From continuum-dev-return-5766-apmail-maven-continuum-dev-archive=maven.apache.org@maven.apache.org Tue Feb 27 15:42:28 2007 Return-Path: Delivered-To: apmail-maven-continuum-dev-archive@www.apache.org Received: (qmail 97556 invoked from network); 27 Feb 2007 15:42:27 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 27 Feb 2007 15:42:27 -0000 Received: (qmail 63337 invoked by uid 500); 27 Feb 2007 15:42:36 -0000 Delivered-To: apmail-maven-continuum-dev-archive@maven.apache.org Received: (qmail 63300 invoked by uid 500); 27 Feb 2007 15:42:36 -0000 Mailing-List: contact continuum-dev-help@maven.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: continuum-dev@maven.apache.org Delivered-To: mailing list continuum-dev@maven.apache.org Received: (qmail 63285 invoked by uid 99); 27 Feb 2007 15:42:36 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Feb 2007 07:42:36 -0800 X-ASF-Spam-Status: No, hits=2.0 required=10.0 tests=HTML_MESSAGE X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: local policy) Received: from [69.36.241.87] (HELO mail.sventech.com) (69.36.241.87) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 27 Feb 2007 07:42:24 -0800 Received: from mail.sventech.com (localhost.localdomain [127.0.0.1]) by mail.sventech.com (Postfix) with ESMTP id ACBDA4804A for ; Tue, 27 Feb 2007 07:42:04 -0800 (PST) Received: from [192.168.1.109] (c-71-59-22-52.hsd1.ga.comcast.net [71.59.22.52]) by mail.sventech.com (Postfix) with ESMTP id 3D79748040 for ; Tue, 27 Feb 2007 07:42:04 -0800 (PST) Message-ID: <45E4518E.4050405@erdfelt.com> Date: Tue, 27 Feb 2007 10:43:10 -0500 From: Joakim Erdfelt User-Agent: Thunderbird 1.5.0.9 (X11/20070104) MIME-Version: 1.0 To: continuum-dev@maven.apache.org Subject: Re: Using LDAP for authentication References: <45E44998.5060300@tarent.de> <45E44CC8.6020507@erdfelt.com> <45E44F15.6020906@tarent.de> In-Reply-To: <45E44F15.6020906@tarent.de> Content-Type: multipart/alternative; boundary="------------050402070009010709010200" X-Virus-Scanned: ClamAV using ClamSMTP X-Virus-Checked: Checked by ClamAV on apache.org --------------050402070009010709010200 Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit There are 3 database stores for you to worry about. Users Roles / Permissions / Resouces Keys If you are just providing Users / Authentication ldap integration, then you need only to create an LDAP Provider for the Users Store. Use the maven 2 build process and you don't have to manage the components.xml manually, as the maven 2 build process creates them from annotations within the source code. See the examples in source control - https://svn.codehaus.org/plexus/plexus-redback/branches/plexus-security-1.0-alpha-11/user-management/providers/ - Joakim David Goemans wrote: > yes I am willing to share this implementation. But I didn't write a > implementation now (only a dummy). At the moment I only want to know > how to configure it in the component.xml-File. Then I will try to write > a LDAP-implementation. > > greetz > David > > Joakim Erdfelt schrieb: > >> Would you be willing to share this implementation? >> As we would all be interested in getting access to this? >> >> - Joakim Erdfelt >> >> David Goemans wrote: >> >>> Hi, >>> >>> I want to use LDAP to authenticate on Continuum. I tried to write a own >>> RBAC-Manager and wanted to configure it in the file "components.xml" of >>> the subproject continuum-security as follow: >>> >>> >>> >>> org.codehaus.plexus.security.rbac.RBACManager >>> cached >>> org.codehaus.plexus.security.authorization.rbac.store.cached.CachedRbacManager >>> CachedRbacManager is a wrapped RBACManager with >>> caching. >>> >>> >>> org.codehaus.plexus.security.rbac.RBACManager >>> ldap >>> rbacImpl >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> operations >>> operationsCache >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> permissions >>> permissionsCache >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> resources >>> resourcesCache >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> roles >>> rolesCache >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> userAssignments >>> userAssignmentsCache >>> >>> >>> org.codehaus.plexus.ehcache.EhcacheComponent >>> userPermissions >>> userPermissionsCache >>> >>> >>> >>> >>> >>> org.codehaus.plexus.security.rbac.RBACManager >>> ldap >>> "my implementation" >>> JdoRbacManager: >>> >>> >>> >>> org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool >>> >>> jdo >>> >>> >>> >>> >>> >>> org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool >>> >>> >>> org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool >>> >>> JdoTool - RBAC JDO Tools. >>> >>> >>> org.codehaus.plexus.jdo.JdoFactory >>> users >>> jdoFactory >>> >>> >>> >>> >>> The continuum uses now my implementation, but no roles, permissions, etc >>> are defined. How can I configure the continuum roles, permissions, etc >>> in the components.xml-file. >>> >>> My implementation extends the >>> "org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoRbacManager", >>> because I only want to authenticate on LDAP if the user isn't saved in >>> the Database. >>> >>> greetz >>> David >>> >>> >>> > > --------------050402070009010709010200--