",
>   because I only want to authenticate on LDAP if the user isn't saved in
> the Database.
>
> greetz
>   David
>
>   


Mime
View raw message