directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From tbenn...@apache.org
Subject svn commit: r486187 [42/49] - in /directory/trunks/triplesec: ./ admin-api/ admin-api/src/ admin-api/src/main/ admin-api/src/main/java/ admin-api/src/main/java/org/ admin-api/src/main/java/org/safehaus/ admin-api/src/main/java/org/safehaus/triplesec/ a...
Date Tue, 12 Dec 2006 15:24:14 GMT
Added: directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.java (added)
+++ directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,46 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.view.panels;
+
+import wicket.model.IModel;
+import wicket.model.Model;
+import wicket.markup.html.form.RequiredTextField;
+
+public class WizardPanelRealm extends WizardPanel
+{
+    private static final long serialVersionUID = 370256949857642718L;
+
+    public WizardPanelRealm(String id, IModel model)
+    {
+        super( id, model, "Realm Configuration" );
+
+        getForm().add( new RequiredTextField( "primaryRealmName" )
+                .setLabel( new Model( "Primary Realm Name" ) ) );
+        
+        // these fields can be made to appear when user selects advanced view ??
+        
+//        getForm().add( new RequiredTextField( "clockSkew" )
+//                .setLabel( new Model( "Clock Skew" ) ) );
+//        getForm().add( new RequiredTextField( "ticketLifetime" )
+//                .setLabel( new Model( "Ticket Lifetime" ) ) );
+//        getForm().add( new RequiredTextField( "renewableLifetime" )
+//                .setLabel( new Model( "Renewable Lifetime" ) ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.java (added)
+++ directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,39 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.view.panels;
+
+import wicket.model.IModel;
+import wicket.markup.html.form.CheckBox;
+import wicket.markup.html.form.TextField;
+import wicket.markup.html.form.PasswordTextField;
+
+public class WizardPanelSecureLdap extends WizardPanel
+{
+    private static final long serialVersionUID = 370256949857642718L;
+
+    public WizardPanelSecureLdap(String id, IModel model) {
+        super(id, model, "Secure LDAP Configuration");
+
+        getForm().add( new CheckBox( "enableLdaps" ) );
+        getForm().add( new TextField( "ldapsPort", Integer.class ) );
+        getForm().add( new TextField( "ldapCertFilePath" ) );
+        getForm().add( new PasswordTextField( "ldapCertPassword" ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.java (added)
+++ directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,49 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.view.panels;
+
+
+import wicket.model.IModel;
+import wicket.markup.html.form.DropDownChoice;
+import wicket.markup.html.form.RequiredTextField;
+import wicket.markup.html.form.PasswordTextField;
+
+import java.util.Arrays;
+import java.util.List;
+
+
+public class WizardPanelSms extends WizardPanel
+{
+    private static final long serialVersionUID = 8637953029881838294L;
+    private static final List PROVIDERS = Arrays.asList( new String[]
+        { "NMSI HTTP", "Clickatell HTTP" } );
+
+
+    public WizardPanelSms(String id, IModel model)
+    {
+        super( id, model, "SMS Gateway Account Setup" );
+
+        getForm().add( new DropDownChoice( "smsProvider", PROVIDERS ) );
+        getForm().add( new RequiredTextField( "smsUsername") );
+        getForm().add( new PasswordTextField( "smsPassword" ) );
+        getForm().add( new RequiredTextField( "smsAccountName" ) );
+        getForm().add( new RequiredTextField( "smsTransportUrl" ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.java (added)
+++ directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,52 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.view.panels;
+
+
+import wicket.markup.html.form.CheckBox;
+import wicket.markup.html.form.PasswordTextField;
+import wicket.markup.html.form.RequiredTextField;
+import wicket.markup.html.form.TextField;
+import wicket.markup.html.form.validation.EmailAddressPatternValidator;
+import wicket.model.IModel;
+import wicket.model.Model;
+
+
+public class WizardPanelSmtp extends WizardPanel
+{
+    private static final long serialVersionUID = -5651485130659672755L;
+
+
+    public WizardPanelSmtp( String id, IModel model )
+    {
+        super( id, model, "Mail Server Configuration" );
+
+        getForm().add( new CheckBox( "smtpAuthenticate" ) );
+        getForm().add( new TextField( "smtpUsername" ) );
+        getForm().add( new PasswordTextField( "smtpPassword" ) );
+        getForm().add( new RequiredTextField( "smtpHost" ) );
+        getForm().add( new RequiredTextField( "smtpSubject" ) );
+        RequiredTextField from = new RequiredTextField( "smtpFrom" );
+        from.add( EmailAddressPatternValidator.getInstance() );
+        from.setLabel( new Model( "SMTP From" ) );
+        getForm().add( from );
+
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.java (added)
+++ directory/trunks/triplesec/webapp-config/src/main/java/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,44 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.view.panels;
+
+
+import wicket.model.IModel;
+import wicket.model.Model;
+import wicket.markup.html.form.CheckBox;
+import wicket.markup.html.form.RequiredTextField;
+import wicket.markup.html.form.TextField;
+
+
+public class WizardPanelUser extends WizardPanel
+{
+    private static final long serialVersionUID = 1L;
+
+    public WizardPanelUser( String id, IModel model )
+    {
+        super( id, model, "Web Settings" );
+
+        getForm().add( new TextField( "presentationBaseUrl" ) );
+        getForm().add( new TextField( "regRedirectUrl" ) );
+        getForm().add( new RequiredTextField( "httpPort", Integer.class )
+            .setLabel( new Model( "Http Server Port" ) ) );
+        getForm().add( new CheckBox( "enableHttp" ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/TriplesecConfigApplication.properties
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/TriplesecConfigApplication.properties?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/TriplesecConfigApplication.properties (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/TriplesecConfigApplication.properties Tue Dec 12 07:23:31 2006
@@ -0,0 +1,4 @@
+# default validator messages
+RequiredValidator=field '${label}' is required
+TypeValidator=field '${label}' is not of the correct type
+EmailAddressPatternValidator=field '${label}' is required

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/AppPageBorder.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/AppPageBorder.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/AppPageBorder.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/AppPageBorder.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,45 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:wicket="http://wicket.sourceforge.net/" xml:lang="en" lang="en">
+<head>
+    <wicket:head>
+        <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
+        <link rel="stylesheet" href="css/style.css" type="text/css"/>
+    </wicket:head>
+</head>
+<body>
+<wicket:border>
+    <div id="container">
+        <div id="header">
+            <h1>Triplesec Server Configuration</h1>
+            <h2>keep it simple&nbsp;&middot;&nbsp;keep it safe</h2>
+            <br/>
+            <hr/>
+        </div>
+        <wicket:body/>
+        <div id="foot">
+            &copy; <a href="http://www.safehaus.org">Safehaus</a> 2005
+        </div>
+    </div>
+</wicket:border>
+</body>
+</html>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/WizardPanelBorder.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/WizardPanelBorder.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/WizardPanelBorder.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/borders/WizardPanelBorder.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,33 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:border>
+    <h3 class="top_main_heading"><span wicket:id="title">Panel Title</span></h3>
+    <div id="content">
+
+        <div class="nav">
+            <a href="http://triplesec.safehaus.org/Installing+Triplesec+Server" target="_new">Help Me!</a>&nbsp;<br/>
+        </div>
+
+        <wicket:body/>
+        
+    </div>
+</wicket:border>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/pages/WizardPage.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/pages/WizardPage.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/pages/WizardPage.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/pages/WizardPage.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,44 @@
+<?xml version="1.0"?>
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:wicket="http://wicket.sourceforge.net/" xml:lang="en" lang="en">
+<head>
+    <wicket:head>
+        <title>TripleSec Configuration Wizard</title>
+    </wicket:head>
+</head>
+<body>
+    <span wicket:id="border">
+        <!-- Use panels to group markup and components for each wizard step -->
+        <span wicket:id="wp0">Content of first wizard panel here</span>
+        <span wicket:id="wp1">Content of second wizard panel here</span>
+        <span wicket:id="wp2">Content of third wizard panel here</span>
+        <span wicket:id="wp3">Content of fourth wizard panel here</span>
+        <span wicket:id="wp4">Content of fifth wizard panel here</span>
+        <span wicket:id="wp5">Content of sixth wizard panel here</span>
+        <span wicket:id="wp6">Content of seventh wizard panel here</span>
+        <span wicket:id="wp7">Content of eighth wizard panel here</span>
+        <span wicket:id="wp8">Content of ninth wizard panel here</span>
+        <span wicket:id="wp9">Content of tenth wizard panel here</span>
+    </span>
+</body>
+</html>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanel.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanel.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanel.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanel.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,38 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<?xml version="1.0"?>
+<html xmlns="http://www.w3.org/1999/xhtml" xmlns:wicket="http://wicket.sourceforge.net/" xml:lang="en" lang="en">
+<body>
+    <wicket:panel>
+        <span wicket:id="border">
+            <span wicket:id="feedback">[feedback panel]</span>
+            <form wicket:id="form">
+                <wicket:child/>
+                <br/>
+                <input wicket:id="cancel" type="submit" id="cancelButton" value="Cancel" />&nbsp;
+                <input wicket:id="back" type="submit" id="backButton" value="Back" />&nbsp;
+                <input wicket:id="next" type="submit" id="nextButton" value="Next" />
+            </form>
+        </span>
+    </wicket:panel>
+</body>
+</html>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelAdmin.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelAdmin.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelAdmin.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelAdmin.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,34 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        Set the password for the system administrator whose distinguished 
+        name is <b><i>uid=admin,ou=system</i></b>.
+    </p>
+
+    <label for="adminPassword">Password</label>
+    <input wicket:id="adminPassword" id="adminPassword" type="password"/><br/>
+
+    <label for="adminPassword2">Re-enter Password</label>
+    <input wicket:id="adminPassword2" id="adminPassword2" type="password"/><br/>
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelDemo.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelDemo.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelDemo.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelDemo.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,33 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        Some demo accounts can be create for both HOTP-based
+        authentication and simple Kerberos authentication.
+    </p>
+    <p>
+        Would you like to create these accounts for testing?
+    </p>
+    <label for="enableDemo">Enable Demo Accounts?</label>
+    <input class="boxes" wicket:id="enableDemo" id="enableDemo" type="checkbox"/><br/>
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelFinish.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelFinish.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelFinish.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelFinish.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,27 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        <span wicket:id="message">message</span>
+    </p>
+    <br/>
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelIntro.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelIntro.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelIntro.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelIntro.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,14 @@
+<wicket:extend>
+    <p>
+    Welcome to the TripleSec configuration wizard, which will step you
+    through the process of configuring the TripleSec server.
+    </p>
+    <p>
+    If you need an instruction manual for installation, click on
+    the <b>Help Me!</b> link.
+    </p>
+    <p>
+    Click the <b>Next</b> button below to continue server configuration
+    or click the <b>Cancel</b> button to abort the configuration process.
+    </p>
+</wicket:extend>
\ No newline at end of file

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelLdap.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelLdap.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelLdap.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelLdap.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,44 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        The LDAP service can be enabled for remote configuration
+        and management of the server. The embedded Admin UI application
+        in the Triplesec server requires the LDAP server to be active.
+        If you intend to use this Admin UI, then LDAP activation is
+        required.
+    </p>
+    <p>
+        If you don't understand the ramifications of turning the LDAP
+        service off, then use the defaults.
+    </p>
+    <br/>
+    <label for="enableLdap">Enable LDAP?</label>
+    <input class="boxes" wicket:id="enableLdap" id="enableLdap" type="checkbox"/><br />
+
+    <label for="ldapPort">Port</label>
+    <input wicket:id="ldapPort" id="ldapPort" type="text" /><br />
+
+    <label for="allowAnonymousAccess">Anonymous Access?</label>
+    <input class="boxes" wicket:id="allowAnonymousAccess" id="allowAnonymousAccess" type="checkbox"/><br />
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelRealm.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,44 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+      Enter the name of the primary realm to be managed by this Triplesec
+      instance.  You're realm can simply be a domain name.  This will create
+      an LDAP partition using the domain components like so: dc=safehaus,dc=org.
+    </p>
+
+    <br/>
+
+    <label for="primaryRealmName">Primary Realm Name</label>
+    <input wicket:id="primaryRealmName" id="primaryRealmName" type="text" /><br/>
+<!--
+    <label for="clockSkew">Clock Skew</label>
+    <input wicket:id="clockSkew" id="clockSkew" type="text" /><br/>
+
+    <label for="ticketLifetime">Ticket Life Time</label>
+    <input wicket:id="ticketLifetime" id="ticketLifeTime" type="text" /><br/>
+
+    <label for="renewableLifeTime">Renewable Life Time</label>
+    <input wicket:id="renewableLifetime" id="renewableLifeTime" type="text" /><br/>
+    <i>Note: All times are in minutes.</i>
+-->
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSecureLdap.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,45 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        The LDAPS (Secure LDAP) port can be enabled in addition to
+        the regular LDAP port.  Note that the Triplesec Admin UI
+        does not use the LDAPS port since it's communication with
+        the server is local.  If you intend to administer the server
+        remotely via LDAP you should enable the LDAPS port and use that.
+        If a certificate does not exist on the specified path, then an
+        untrusted certificate is automatically generated for you.
+    </p>
+
+    <label for="enableLdaps">Enable Secure LDAP?</label>
+    <input class="boxes" wicket:id="enableLdaps" id="enableLdaps" type="checkbox"/><br />
+
+    <label for="ldapsPort">Port</label>
+    <input wicket:id="ldapsPort" id="ldapsPort" type="text" /><br />
+
+    <label for="ldapCertFilePath">Certificate Path</label>
+    <input wicket:id="ldapCertFilePath" id="ldapCertFilePath" type="text" /><br />
+
+    <label for="ldapCertPassword">Certificate Password</label>
+    <input wicket:id="ldapCertPassword" id="ldapCertPassword" type="password"/><br />
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSms.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,53 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        Triplesec can provision the Hauskeys OTP generator to your phone via 
+        SMS.  Configure the SMS Gateway Account information here.  If you don't 
+        want to use SMS just enter bogus information.  If you want to 
+        use a free trial SMS account, register with the following service
+        <b><a href="http://demo.safehaus.org/smstrial/smstrial">HERE</a></b>.  It will 
+        email you the parameters you need to fill in this screen and proceed.
+    </p>
+    <br/>
+
+    <label for="smsProvider">Provider</label>
+    <select wicket:id="smsProvider" id="smsProvider">
+        <option>Provider A</option>
+        <option>Provider B</option>
+    </select>
+    <br/>
+    <br/>
+
+    <label for="smsAccountName">Account Name</label>
+    <input wicket:id="smsAccountName" id="smsAccountName" type="text"/><br/>
+
+    <label for="smsUsername">Account Username</label>
+    <input wicket:id="smsUsername" id="smsUsername" type="text"/><br/>
+
+    <label for="smsPassword">Account Password</label>
+    <input wicket:id="smsPassword" id="smsPassword" type="password"/><br/>
+
+    <label for="smsTransportUrl">Transport URL</label>
+    <input wicket:id="smsTransportUrl" id="smsTransportUrl" type="text"/><br/>
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelSmtp.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,48 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+       Triplesec uses Email and SMS to send activation and download links 
+       for Hauskeys applications it assembles for registered users.  Enter
+       your mail server host name and additional authentication parameters if 
+       your mail server requires authentication.
+    </p>
+
+    <label for="smtpAuthenticate">Authenticate?</label>
+    <input class="boxes" wicket:id="smtpAuthenticate" id="smtpAuthenticate" type="checkbox"/><br/>
+
+    <label for="smtpUsername">Username</label>
+    <input wicket:id="smtpUsername" id="smtpUsername" type="text"/><br/>
+
+    <label for="smtpPassword">Password</label>
+    <input wicket:id="smtpPassword" id="smtpPassword" type="password"/><br/>
+
+    <label for="smtpHost">Host</label>
+    <input wicket:id="smtpHost" id="smtpHost" type="text"/><br/>
+
+    <label for="smtpSubject">Subject</label>
+    <input wicket:id="smtpSubject" id="smtpSubject" type="text"/><br/>
+
+    <label for="smtpFrom">From</label>
+    <input wicket:id="smtpFrom" id="smtpFrom" type="text"/><br/>
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/resources/org/safehaus/triplesec/configui/view/panels/WizardPanelUser.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,49 @@
+<!--
+
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License.
+
+-->
+
+<wicket:extend>
+    <p>
+        The base presentation URL used by the server can be set to the url for 
+        the virtual host if used to proxy Triplesec's web server. You can also set 
+        URL to redirect the user to after they have successfully registered
+        their account. 
+    </p>
+
+    <label for="presentationBaseUrl">Presentation URL</label>
+    <input wicket:id="presentationBaseUrl" id="presentationBaseUrl" type="text"/><br/>
+
+    <label for="regRedirectUrl">Redirection URL</label>
+    <input wicket:id="regRedirectUrl" id="regRedirectUrl" type="text"/><br/>
+    <br/>
+
+    <p>
+      Turn off the HTTP service <b>ONLY</b> if you're running the account provisioning
+      and activation application standalone.
+    </p>
+
+    <label for="enableHttp">Enable Http Server</label>
+    <input class="boxes" wicket:id="enableHttp" id="enableHttp" type="checkbox" /><br />
+
+    <label for="httpPort">Http Server Port</label>
+    <input wicket:id="httpPort" id="httpPort" type="text"/><br/>
+
+
+</wicket:extend>

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/WEB-INF/web.xml
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/WEB-INF/web.xml?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/webapp/WEB-INF/web.xml (added)
+++ directory/trunks/triplesec/webapp-config/src/main/webapp/WEB-INF/web.xml Tue Dec 12 07:23:31 2006
@@ -0,0 +1,39 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+  Licensed to the Apache Software Foundation (ASF) under one
+  or more contributor license agreements.  See the NOTICE file
+  distributed with this work for additional information
+  regarding copyright ownership.  The ASF licenses this file
+  to you under the Apache License, Version 2.0 (the
+  "License"); you may not use this file except in compliance
+  with the License.  You may obtain a copy of the License at
+  
+    http://www.apache.org/licenses/LICENSE-2.0
+  
+  Unless required by applicable law or agreed to in writing,
+  software distributed under the License is distributed on an
+  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  KIND, either express or implied.  See the License for the
+  specific language governing permissions and limitations
+  under the License. 
+-->
+<!DOCTYPE web-app
+      PUBLIC "-//Sun Microsystems, Inc.//DTD Web Application 2.3//EN"
+      "http://java.sun.com/dtd/web-app_2_3.dtd">
+
+<web-app>
+  <display-name>Triplesec Configuration</display-name>
+  <servlet>
+    <servlet-name>TriplesecConfigApplication</servlet-name>
+    <servlet-class>wicket.protocol.http.WicketServlet</servlet-class>
+    <init-param>
+      <param-name>applicationClassName</param-name>
+      <param-value>org.safehaus.triplesec.configui.view.TriplesecConfigApplication</param-value>
+    </init-param>
+    <load-on-startup>1</load-on-startup>
+  </servlet>
+  <servlet-mapping>
+    <servlet-name>TriplesecConfigApplication</servlet-name>
+    <url-pattern>/config/*</url-pattern>
+  </servlet-mapping>
+</web-app>

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/css/style.css
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/css/style.css?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/webapp/css/style.css (added)
+++ directory/trunks/triplesec/webapp-config/src/main/webapp/css/style.css Tue Dec 12 07:23:31 2006
@@ -0,0 +1,214 @@
+body {
+    text-align: center; /* for IE */
+	font-family:arial, verdana, helvetica, sans-serif;
+	font-size:12px;
+	cursor:default;
+	color:#AAAAAA;
+	background-color:#FFFFFF
+}
+
+* {
+	margin: 0px;
+	padding: 0px;
+	text-decoration: none;
+}
+
+html {
+	height:100%;
+	margin-bottom:1px;
+}
+
+#container {
+	margin: 0 auto;   /* align for good browsers */
+	text-align: left; /* counter the body center */
+
+	/*border: 2px solid #000;*/
+	width: 80%;
+
+	background-color: #FFFFFF;
+	color:#AAAAAA;
+}
+
+#header {
+	width:100%;
+	padding-top:15px;
+}
+
+.top_main_heading {
+	margin-top:15px;
+}
+
+#content {
+	color:#999999;
+	background-color:#FFFFFF;
+	border-bottom:1px;
+	border-left:1px;
+	border-right:1px;
+	border-top:0px;
+	border-style:solid;
+	border-color:#AAAAAA;
+	/*margin-left:20px;
+	margin-right:20px;*/
+	margin-bottom:15px;
+	line-height:20px;
+	padding:20px;
+}
+
+hr {
+	border:0px;
+	color:#CCCCCC;
+	background-color:#CDCDCD;
+	height: 1px;
+	width: 100%;
+	text-align: left;
+}
+
+h1 {
+	font-size:28px;
+	color:#FFBA27;
+	background-color:#FFFFFF;
+	font-family:Arial, Verdana, Helvetica, sans-serif;
+	font-weight:300;
+}
+
+h2 {
+	font-size:20px;
+	color:#CCCCCC;
+	font-family:Arial, Verdana, Helvetica, sans-serif;
+	font-weight:300;
+	background-color:#FFFFFF;
+}
+
+h3 {
+	color:#FFBA27;
+	font-size:15px;
+	background-color:#F9F9F9;
+	border-width:1px;
+	border-color:#AAAAAA;
+	border-style:solid;
+	text-align:left;
+	/*margin-left:20px;
+	margin-right:20px;*/
+	font-weight:300;
+	padding:5px;
+}
+
+p {
+	margin: 0.3em 0.3em 0.5em 0.3em;
+}
+
+code {
+	font-size: 115%;
+}
+
+.nav {
+	/*border-bottom: 1px solid #999999;
+	border-left: 1px solid #999999;*/
+	float: right;
+	font-family: "Century Gothic", Arial, Helvetica, sans-serif;
+	font-size: 16px;
+	font-weight: bold;
+	margin-left: 10px;
+	padding-bottom: 2px;
+	padding-top: 2px;
+	text-align: right;
+	width: 125px;
+}
+
+.nav a {
+	color:#FFBA27;
+	text-decoration:none;
+	font-size: 12px;
+	font-weight: normal;
+	background-color:#FFFFFF;
+}
+
+.nav a:hover {
+	color:#FFBA27;
+	background-color:#FFFFFF;
+	text-decoration:underline;
+}
+
+#maincontent a {
+	color:#FFBA27;
+	background-color:#FFFFFF;
+	text-decoration:none;
+}
+#maincontent a:hover {
+	color:#FFBA27;
+	background-color:#FFFFFF;
+	text-decoration:underline;
+}
+
+#foot {
+	font-size: 10px;
+	font-family:Verdana, Arial, Helvetica, sans-serif;
+	/*padding-right: 10px;*/
+	text-align: center;
+	color:#AAAAAA;
+	background-color:#FFFFFF;
+}
+
+#foot a {
+	color:#AAAAAA;
+	background-color:#FFFFFF;
+	text-decoration:none;
+}
+
+#foot a:hover {
+	color:#AAAAAA;
+	background-color:#FFFFFF;
+	text-decoration:underline;
+}
+
+label {
+	float: left;
+	width: 140px;
+	font-weight: bold;
+}
+
+input, textarea {
+	width: 180px;
+	margin-bottom: 5px;
+}
+
+textarea {
+	width: 250px;
+	height: 150px;
+}
+
+.boxes {
+	width: 1em;
+}
+
+#cancelbutton {
+	margin-left: 120px;
+	margin-top: 5px;
+	width: 90px;
+}
+
+#backbutton {
+	margin-top: 5px;
+	width: 90px;
+}
+
+#nextbutton {
+	margin-top: 5px;
+	width: 90px;
+}
+
+br {
+	clear: left;
+}
+
+.feedbackPanelERROR {
+	color: red;
+	list-style: circle;
+	font-weight: bold;
+}
+
+.feedbackPanelINFO {
+	color: green;
+	list-style: circle;
+	font-weight: bold;
+}
\ No newline at end of file

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/images/background.png
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/images/background.png?view=auto&rev=486187
==============================================================================
Binary file - no diff available.

Propchange: directory/trunks/triplesec/webapp-config/src/main/webapp/images/background.png
------------------------------------------------------------------------------
    svn:mime-type = application/octet-stream

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/images/dark_line.png
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/images/dark_line.png?view=auto&rev=486187
==============================================================================
Binary file - no diff available.

Propchange: directory/trunks/triplesec/webapp-config/src/main/webapp/images/dark_line.png
------------------------------------------------------------------------------
    svn:mime-type = application/octet-stream

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/images/light_line.png
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/images/light_line.png?view=auto&rev=486187
==============================================================================
Binary file - no diff available.

Propchange: directory/trunks/triplesec/webapp-config/src/main/webapp/images/light_line.png
------------------------------------------------------------------------------
    svn:mime-type = application/octet-stream

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/images/safehaus-small.gif
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/images/safehaus-small.gif?view=auto&rev=486187
==============================================================================
Binary file - no diff available.

Propchange: directory/trunks/triplesec/webapp-config/src/main/webapp/images/safehaus-small.gif
------------------------------------------------------------------------------
    svn:mime-type = application/octet-stream

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/images/triplesec_logo.gif
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/images/triplesec_logo.gif?view=auto&rev=486187
==============================================================================
Binary file - no diff available.

Propchange: directory/trunks/triplesec/webapp-config/src/main/webapp/images/triplesec_logo.gif
------------------------------------------------------------------------------
    svn:mime-type = application/octet-stream

Added: directory/trunks/triplesec/webapp-config/src/main/webapp/index.html
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/main/webapp/index.html?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/main/webapp/index.html (added)
+++ directory/trunks/triplesec/webapp-config/src/main/webapp/index.html Tue Dec 12 07:23:31 2006
@@ -0,0 +1,8 @@
+<html>
+  <head>
+    <meta HTTP-EQUIV="REFRESH" content="0; url=config">
+  </head>
+  <body>
+    <p>If you're not redirected to the <a href="config">Configuration Interface</a></p> then select this link.
+  </body>
+</html>
\ No newline at end of file

Added: directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/RunConfigUI.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/RunConfigUI.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/RunConfigUI.java (added)
+++ directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/RunConfigUI.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,39 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui;
+
+
+import org.safehaus.triplesec.integration.TriplesecIntegration;
+
+
+public class RunConfigUI extends TriplesecIntegration
+{
+    public RunConfigUI() throws Exception
+    {
+        super();
+    }
+
+    
+    public void testRunForever() throws Exception
+    {
+        System.out.println( "Enter any character to end this test: " );
+        System.in.read();
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/CertificateUtilTest.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/CertificateUtilTest.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/CertificateUtilTest.java (added)
+++ directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/CertificateUtilTest.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,47 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.util;
+
+
+import java.io.File;
+
+import org.safehaus.triplesec.configui.model.TriplesecConfigSettings;
+
+import junit.framework.TestCase;
+
+
+public class CertificateUtilTest extends TestCase
+{
+    public void testCreate() throws Exception
+    {
+        TriplesecConfigSettings settings = new TriplesecConfigSettings();
+        File certFile = new File( new File( System.getProperty( "java.io.tmpdir" ) ), "test.cert" );
+        if ( certFile.exists() )
+        {
+            certFile.delete();
+        }
+        
+        settings.setLdapCertFilePath( certFile.getAbsolutePath() );
+        settings.setEnableLdaps( true );
+        settings.setLdapCertPassword( "secret" );
+        settings.setPrimaryRealmName( "example.com" );
+        CertificateUtil.create( certFile.getAbsoluteFile(), settings );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecConfigBuilderTest.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecConfigBuilderTest.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecConfigBuilderTest.java (added)
+++ directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecConfigBuilderTest.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,63 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.util;
+
+
+import javax.naming.NamingException;
+import javax.naming.directory.Attributes;
+
+import org.apache.directory.server.core.configuration.MutablePartitionConfiguration;
+import org.safehaus.triplesec.configui.model.TriplesecConfigSettings;
+import org.safehaus.triplesec.configuration.MutableTriplesecStartupConfiguration;
+
+import junit.framework.TestCase;
+
+
+
+/**
+ * Tests the config builder class.
+ *
+ * @author <a href="mailto:akarasulu@safehaus.org">Alex Karasulu</a>
+ * @version $Rev$
+ */
+public class TriplesecConfigBuilderTest extends TestCase
+{
+    TriplesecConfigBuilder builder = new TriplesecConfigBuilder();
+    
+    
+    public void testWithSettings() throws NamingException
+    {
+        TriplesecConfigSettings settings = new TriplesecConfigSettings();
+        settings.setLdapPort( 1389 );
+        settings.setPrimaryRealmName( "APACHE.ORG" );
+        
+        MutableTriplesecStartupConfiguration config = builder.build( settings );
+        assertEquals( 1389, config.getLdapPort() );
+        assertEquals( 1, config.getContextPartitionConfigurations().size() );
+        MutablePartitionConfiguration partition = ( MutablePartitionConfiguration ) 
+            config.getContextPartitionConfigurations().iterator().next();
+        assertEquals( "apache", partition.getName() );
+        assertEquals( "dc=apache,dc=org", partition.getSuffix() );
+        Attributes attrs = partition.getContextEntry();
+        assertTrue( attrs.get( "dc" ).contains( "apache" ) );
+        assertTrue( attrs.get( "administrativeRole" ).contains( "accessControlSpecificArea" ) );
+        assertTrue( attrs.get( "administrativeRole" ).contains( "collectiveAttributeSpecificArea" ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecPropBuilderTest.java
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecPropBuilderTest.java?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecPropBuilderTest.java (added)
+++ directory/trunks/triplesec/webapp-config/src/test/java/org/safehaus/triplesec/configui/util/TriplesecPropBuilderTest.java Tue Dec 12 07:23:31 2006
@@ -0,0 +1,117 @@
+/*
+ *  Licensed to the Apache Software Foundation (ASF) under one
+ *  or more contributor license agreements.  See the NOTICE file
+ *  distributed with this work for additional information
+ *  regarding copyright ownership.  The ASF licenses this file
+ *  to you under the Apache License, Version 2.0 (the
+ *  "License"); you may not use this file except in compliance
+ *  with the License.  You may obtain a copy of the License at
+ *  
+ *    http://www.apache.org/licenses/LICENSE-2.0
+ *  
+ *  Unless required by applicable law or agreed to in writing,
+ *  software distributed under the License is distributed on an
+ *  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ *  KIND, either express or implied.  See the License for the
+ *  specific language governing permissions and limitations
+ *  under the License. 
+ *  
+ */
+package org.safehaus.triplesec.configui.util;
+
+import java.util.Properties;
+
+import org.safehaus.triplesec.configui.model.TriplesecConfigSettings;
+
+import junit.framework.TestCase;
+
+
+/**
+ * Tests the property build class.
+ *
+ * @author <a href="mailto:akarasulu@safehaus.org">Alex Karasulu</a>
+ * @version $Rev$
+ */
+public class TriplesecPropBuilderTest extends TestCase
+{
+    TriplesecPropBuilder builder = new TriplesecPropBuilder();
+    
+    
+    public void testGetDefaults()
+    {
+        Properties defaults = builder.getDefault();
+        assertEquals( "simple", defaults.getProperty( "java.naming.security.authentication" ) );
+        assertEquals( "uid=admin,ou=system", defaults.getProperty( "java.naming.security.principal" ) );
+        assertEquals( "secret", defaults.getProperty( "java.naming.security.credentials" ) );
+        assertEquals( "dc=example,dc=com", defaults.getProperty( "java.naming.provider.url" ) );
+        assertEquals( "org.safehaus.triplesec.store.ProfileStateFactory", 
+            defaults.getProperty( "java.naming.factory.state" ) );
+        assertEquals( "org.safehaus.triplesec.store.ProfileObjectFactory", 
+            defaults.getProperty( "java.naming.factory.object" ) );
+        assertEquals( "EXAMPLE.COM", defaults.getProperty( "kdc.primary.realm" ) );
+        assertEquals( "krbtgt/EXAMPLE.COM@EXAMPLE.COM", defaults.getProperty( "kdc.principal" ) );
+        assertEquals( "des-cbc-md5 des3-cbc-sha1 des3-cbc-md5 des-cbc-md4 des-cbc-crc", 
+            defaults.getProperty( "kdc.encryption.types" ) );
+        assertEquals( "ou=users,dc=example,dc=com", defaults.getProperty( "kdc.entryBaseDn" ) );
+        assertEquals( "secret", defaults.getProperty( "kdc.java.naming.security.credentials" ) );
+        assertEquals( "ou=users,dc=example,dc=com", defaults.getProperty( "changepw.entryBaseDn" ) );
+        assertEquals( "secret", defaults.getProperty( "changepw.java.naming.security.credentials" ) );
+        assertEquals( "kadmin/changepw@EXAMPLE.COM", defaults.getProperty( "changepw.principal" ) );
+        assertEquals( "5", defaults.getProperty( "kdc.allowable.clockskew" ) );
+        assertEquals( "1440", defaults.getProperty( "kdc.tgs.maximum.ticket.lifetime" ) );
+        assertEquals( "10080", defaults.getProperty( "kdc.tgs.maximum.renewable.lifetime" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.pa.enc.timestamp.required" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.tgs.empty.addresses.allowed" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.tgs.forwardable.allowed" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.tgs.proxiable.allowed" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.tgs.postdate.allowed" ) );
+        assertEquals( "true", defaults.getProperty( "kdc.tgs.renewable.allowed" ) );
+        assertEquals( "ou=Users,dc=example,dc=com", defaults.getProperty( "safehaus.entry.basedn" ) );
+        assertEquals( "true", defaults.getProperty( "safehaus.load.testdata" ) );
+        assertEquals( "org.safehaus.triplesec.verifier.hotp.DefaultHotpSamVerifier", 
+            defaults.getProperty( "kerberos.sam.type.7" ) );
+    }
+
+
+    public void testWithSettings()
+    {
+        TriplesecConfigSettings settings = new TriplesecConfigSettings();
+        settings.setAdminPassword( "password" );
+        settings.setClockSkew( 7 );
+        settings.setEnableDemo( false );
+        settings.setPrimaryRealmName( "APACHE.ORG" );
+        settings.setRenewableLifetime( 777 );
+        settings.setTicketLifetime( 77 );
+        Properties props = builder.build( settings );
+        assertEquals( "simple", props.getProperty( "java.naming.security.authentication" ) );
+        assertEquals( "uid=admin,ou=system", props.getProperty( "java.naming.security.principal" ) );
+        assertEquals( "password", props.getProperty( "java.naming.security.credentials" ) );
+        assertEquals( "dc=apache,dc=org", props.getProperty( "java.naming.provider.url" ) );
+        assertEquals( "org.safehaus.triplesec.store.ProfileStateFactory", 
+            props.getProperty( "java.naming.factory.state" ) );
+        assertEquals( "org.safehaus.triplesec.store.ProfileObjectFactory", 
+            props.getProperty( "java.naming.factory.object" ) );
+        assertEquals( "APACHE.ORG", props.getProperty( "kdc.primary.realm" ) );
+        assertEquals( "krbtgt/APACHE.ORG@APACHE.ORG", props.getProperty( "kdc.principal" ) );
+        assertEquals( "des-cbc-md5 des3-cbc-sha1 des3-cbc-md5 des-cbc-md4 des-cbc-crc", 
+            props.getProperty( "kdc.encryption.types" ) );
+        assertEquals( "ou=users,dc=apache,dc=org", props.getProperty( "kdc.entryBaseDn" ) );
+        assertEquals( "password", props.getProperty( "kdc.java.naming.security.credentials" ) );
+        assertEquals( "ou=users,dc=apache,dc=org", props.getProperty( "changepw.entryBaseDn" ) );
+        assertEquals( "password", props.getProperty( "changepw.java.naming.security.credentials" ) );
+        assertEquals( "kadmin/changepw@APACHE.ORG", props.getProperty( "changepw.principal" ) );
+        assertEquals( "7", props.getProperty( "kdc.allowable.clockskew" ) );
+        assertEquals( "77", props.getProperty( "kdc.tgs.maximum.ticket.lifetime" ) );
+        assertEquals( "777", props.getProperty( "kdc.tgs.maximum.renewable.lifetime" ) );
+        assertEquals( "true", props.getProperty( "kdc.pa.enc.timestamp.required" ) );
+        assertEquals( "true", props.getProperty( "kdc.tgs.empty.addresses.allowed" ) );
+        assertEquals( "true", props.getProperty( "kdc.tgs.forwardable.allowed" ) );
+        assertEquals( "true", props.getProperty( "kdc.tgs.proxiable.allowed" ) );
+        assertEquals( "true", props.getProperty( "kdc.tgs.postdate.allowed" ) );
+        assertEquals( "true", props.getProperty( "kdc.tgs.renewable.allowed" ) );
+        assertEquals( "ou=Users,dc=apache,dc=org", props.getProperty( "safehaus.entry.basedn" ) );
+        assertEquals( "false", props.getProperty( "safehaus.load.testdata" ) );
+        assertEquals( "org.safehaus.triplesec.verifier.hotp.DefaultHotpSamVerifier", 
+            props.getProperty( "kerberos.sam.type.7" ) );
+    }
+}

Added: directory/trunks/triplesec/webapp-config/src/test/resources/00server.ldif
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/resources/00server.ldif?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/resources/00server.ldif (added)
+++ directory/trunks/triplesec/webapp-config/src/test/resources/00server.ldif Tue Dec 12 07:23:31 2006
@@ -0,0 +1,214 @@
+#
+#  Licensed to the Apache Software Foundation (ASF) under one
+#  or more contributor license agreements.  See the NOTICE file
+#  distributed with this work for additional information
+#  regarding copyright ownership.  The ASF licenses this file
+#  to you under the Apache License, Version 2.0 (the
+#  "License"); you may not use this file except in compliance
+#  with the License.  You may obtain a copy of the License at
+#  
+#    http://www.apache.org/licenses/LICENSE-2.0
+#  
+#  Unless required by applicable law or agreed to in writing,
+#  software distributed under the License is distributed on an
+#  "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+#  KIND, either express or implied.  See the License for the
+#  specific language governing permissions and limitations
+#  under the License. 
+#  
+#
+#
+#   EXAMPLE.COM is freely and reserved for testing according to this RFC:
+#
+#   http://www.rfc-editor.org/rfc/rfc2606.txt
+#
+#
+
+#
+# This ACI allows brouse access to the root suffix and one level below that to anyone.
+# At this level there is nothing critical exposed.  Everything that matters is one or
+# more levels below this.
+#
+
+dn: cn=browseRootAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { maximum 1 }
+prescriptiveACI: { identificationTag "browseRoot", precedence 100, authenticationLevel none, itemOrUserFirst userFirst: { userClasses { allUsers }, userPermissions { { protectedItems {entry}, grantsAndDenials { grantReturnDN, grantBrowse } } } } }
+
+dn: ou=Users, dc=example, dc=com
+objectclass: top
+objectclass: organizationalunit
+ou: Users
+
+#
+# This ACI allows users to modify a limited set of attributes in their own user
+# entry as well as read, compare those attributes.  The user's entry must be 
+# browseable and the DN must be returnable.
+#
+
+dn: cn=allowSelfModificationsAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { base "ou=users", maximum 1 }
+prescriptiveACI: { identificationTag "allowSelfModifications", precedence 14, authenticationLevel simple, itemOrUserFirst userFirst: { userClasses { thisEntry }, userPermissions  {  { protectedItems {entry}, grantsAndDenials { grantReturnDN, grantModify, grantBrowse, grantRead, grantDiscloseOnError } }, { protectedItems {allAttributeValues {userPassword, krb5Key, givenName, cn, commonName, surName, sn, objectClass }}, grantsAndDenials { grantModify, grantAdd, grantRemove, grantRead, grantDiscloseOnError, grantCompare } } } } }
+
+#
+# This ACI allows users to access a limited set of attributes in their own user
+# entry as well as compare those attributes.  The user's entry must be browseable 
+# and the DN must be returnable.
+#
+
+dn: cn=allowSelfAccessAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { base "ou=users", maximum 1 }
+prescriptiveACI: { identificationTag "allowSelfAccess", precedence 15, authenticationLevel simple, itemOrUserFirst userFirst: { userClasses { thisEntry }, userPermissions  {  { protectedItems {entry}, grantsAndDenials { grantReturnDN, grantBrowse, grantRead, grantDiscloseOnError } }, { protectedItems {allAttributeValues {uid, userPassword, givenName, cn, commonName, surName, sn, objectClass, creatorsName, modifiersName, createTimestamp, modifyTimestamp, krb5AccountDisabled, description, apacheSamType }}, grantsAndDenials { grantRead, grantDiscloseOnError, grantCompare } } } } }
+
+dn: ou=Groups, dc=example, dc=com
+objectclass: top
+objectclass: organizationalunit
+ou: Groups
+
+dn: cn=superUsers, ou=Groups, dc=example, dc=com
+objectClass: top
+objectClass: groupOfUniqueNames
+cn: superUsers
+uniqueMember: uid=admin, ou=system
+
+dn: cn=userAdmins, ou=Groups, dc=example, dc=com
+objectClass: top
+objectClass: groupOfUniqueNames
+cn: userAdmin
+uniqueMember: uid=admin, ou=system
+
+dn: cn=applicationAdmins, ou=Groups, dc=example, dc=com
+objectClass: top
+objectClass: groupOfUniqueNames
+cn: applicationAdmin
+uniqueMember: uid=admin, ou=system
+
+dn: cn=groupAdmins, ou=Groups, dc=example, dc=com
+objectClass: top
+objectClass: groupOfUniqueNames
+cn: groupAdmin
+uniqueMember: uid=admin, ou=system
+
+#
+# This ACI allows members of the superUsers group to have full modify and read access
+# to the entire realm as does the system administrator principal: uid=admin, ou=system.
+#
+# The only thing these users cannot do is modify the system partition.  They are only
+# restricted to superUser rights within this realm partition
+#
+ 
+dn: cn=superUsersAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { }
+prescriptiveACI: { identificationTag "superUsersAci", precedence 20, authenticationLevel simple,  itemOrUserFirst userFirst: { userClasses { userGroup { "cn=superUsers,ou=groups,dc=example,dc=com" } }, userPermissions { { protectedItems {entry, allUserAttributeTypesAndValues},  grantsAndDenials { grantRead, grantReturnDN, grantBrowse, grantDiscloseOnError, grantCompare, grantAdd, grantRename, grantRemove, grantModify, grantImport, grantExport } } } } }
+
+#
+# This ACI allows members of the userAdmin group to have full modify and read access
+# to user accounts besides their own.  Hence they can administer users in the system.
+#
+ 
+dn: cn=userAdminsAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { base "ou=users", maximum 1 }
+prescriptiveACI: { identificationTag "userAdminsAci", precedence 16, authenticationLevel simple,  itemOrUserFirst userFirst: { userClasses { userGroup { "cn=userAdmins,ou=groups,dc=example,dc=com" } }, userPermissions { { protectedItems {entry, allUserAttributeTypesAndValues},  grantsAndDenials { grantRead, grantReturnDN, grantBrowse, grantDiscloseOnError, grantCompare, grantAdd, grantRename, grantRemove, grantModify, grantImport, grantExport } } } } }
+
+
+#
+# This ACI allows members of the applicationAdmin group to have full modify and read access
+# to all applications in the realm.  Adding users to this group is like a wild card for 
+# application access.
+#
+ 
+dn: cn=applicationAdminsAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { base "ou=applications" }
+prescriptiveACI: { identificationTag "applicationAdminsAci", precedence 17, authenticationLevel simple,  itemOrUserFirst userFirst: { userClasses { userGroup { "cn=applicationAdmins,ou=groups,dc=example,dc=com" } }, userPermissions { { protectedItems {entry, allUserAttributeTypesAndValues},  grantsAndDenials { grantRead, grantReturnDN, grantBrowse, grantDiscloseOnError, grantCompare, grantAdd, grantRename, grantRemove, grantModify, grantImport, grantExport } } } } }
+
+
+#
+# This ACI allows members of the groupAdmins group to have full modify and read access
+# to all groups in the realm other than the superUsers, userAdmins, groupAdmins, and the 
+# applicationAdmins groups.
+#
+# The rational behind this is to prevent these users from changing their or other
+# users' access rights for the entire system by modifying their membership in these 
+# groups. Making someone a groupAdmin should not open the door to their ability to
+# grant themselves or others system wide administrative abilities.
+#
+# Really the groupAdmins group is intended for users that have the ability to manage 
+# group membership in specific application administration groups and that's all.  
+# These types of admins should not have the right to promote others to system level
+# administrators or complete super users.
+#
+ 
+dn: cn=groupAdminsAci,dc=example,dc=com
+objectClass: top
+objectClass: subentry
+objectClass: accessControlSubentry
+subtreeSpecification: { base "ou=groups", specificExclusions { chopBefore: "cn=userAdmins", chopBefore: "cn=groupAdmins", chopBefore: "cn=applicationAdmins", chopBefore: "cn=superUsers" } }
+prescriptiveACI: { identificationTag "groupAdminsAci", precedence 18, authenticationLevel simple,  itemOrUserFirst userFirst: { userClasses { userGroup { "cn=groupAdmins,ou=groups,dc=example,dc=com" } }, userPermissions { { protectedItems {entry, allUserAttributeTypesAndValues},  grantsAndDenials { grantRead, grantReturnDN, grantBrowse, grantDiscloseOnError, grantCompare, grantAdd, grantRename, grantRemove, grantModify, grantImport, grantExport } } } } }
+
+# ----------------------------------------------------------------------------
+# Required Kerberos Server User
+# ----------------------------------------------------------------------------
+
+dn: uid=krbtgt, ou=Users, dc=example,dc=com
+cn: Kerberos Server
+sn: Server
+givenName: Kerberos
+objectClass: top
+objectClass: uidObject
+objectClass: person
+objectClass: organizationalPerson
+objectClass: inetOrgPerson
+objectClass: krb5Principal
+objectClass: krb5KDCEntry
+ou: Directory
+ou: Users
+uid: krbtgt
+krb5PrincipalName: krbtgt/EXAMPLE.COM@EXAMPLE.COM
+krb5KeyVersionNumber: 0
+mail: admin@example.com
+userPassword: secret
+
+dn: ou=Applications,dc=example,dc=com
+objectClass: top
+objectClass: organizationalunit
+ou: applications
+
+dn: appName=tsecAdminTool,ou=Applications,dc=example,dc=com
+objectClass: policyApplication
+objectClass: top
+appName: tsecAdminTool
+description: Policy for Safehaus web and swing based administration UIs.
+userPassword: secret
+
+dn: ou=Permissions,appName=tsecAdminTool,ou=Applications,dc=example,dc=com
+objectclass: organizationalUnit
+objectclass: top
+ou: Permissions
+
+dn: ou=Roles,appName=tsecAdminTool,ou=Applications,dc=example,dc=com
+objectclass: organizationalUnit
+objectclass: top
+ou: Roles
+
+dn: ou=Profiles,appName=tsecAdminTool,ou=Applications,dc=example,dc=com
+objectclass: organizationalUnit
+objectclass: top
+ou: Profiles
+

Added: directory/trunks/triplesec/webapp-config/src/test/resources/log4j.properties
URL: http://svn.apache.org/viewvc/directory/trunks/triplesec/webapp-config/src/test/resources/log4j.properties?view=auto&rev=486187
==============================================================================
--- directory/trunks/triplesec/webapp-config/src/test/resources/log4j.properties (added)
+++ directory/trunks/triplesec/webapp-config/src/test/resources/log4j.properties Tue Dec 12 07:23:31 2006
@@ -0,0 +1,11 @@
+# Set root logger level to DEBUG and its only appender to A1.
+log4j.rootLogger=INFO, A1
+
+# A1 is set to be a ConsoleAppender.
+log4j.appender.A1=org.apache.log4j.ConsoleAppender
+
+# A1 uses PatternLayout.
+log4j.appender.A1.layout=org.apache.log4j.PatternLayout
+log4j.appender.A1.layout.ConversionPattern=%-4r [%t] %-5p %c %x - %m%n
+
+



Mime
View raw message