I actually think I may have got this working...finally, tweaked config
below for reference (hopefully not tweaked enough to break it):
<cruisecontrol xmlns:cb="urn:ccnet.config.builder">
<internalSecurity>
<cache type="inMemoryCache" duration="10" mode="sliding"/>
<users>
<!--Basic user/password accounts-->
<passwordUser name="Build" password="Team"
display="Builder"/>
<passwordUser name="User" password="User"
display="User"/>
<!--All users in the domain DOMAIN-->
<ldapUser name="*" domain="DOMAIN"/>
</users>
<permissions>
<rolePermission name="Admins" defaultRight="Allow">
<users>
<userName
name="DOMAIN\firstname_lastname"/>
<userName name="Build"/>
</users>
</rolePermission>
<rolePermission name="Developers" defaultRight="Deny"
viewProject="Allow">
<users>
<userName name="User"/>
</users>
</rolePermission>
</permissions>
</internalSecurity>
<project name="ExampleProject">
<security type="inheritedProjectSecurity" />
<tasks>
<nullTask />
</tasks>
</project>
</cruisecontrol>
I think my problem was basically down to not previously including the
domain name in the <userName name="DOMAIN\firstname_lastname"/> node,
resulting in being allowed to log in succcessfully, but then not
getting the admin rights I expected.
Cheers,
Jay
