continuum-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thierry Lach" <thierry.l...@gmail.com>
Subject Re: Using LDAP for authentication
Date Tue, 27 Feb 2007 15:32:23 GMT
Please?

On 2/27/07, Joakim Erdfelt <joakim@erdfelt.com> wrote:
>
> Would you be willing to share this implementation?
> As we would all be interested in getting access to this?
>
> - Joakim Erdfelt
>
> David Goemans wrote:
> > Hi,
> >
> > I want to use LDAP to authenticate on Continuum. I tried to write a own
> > RBAC-Manager and wanted to configure it in the file "components.xml" of
> > the subproject continuum-security as follow:
> >
> > <!-- RBAC Manager, cached ldap -->
> > <component>
> > <role>org.codehaus.plexus.security.rbac.RBACManager</role>
> > <role-hint>cached</role-hint>
> > <implementation>
> org.codehaus.plexus.security.authorization.rbac.store.cached.CachedRbacManager
> </implementation>
> > <description>CachedRbacManager is a wrapped RBACManager with
> > caching.</description>
> > <requirements>
> > <requirement>
> >       <role>org.codehaus.plexus.security.rbac.RBACManager</role>
> >       <role-hint>ldap</role-hint>
> >       <field-name>rbacImpl</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>operations</role-hint>
> >       <field-name>operationsCache</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>permissions</role-hint>
> >       <field-name>permissionsCache</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>resources</role-hint>
> >       <field-name>resourcesCache</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>roles</role-hint>
> >       <field-name>rolesCache</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>userAssignments</role-hint>
> >       <field-name>userAssignmentsCache</field-name>
> > </requirement>
> > <requirement>
> >       <role>org.codehaus.plexus.ehcache.EhcacheComponent</role>
> >       <role-hint>userPermissions</role-hint>
> >       <field-name>userPermissionsCache</field-name>
> > </requirement>
> > </requirements>
> > </component>
> >
> > <component>
> >       <role>org.codehaus.plexus.security.rbac.RBACManager</role>
> >       <role-hint>ldap</role-hint>
> >       <implementation>"my implementation"</implementation>
> >       <description>JdoRbacManager:</description>
> >       <requirements>
> >         <requirement>
> >         <role>
> >        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
> >         </role>
> >           <field-name>jdo</field-name>
> >         </requirement>
> >       </requirements>
> > </component>
> > <component>
> >       <role>
> >        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
> >         </role>
> >         <implementation>
> >        org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool
> >         </implementation>
> >         <description>JdoTool - RBAC JDO Tools.</description>
> >         <requirements>
> >               <requirement>
> >                       <role>org.codehaus.plexus.jdo.JdoFactory</role>
> >                       <role-hint>users</role-hint>
> >                       <field-name>jdoFactory</field-name>
> >               </requirement>
> >       </requirements>
> > </component>
> >
> > The continuum uses now my implementation, but no roles, permissions, etc
> > are defined. How can I configure the continuum roles, permissions, etc
> > in the components.xml-file.
> >
> > My implementation extends the
> > "
> org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoRbacManager",
> >   because I only want to authenticate on LDAP if the user isn't saved in
> > the Database.
> >
> > greetz
> >   David
> >
> >
>
>

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message