continuum-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Goemans <d.goem...@tarent.de>
Subject Re: Using LDAP for authentication
Date Tue, 27 Feb 2007 15:32:37 GMT
yes I am willing to share this implementation. But I didn't write a
implementation now (only a dummy). At the moment I only want to know
how to configure it in the component.xml-File. Then I will try to write
a LDAP-implementation.

greetz
   David

Joakim Erdfelt schrieb:
> Would you be willing to share this implementation?
> As we would all be interested in getting access to this?
> 
> - Joakim Erdfelt
> 
> David Goemans wrote:
>> Hi,
>>
>> I want to use LDAP to authenticate on Continuum. I tried to write a own
>> RBAC-Manager and wanted to configure it in the file "components.xml" of
>> the subproject continuum-security as follow:
>>
>> <!-- RBAC Manager, cached ldap -->
>> <component>
>> <role>org.codehaus.plexus.security.rbac.RBACManager</role>
>> <role-hint>cached</role-hint>
>> <implementation>org.codehaus.plexus.security.authorization.rbac.store.cached.CachedRbacManager</implementation>
>> <description>CachedRbacManager is a wrapped RBACManager with
>> caching.</description>
>> <requirements>
>> <requirement>
>> 	<role>org.codehaus.plexus.security.rbac.RBACManager</role>
>> 	<role-hint>ldap</role-hint>
>> 	<field-name>rbacImpl</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>operations</role-hint>
>> 	<field-name>operationsCache</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>permissions</role-hint>
>> 	<field-name>permissionsCache</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>resources</role-hint>
>> 	<field-name>resourcesCache</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>roles</role-hint>
>> 	<field-name>rolesCache</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>userAssignments</role-hint>
>> 	<field-name>userAssignmentsCache</field-name>
>> </requirement>
>> <requirement>
>> 	<role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
>> 	<role-hint>userPermissions</role-hint>
>> 	<field-name>userPermissionsCache</field-name>
>> </requirement>
>> </requirements>
>> </component>
>>
>> <component>
>>       <role>org.codehaus.plexus.security.rbac.RBACManager</role>
>>       <role-hint>ldap</role-hint>
>>       <implementation>"my implementation"</implementation>
>>       <description>JdoRbacManager:</description>
>>       <requirements>
>>         <requirement>        	
>> 	  <role>
>>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
>> 	  </role>
>>           <field-name>jdo</field-name>
>>         </requirement>
>>       </requirements>
>> </component>
>> <component>   	
>>  	<role>
>>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
>>         </role>  		              	
>>         <implementation>
>>        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
>>         </implementation>
>>         <description>JdoTool - RBAC JDO Tools.</description>
>>         <requirements>
>>         	<requirement>
>>           		<role>org.codehaus.plexus.jdo.JdoFactory</role>
>>           		<role-hint>users</role-hint>
>>           		<field-name>jdoFactory</field-name>
>>         	</requirement>
>>       </requirements>
>> </component>
>>
>> The continuum uses now my implementation, but no roles, permissions, etc
>> are defined. How can I configure the continuum roles, permissions, etc
>> in the components.xml-file.
>>
>> My implementation extends the 	
>> "org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoRbacManager",
>>   because I only want to authenticate on LDAP if the user isn't saved in
>> the Database.
>>
>> greetz
>>   David
>>
>>   
> 


Mime
View raw message