I've adjusted the applicationContext-acegi-security.xml file for the latest snapshot of OpenNMS 1.3 for use with our OpenLDAP directory.
Instead of using the userAttributeLdapAuthoritiesPopulator bean, I'm using the ldapAuthoritiesPopulator with groupSearchFilter set to look for uniqueMember entries (which is one way we've got groups set up in our LDAP directory).
This works fine, but it's not ideal as the groups I'd prefer to use are posixGroups, with memberUid attributes. This fails when I'm using a (memberUid={0}) groupSearchFilter.
I'm not sure if Acegi Security has a way to deal with posixGroups, but perhaps someone on the list knows of a way? Is there another substitution variable I can use for just the user's UID?
Cheers,
Paul
P.S. There's a typo in the bean configuration example provided in the following page:
http://acegisecurity.org/multiproject/acegi-security/apidocs/org/acegisecurity/providers/ldap/populator/DefaultLdapAuthoritiesPopulator.html
<property name="searchSubTree"> should be <property name="searchSubtree">
Paul
Attention: This email may contain information intended for the sole use of the original recipient. Please respect this when sharing or disclosing this email's contents with any third party. If you believe you have received this email in error, please delete it and notify the sender or [EMAIL PROTECTED] as soon as possible. The content of this email does not necessarily reflect the views of SolNet Solutions Ltd.
------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________ Home: http://acegisecurity.org Acegisecurity-developer mailing list Acegisecurity-developer@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
