Hi James,
If your application is going to be marketed toward medium-to-large
companies, LDAP support could end up being a deal-maker for you. I know
that it's one of the standard requirements we have for any software we
purchase. It's enough of a hassle to manage 18,000 users in one
Hi,
I think it will be better if I summarize what I am trying to do:
-Thousands of users and roles/groups are already defined at ldap.
-There is an application using slide as backend, it accesses slide
using webdav. Users can't access slide directly. Users are
authenticated in this
[EMAIL PROTECTED] wrote:
Hi,
I think it will be better if I summarize what I am trying to do:
-Thousands of users and roles/groups are already defined at ldap.
-There is an application using slide as backend, it accesses slide
using webdav. Users can't access slide directly. Users are
Somewhere between #3 and #4 : You might also want to take a look at:
http://acegisecurity.sourceforge.net/ From what I've seen it looks
pretty complete, and might offer some interesting features.
Thanks for the link! Indeed, it seems an decent solution for the
centralized user information
Is it possible to get a *list* of users and roles from JAAS? I think
that's something that would be needed to be compatible with WebDAV ACL
spec.
-James
On Wed, 2005-01-19 at 00:34 +0900, Carlos Villegas wrote:
There seems to be the need for a JAAS store!
There is a Slide JAAS login module
On Tue, 2005-01-18 at 15:40 +0100, [EMAIL PROTECTED]
wrote:
Hi,
I think it will be better if I summarize what I am trying to do:
-Thousands of users and roles/groups are already defined at ldap.
-There is an application using slide as backend, it accesses slide
using webdav. Users can't
Hi Jason,
First of all, I want to thank you for your prompt and clear answers!
Thanks!
LDAP is a good candidate for this. It is a standard and fairly well
supported, so integrating third-party applications should be easier than
with a custom solution.
I taught about it as well, but our
fully implemented LDAP server in Java. As far as I know there aren't any
java open source LDAP servers, except the JavaLDAP project of Clayton
Donley (not finished) and the commercialization of it.
there is also the Apache Directory Server, which is coming along nicely:
On Tue, 2005-01-18 at 17:53 +0100, [EMAIL PROTECTED]
wrote:
Hi Jason,
First of all, I want to thank you for your prompt and clear answers!
Thanks!
LDAP is a good candidate for this. It is a standard and fairly well
supported, so integrating third-party applications should be easier
James Mason wrote:
Is it possible to get a *list* of users and roles from JAAS? I think
that's something that would be needed to be compatible with WebDAV ACL
spec.
Mmm... I don't think it's possible. Maybe that's why it hasn't been
suggested before ;-) But maybe it's possible to populate the
On Wed, 2005-01-19 at 10:13 +0900, Carlos Villegas wrote:
James Mason wrote:
Is it possible to get a *list* of users and roles from JAAS? I think
that's something that would be needed to be compatible with WebDAV ACL
spec.
Mmm... I don't think it's possible. Maybe that's why it hasn't
I'm not familiar with the auto-create-users code, so the only thing I
know for sure about it is that an attempt is made to create a new user
node when a user authenticates that doesn't exist in the system. I
really don't know how role assignment fits in, though. The second part
of my post was
Thanks for the excellent reply.
I am struggling to understand the code and the philosophy behind the
code so that I may use slide effectively, and integrate it into Liferay
Portal.
I understand the first paragraph, and tnaks for explaining the Role
Authorisation philosophy especially the part
Slide needs to be able to enumerate all of the available roles in order
to be WebDAV compliant. JAAS integration works great for
*authentication*, but when it comes to authorization Slide uses other
methods for discovering role memberships. If you want to provide your
own Security implementation
The JAAS authentication for me is working happily.
However, I wish to remove the custom authentication within the slide
login module and replace it with my own authentication.
At the moment a fixed username and password 'jaas' jaas'
I would like to know how to do this, as I believe ther is a
Now this is a question I understand. I guess you are right. I was able
to switch on user auto creation by adding
auto-create-userstrue/auto-create-users
auto-create-users-roleorg.apache.slide.structure.SubjectNode/auto-create-users-role
to the configuration section of Domain.xml
Oliver
On Tue,
Thanks for the reply.
The problem I am having is that from the resources I see available to
give me information on how to write my own login module ( for which I am
using http://forum.java.sun.com/thread.jspa?threadID=233317tstart=75 to
guide me ), all I need to do is replace the Slide login
I see. You will either have to grant the rights to anyone or have a
user store that displays the appropriate rights like James has done in
the JNDI user store, I guess. If so and you are authenticated, but not
authorized, your problem has got nothing to do with JAAS.
Oliver
On Tue, 11 Jan 2005
I cant believe this is the way it is, as does it not defeat the objective,
I thought the objective of JAAS is to allow external authentication. If
I need a preconfigured store, then thats not right.
Autocreate user autocreates a user with some authentication, so there
must be something wrong in
WCK supports a different approach in that it does not use Slide access
rights at all, but checks them in the store level.
This is my last post on this subject.
Oliver
On Tue, 11 Jan 2005 18:00:15 +0100, Paul Hussein [EMAIL PROTECTED] wrote:
I cant believe this is the way it is, as does it not
I am having a slight problem configuring a simple JAAS authentication
using slide 2.1rc1 ( tomcat binary ) and the example code from the JAAS
tutorial
http://java.sun.com/j2se/1.4.2/docs/guide/security/jaas/tutorials/GeneralAcnOnly.html
I have downloaded and build the example code from above
21 matches
Mail list logo