[sling-org-apache-sling-starter] branch master updated: SLING-9685 - Support principal-based authentication

Mon, 24 Aug 2020 08:11:42 -0700 

This is an automated email from the ASF dual-hosted git repository.

rombert pushed a commit to branch master
in repository 
https://gitbox.apache.org/repos/asf/sling-org-apache-sling-starter.git


The following commit(s) were added to refs/heads/master by this push:
     new f813756  SLING-9685 - Support principal-based authentication
f813756 is described below

commit f8137564370d7960b594bd689a252906ccc5ecb0
Author: Robert Munteanu <[email protected]>
AuthorDate: Mon Aug 24 17:09:48 2020 +0200

    SLING-9685 - Support principal-based authentication
    
    Add required bundles and configurations. Principal-based
    authentication will only be enabled for users stored under the configured
    path ( /home/users/system/sling ).
---
 src/main/features/oak/oak_base.json | 23 ++++++++++++++++++++++-
 1 file changed, 22 insertions(+), 1 deletion(-)

diff --git a/src/main/features/oak/oak_base.json 
b/src/main/features/oak/oak_base.json
index 8da36e3..14f096c 100644
--- a/src/main/features/oak/oak_base.json
+++ b/src/main/features/oak/oak_base.json
@@ -90,6 +90,10 @@
             "start-order":"15"
         },
         {
+            
"id":"org.apache.jackrabbit:oak-authorization-principalbased:${oak.version}",
+            "start-order":"15"
+        },
+        {
             "id":"org.apache.sling:org.apache.sling.jcr.api:2.4.0",
             "start-order":"15"
         },
@@ -183,6 +187,23 @@
             "jaas.controlFlag":"sufficient",
             
"jaas.classname":"org.apache.jackrabbit.oak.security.authentication.token.TokenLoginModule",
             "jaas.ranking:Integer":"200"
-        }
+        },
+        
"org.apache.jackrabbit.oak.spi.security.authorization.principalbased.impl.PrincipalBasedAuthorizationConfiguration":{
+            "enableAggregationFilter":true
+        },
+        
"org.apache.jackrabbit.oak.spi.security.authorization.principalbased.impl.FilterProviderImpl":{
+            "path":"/home/users/system/sling"
+        },
+        
"org.apache.jackrabbit.oak.security.internal.SecurityProviderRegistration":{
+            "requiredServicePids":[
+                
"org.apache.jackrabbit.oak.security.authorization.AuthorizationConfigurationImpl",
+                
"org.apache.jackrabbit.oak.security.principal.PrincipalConfigurationImpl",
+                
"org.apache.jackrabbit.oak.security.authentication.token.TokenConfigurationImpl",
+                
"org.apache.jackrabbit.oak.spi.security.user.action.DefaultAuthorizableActionProvider",
+                
"org.apache.jackrabbit.oak.security.authorization.restriction.RestrictionProviderImpl",
+                
"org.apache.jackrabbit.oak.security.user.UserAuthenticationFactoryImpl",
+                
"org.apache.jackrabbit.oak.spi.security.authorization.principalbased.impl.PrincipalBasedAuthorizationConfiguration"
+            ]
+         }
     }
 }

Reply via email to