Return-Path: Delivered-To: apmail-portals-jetspeed-user-archive@www.apache.org Received: (qmail 1244 invoked from network); 25 Jan 2006 13:19:25 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 25 Jan 2006 13:19:25 -0000 Received: (qmail 38900 invoked by uid 500); 25 Jan 2006 13:19:21 -0000 Delivered-To: apmail-portals-jetspeed-user-archive@portals.apache.org Received: (qmail 38864 invoked by uid 500); 25 Jan 2006 13:19:21 -0000 Mailing-List: contact jetspeed-user-help@portals.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Jetspeed Users List" Delivered-To: mailing list jetspeed-user@portals.apache.org Received: (qmail 38853 invoked by uid 99); 25 Jan 2006 13:19:21 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Jan 2006 05:19:21 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of aaronmevans@gmail.com designates 66.249.92.192 as permitted sender) Received: from [66.249.92.192] (HELO uproxy.gmail.com) (66.249.92.192) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 25 Jan 2006 05:19:20 -0800 Received: by uproxy.gmail.com with SMTP id k40so166519ugc for ; Wed, 25 Jan 2006 05:18:59 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:references; b=gc46zfsTaCEgoRcmopqjg0iNOqfTNs8UVW1F3XC/BrO6um9wck1e4Q/Rp74Q3QEoyWFkOQz4fvb10w+JUFQga5K56BwFfxryPConvq5DsK/A+b0/IW1LPG9F/a8a1KRbSKRE/ipVu0uI6rJBVVFqR/zmpRg7gR2DRVZONjYWO48= Received: by 10.48.250.5 with SMTP id x5mr55571nfh; Wed, 25 Jan 2006 05:18:59 -0800 (PST) Received: by 10.48.234.10 with HTTP; Wed, 25 Jan 2006 05:18:59 -0800 (PST) Message-ID: Date: Wed, 25 Jan 2006 08:18:59 -0500 From: Aaron Evans To: Jetspeed Users List Subject: Re: dev or user group question? In-Reply-To: <3D68A9B9A8E58049A19EBD6D561A33050B1CEF@R2D2.CCGI.INTRA> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_48348_1304008.1138195139029" References: <3D68A9B9A8E58049A19EBD6D561A33050B1CEF@R2D2.CCGI.INTRA> X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N ------=_Part_48348_1304008.1138195139029 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline This is relatively easy to do. You just have to implement the following interfaces: org.apache.jetspeed.security.spi.UserSecurityHandler org.apache.jetspeed.security.spi.RoleSecurityHandler org.apache.jetspeed.security.spi.GroupSecurityHandler org.apache.jetspeed.security.spi.SecurityMappingHandler And then change the configuration of the security-spi.atn.xml and security-spi-atz.xml spring assembly files to use your implementations. Note that you don't necessarily need to implement all of the above, you could for example leave Group managment in jetspeed and not implement the GroupSecurityHandle= r and then only override the methods in the default SecurityMappingHandler implementation as it relates to roles for authorization. By looking at the default implementations and the LDAP authentication implementation, I was able to figure it out and have jetspeed use my custom implementations that utilize my LDAP schema for users, groups and roles. HTH, aaron On 1/24/06, Garner Andrews wrote: > > We have our own security app that we've revealed with a web service. We > want to replace the Jetspeed2 authentication and authorization functions > with our app. Has anyone experimented with this at all yet? Can you > even swap out the internal portal maintenance users' security roles or > do you have to use what's already there? I'm really trying to gauge the > level of effort this will take. I've read everything I have found so > far in the mail archives and in the other support areas and not found > answers to these questions yet. If I missed something, please don't > hesitate to point me in the right direction. > > Thanks, > Garner > > C. Garner Andrews > Enterprise Architect > CompuNet Consulting Group, Inc. > +mailto:garner@ccgi.net > > --------------------------------------------------------------------- > To unsubscribe, e-mail: jetspeed-user-unsubscribe@portals.apache.org > For additional commands, e-mail: jetspeed-user-help@portals.apache.org > > ------=_Part_48348_1304008.1138195139029--