Hi Karl,For some reason, we have different rights for the same username with different suffixes (@g-b.entp and @g-b)What we are trying to do is to merge rights.AuthenticatedUserName=ahmet@g-bAuthenticatedUserNamefirstname.lastname@example.orgI see following in connnectors.xml<!-- authorizationdomain domain="AD" name="ActiveDirectory"/-->AD is the part where we pass parameters of AuthenticatedUserDomain=AD. But what is the name (ActiveDirectory) part? How it is connected to our defined authorities?Thanks,AhmetOn Wednesday, April 30, 2014 1:07 PM, Karl Wright <email@example.com> wrote:
If you really have just *one* user name, and want to map it to *two*, consider using a regular expression mapper to modify the name for one of your authoriities instead.Hi Ahmet,If you want to pass in two different user names, you need to specify two domains. Before you can specify two domains, you have to register the domains you use. See connectors.xml (or connectors-proprietary.xml) for how to register domains. Then, specify domain_0= and domain_1= in your url as well. Make sure your two authorities are also configured to use the appropriate authoritization domain as well.
Hope this helps.
KarlOn Wed, Apr 30, 2014 at 5:23 AM, Ahmet Arslan <firstname.lastname@example.org> wrote:
In our mcf/solr setup we want to merge rights of users xxx@g-b and email@example.com
(1) and (2) return something. We expect in (3) we have union of results
However (3) returns results of username_1. Because domain parameter is used as keys. empty string used as key and previous entry is overridden. And we don't know what to pass as domain.
Does that makes sense?
Should AuthenticatedUserName_0=xxx&AuthenticatedUserName_1=yyy parameters OR rights of users?
Note that We could be completely mis-using mcf.