Would you be willing to share this implementation? As we would all be interested in getting access to this?
- Joakim Erdfelt David Goemans wrote: > Hi, > > I want to use LDAP to authenticate on Continuum. I tried to write a own > RBAC-Manager and wanted to configure it in the file "components.xml" of > the subproject continuum-security as follow: > > <!-- RBAC Manager, cached ldap --> > <component> > <role>org.codehaus.plexus.security.rbac.RBACManager</role> > <role-hint>cached</role-hint> > <implementation>org.codehaus.plexus.security.authorization.rbac.store.cached.CachedRbacManager</implementation> > <description>CachedRbacManager is a wrapped RBACManager with > caching.</description> > <requirements> > <requirement> > <role>org.codehaus.plexus.security.rbac.RBACManager</role> > <role-hint>ldap</role-hint> > <field-name>rbacImpl</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>operations</role-hint> > <field-name>operationsCache</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>permissions</role-hint> > <field-name>permissionsCache</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>resources</role-hint> > <field-name>resourcesCache</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>roles</role-hint> > <field-name>rolesCache</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>userAssignments</role-hint> > <field-name>userAssignmentsCache</field-name> > </requirement> > <requirement> > <role>org.codehaus.plexus.ehcache.EhcacheComponent</role> > <role-hint>userPermissions</role-hint> > <field-name>userPermissionsCache</field-name> > </requirement> > </requirements> > </component> > > <component> > <role>org.codehaus.plexus.security.rbac.RBACManager</role> > <role-hint>ldap</role-hint> > <implementation>"my implementation"</implementation> > <description>JdoRbacManager:</description> > <requirements> > <requirement> > <role> > org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool > </role> > <field-name>jdo</field-name> > </requirement> > </requirements> > </component> > <component> > <role> > org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool > </role> > <implementation> > org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoTool > </implementation> > <description>JdoTool - RBAC JDO Tools.</description> > <requirements> > <requirement> > <role>org.codehaus.plexus.jdo.JdoFactory</role> > <role-hint>users</role-hint> > <field-name>jdoFactory</field-name> > </requirement> > </requirements> > </component> > > The continuum uses now my implementation, but no roles, permissions, etc > are defined. How can I configure the continuum roles, permissions, etc > in the components.xml-file. > > My implementation extends the > "org.codehaus.plexus.security.authorization.rbac.store.jdo.JdoRbacManager", > because I only want to authenticate on LDAP if the user isn't saved in > the Database. > > greetz > David > >