[ccnet-user] Security

Thu, 03 Jun 2010 09:10:17 -0700 

Hi,

I've been looking at security in CC.NET 1.5 and was wondering if there
was anyway of enabling security but not requiring people to log in if
all they wish to do is browse projects (and possibly project
configuration):

<internalSecurity>
<audit>
    <xmlFileAudit location="..\..\ci-workspace\audit\CCNet_Audit.xml"/
>
  </audit>
  <auditReader type="xmlFileAuditReader" location="..\..\ci-workspace
\audit\CCNet_Audit.xml"/>
<cache type="fileBasedCache" duration="30" mode="sliding" location="..
\..\ci-workspace\sessions\" />
   <users>
    <passwordUser name="john" password="john" />
    <passwordUser name="john2" password="john2" />
    <simpleUser name="*" />
    <!-- also tried setting name to guest -->
  </users>
  <permissions>
    <rolePermission name="Admin" defaultRight="Allow">
      <users>
        <userName name="john"/>
      </users>
    </rolePermission>
 <rolePermission name="Browser" defaultRight="Allow"
viewProject="Allow" forceBuild="Deny">
      <users>
        <userName name="*"/><-- also tried guest -->
      </users>
    </rolePermission>
    <userPermission user="*" >
           <viewConfiguration>Allow</viewConfiguration>
        <viewProject>Allow</viewProject>
    </userPermission>
  </permissions>

</internalSecurity>


I've tried this but I still have to log in.

On another security note do people know why this occurs if I click on
the security configuration link for a project:

Exception Message
Value cannot be null. Parameter name: s

Click here for the details
Exception Full Details
System.ArgumentNullException: Value cannot be null.
Parameter name: s
   at System.IO.StringReader..ctor(String s)
   at System.Xml.XmlDocument.LoadXml(String xml)
   at
ThoughtWorks.CruiseControl.WebDashboard.Plugins.ServerReport.ServerSecurityConfigurationServerPlugin.Execute(ICruiseRequest
request)
   at
ThoughtWorks.CruiseControl.WebDashboard.Plugins.ProjectReport.ServerSecurityConfigurationProjectPlugin.Execute(ICruiseRequest
request)
   at
ThoughtWorks.CruiseControl.WebDashboard.MVC.Cruise.ServerCheckingProxyAction.Execute(ICruiseRequest
cruiseRequest)
   at
ThoughtWorks.CruiseControl.WebDashboard.MVC.Cruise.ProjectCheckingProxyAction.Execute(ICruiseRequest
cruiseRequest)
   at
ThoughtWorks.CruiseControl.WebDashboard.MVC.Cruise.CruiseActionProxyAction.Execute(IRequest
request)
   at
ThoughtWorks.CruiseControl.WebDashboard.MVC.Cruise.ExceptionCatchingActionProxy.Execute(IRequest
request)


Thanks,

John

Reply via email to