On 05.08.2014, at 23:50, cpaulson <[email protected]> wrote: > I am trying to design multi-tenant system. Need to create separate repository > for each organization. Is that possible to do that.
Generally, you have 2 options: a) share the repository, design multi-tenant content structures, make sure to shield them from each other using ACLs; can be more efficient (just on JVM etc.) b) use separate repositories; requires one JVM for each, separate underlying storage, request routing to different instances, more outside configuration/deployment overhead > If it is possible then > how to share User management information between repositories. With a), you can use the built-in user management, you just have to make sure user ids from different tenants are separate, e.g. "[email protected]" vs. "[email protected]". With b), you could use ldap (built in with Oak) or another external mechanism by using JAAS / a custom LoginModule. [1] http://jackrabbit.apache.org/oak/docs/security/authentication/ldap.html HTH, Alex
