Hi,
I have attached the user-mgt.xml with this mail
I changed only
<Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
to
<Property name="UsernameJavaScriptRegEx">^[\S]{5,30}$</Property>
Best Regards,
Damian Perera
On Sun, Jun 14, 2015 at 7:46 AM, <[email protected]> wrote:
> Hi
> Can you share your $APPFAC_HOME/repository/conf/user-mgt.xml to check this
> issue.
> But seems the issue is with the username you use. Did you use puppet
> modules to set up appfactory or did you try to start up the appfactory pack
> as it is. You might be able to start the pack by resolving these issues.
> But to make it work you will need to use puppet modules provided.
>
> You can refer to [1].
>
> [1]
> http://wso2.com/library/tutorials/2015/02/tutorial-step-by-step-guide-on-installing-and-configuring-wso2-app-factory-puppet-master-using-virtu/
>
> Thanks & Regards
> Danushka Fernando
> Senior Software Engineer
> WSO2 inc. http://wso2.com/
> Mobile : +94716332729
>
> *From:* Damian Perera <[email protected]>
> *Sent:* Saturday, June 13, 2015 9:42 PM
> *To:* WSO2 Developers' List <[email protected]>
>
> Hi all,
>
> When starting wso2appfactory-2.0.0 I received an exception similar to the
> one given in the following thread:
> http://mail.wso2.org/mailarchive/dev/2014-July/032852.html
> <http://mail.wso2.org/mailarchive/dev/2014-July/032852.html>
>
>
> Changing the contents of user-mgt.xml in APPFAC_HOME/repository/conf
> <Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
> to
> <Property name="UsernameJavaScriptRegEx">^[\S]{5,30}$</Property>
> according to that thread did not resolve the issue.
>
>
> I installed wso2appfactory-2.0.0 in Windows, Linux and Mac OSX,
> also tried with Java 1.7 and 1.8 JDK Versions,
> still it gives the following exception:
>
> C:\Users\Asela Damian Perera\Desktop>set JAVA_HOME=C:\Program
> Files\Java\jdk1.7.
> 0_17\
>
> C:\Users\Asela Damian Perera\Desktop>cd "C:\Users\Asela Damian
> Perera\Desktop\ws
> o2appfactory-2.0.0\bin\"
>
> C:\Users\Asela Damian
> Perera\Desktop\wso2appfactory-2.0.0\bin>wso2server.bat
> sta
> rt
> JAVA_HOME environment variable is set to C:\Program Files\Java\jdk1.7.0_17\
> CARBON_HOME environment variable is set to
> C:\Users\ASELAD~1\Desktop\WSO2AP~1.0\
> bin\..
> [2015-06-13 21:21:43,454] INFO
> {org.wso2.carbon.cassandra.dataaccess.internal.D
> ataAccessServiceDSComponent} - Cannot locate
> 'C:\Users\ASELAD~1\Desktop\WSO2AP~
> 1.0\bin\..\repository\conf\etc\hector-config.xml'. Using the default
> configurati
> on
> [2015-06-13 21:21:43,477] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Starting WSO2 Carbon...
> [2015-06-13 21:21:43,477] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Operating System : Windows 8 6.2, amd64
> [2015-06-13 21:21:43,478] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Java Home : C:\Program Files\Java\jdk1.7.0_17\jre
> [2015-06-13 21:21:43,478] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Java Version : 1.7.0_17
> [2015-06-13 21:21:43,479] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Java VM : Java HotSpot(TM) 64-Bit Server VM 23.7-b01,Oracle
> Corp
> oration
> [2015-06-13 21:21:43,479] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Carbon Home : C:\Users\ASELAD~1\Desktop\WSO2AP~1.0\bin\..
> [2015-06-13 21:21:43,480] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - Java Temp Dir : C:\Users\ASELAD~1\Desktop\WSO2AP~1.0\bin\..\tmp
> [2015-06-13 21:21:43,480] INFO
> {org.wso2.carbon.core.internal.CarbonCoreActivat
> or} - User : Asela Damian Perera, en-US, Asia/Colombo
> [2015-06-13 21:21:43,562] WARN
> {org.wso2.carbon.core.bootup.validator.util.Vali
> dationResultPrinter} - The running OS : Windows 8 is not a tested
> Operating
> Sys
> tem for running WSO2 Carbon
> [2015-06-13 21:21:43,563] WARN
> {org.wso2.carbon.core.bootup.validator.util.Vali
> dationResultPrinter} - The default keystore (wso2carbon.jks) is currently
> being
> used. To maximize security when deploying to a production environment,
> configur
> e a new keystore with a unique password in the production server profile.
> [2015-06-13 21:21:43,639] INFO
> {org.wso2.carbon.databridge.agent.thrift.AgentHo
> lder} - Agent created !
> [2015-06-13 21:21:43,658] INFO
> {org.wso2.carbon.databridge.agent.thrift.interna
> l.AgentDS} - Successfully deployed Agent Client
> [2015-06-13 21:21:43,807] INFO
> {org.wso2.carbon.ldap.server.configuration.LDAPC
> onfigurationBuilder} - KDC server is disabled.
> [2015-06-13 21:21:44,046] INFO
> {org.wso2.carbon.ldap.server.DirectoryActivator}
> - Initializing Directory Server with working directory
> C:\Users\ASELAD~1\Deskt
> op\WSO2AP~1.0\bin\..\repository\data\org.wso2.carbon.directory and port
> 10389
> [2015-06-13 21:21:47,304] INFO
> {org.wso2.carbon.social.core.internal.SocialComp
> onent} - Social Activity bundle is activated
> [2015-06-13 21:21:50,575] ERROR
> {org.wso2.carbon.user.core.common.DefaultRealm}
> - Cannot create
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager
> java.lang.reflect.InvocationTargetException
> at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
> Method)
>
> at
> sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct
> orAccessorImpl.java:57)
> at
> sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC
> onstructorAccessorImpl.java:45)
> at java.lang.reflect.Constructor.newInstance(Constructor.java:525)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions
> (DefaultRealm.java:329)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.initializeObjects(Defau
> ltRealm.java:195)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.init(DefaultRealm.java:
> 104)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(
> DefaultRealmService.java:223)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:101)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:114)
> at
> org.wso2.carbon.user.core.internal.Activator.startDeploy(Activator.ja
> va:69)
> at
> org.wso2.carbon.user.core.internal.BundleCheckActivator.start(BundleC
> heckActivator.java:61)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(Bund
> leContextImpl.java:711)
> at java.security.AccessController.doPrivileged(Native Method)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActiv
> ator(BundleContextImpl.java:702)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(Bund
> leContextImpl.java:683)
> at
> org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(Bundl
> eHost.java:381)
> at
> org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(Abstra
> ctBundle.java:390)
> at
> org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Frame
> work.java:1176)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:559)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:544)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.incFWSL(St
> artLevelManager.java:457)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.doSetStart
> Level(StartLevelManager.java:243)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:438)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:1)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventM
> anager.java:230)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(Even
> tManager.java:340)
> Caused by: org.wso2.carbon.user.core.UserStoreException: Admin user has not
> been
> created. Error occurs while creating Admin user in primary user store.
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3180)
> at
> org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager.<init>(Re
> adOnlyLDAPUserStoreManager.java:166)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.<init>(R
> eadWriteLDAPUserStoreManager.java:102)
> ... 27 more
> Caused by: org.wso2.carbon.user.core.UserStoreException: User name not
> valid. Us
> er name must be a non null string with following format,
> [a-zA-Z0-9._-|//]{3,30}
> $
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> rValidityChecks(ReadWriteLDAPUserStoreManager.java:295)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> r(ReadWriteLDAPUserStoreManager.java:236)
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3174)
> ... 29 more
> [2015-06-13 21:21:50,580] ERROR
> {org.wso2.carbon.user.core.common.DefaultRealmSe
> rvice} - Cannot initialize the realm.
> org.wso2.carbon.user.core.UserStoreException: nullType class
> java.lang.reflect.I
> nvocationTargetException
> at
> org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions
> (DefaultRealm.java:370)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.initializeObjects(Defau
> ltRealm.java:195)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.init(DefaultRealm.java:
> 104)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(
> DefaultRealmService.java:223)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:101)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:114)
> at
> org.wso2.carbon.user.core.internal.Activator.startDeploy(Activator.ja
> va:69)
> at
> org.wso2.carbon.user.core.internal.BundleCheckActivator.start(BundleC
> heckActivator.java:61)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(Bund
> leContextImpl.java:711)
> at java.security.AccessController.doPrivileged(Native Method)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActiv
> ator(BundleContextImpl.java:702)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(Bund
> leContextImpl.java:683)
> at
> org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(Bundl
> eHost.java:381)
> at
> org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(Abstra
> ctBundle.java:390)
> at
> org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Frame
> work.java:1176)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:559)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:544)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.incFWSL(St
> artLevelManager.java:457)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.doSetStart
> Level(StartLevelManager.java:243)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:438)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:1)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventM
> anager.java:230)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(Even
> tManager.java:340)
> Caused by: java.lang.reflect.InvocationTargetException
> at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
> Method)
>
> at
> sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct
> orAccessorImpl.java:57)
> at
> sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC
> onstructorAccessorImpl.java:45)
> at java.lang.reflect.Constructor.newInstance(Constructor.java:525)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions
> (DefaultRealm.java:329)
> ... 22 more
> Caused by: org.wso2.carbon.user.core.UserStoreException: Admin user has not
> been
> created. Error occurs while creating Admin user in primary user store.
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3180)
> at
> org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager.<init>(Re
> adOnlyLDAPUserStoreManager.java:166)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.<init>(R
> eadWriteLDAPUserStoreManager.java:102)
> ... 27 more
> Caused by: org.wso2.carbon.user.core.UserStoreException: User name not
> valid. Us
> er name must be a non null string with following format,
> [a-zA-Z0-9._-|//]{3,30}
> $
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> rValidityChecks(ReadWriteLDAPUserStoreManager.java:295)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> r(ReadWriteLDAPUserStoreManager.java:236)
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3174)
> ... 29 more
> [2015-06-13 21:21:50,585] ERROR
> {org.wso2.carbon.user.core.internal.Activator} -
> Cannot start User Manager Core bundle
> org.wso2.carbon.user.core.UserStoreException: Cannot initialize the realm.
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(
> DefaultRealmService.java:231)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:101)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRe
> almService.java:114)
> at
> org.wso2.carbon.user.core.internal.Activator.startDeploy(Activator.ja
> va:69)
> at
> org.wso2.carbon.user.core.internal.BundleCheckActivator.start(BundleC
> heckActivator.java:61)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl$1.run(Bund
> leContextImpl.java:711)
> at java.security.AccessController.doPrivileged(Native Method)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.startActiv
> ator(BundleContextImpl.java:702)
> at
> org.eclipse.osgi.framework.internal.core.BundleContextImpl.start(Bund
> leContextImpl.java:683)
> at
> org.eclipse.osgi.framework.internal.core.BundleHost.startWorker(Bundl
> eHost.java:381)
> at
> org.eclipse.osgi.framework.internal.core.AbstractBundle.resume(Abstra
> ctBundle.java:390)
> at
> org.eclipse.osgi.framework.internal.core.Framework.resumeBundle(Frame
> work.java:1176)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:559)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.resumeBund
> les(StartLevelManager.java:544)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.incFWSL(St
> artLevelManager.java:457)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.doSetStart
> Level(StartLevelManager.java:243)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:438)
> at
> org.eclipse.osgi.framework.internal.core.StartLevelManager.dispatchEv
> ent(StartLevelManager.java:1)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventM
> anager.java:230)
> at
> org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(Even
> tManager.java:340)
> Caused by: org.wso2.carbon.user.core.UserStoreException: nullType class
> java.lan
> g.reflect.InvocationTargetException
> at
> org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions
> (DefaultRealm.java:370)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.initializeObjects(Defau
> ltRealm.java:195)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.init(DefaultRealm.java:
> 104)
> at
> org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(
> DefaultRealmService.java:223)
> ... 19 more
> Caused by: java.lang.reflect.InvocationTargetException
> at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native
> Method)
>
> at
> sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct
> orAccessorImpl.java:57)
> at
> sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC
> onstructorAccessorImpl.java:45)
> at java.lang.reflect.Constructor.newInstance(Constructor.java:525)
> at
> org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions
> (DefaultRealm.java:329)
> ... 22 more
> Caused by: org.wso2.carbon.user.core.UserStoreException: Admin user has not
> been
> created. Error occurs while creating Admin user in primary user store.
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3180)
> at
> org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager.<init>(Re
> adOnlyLDAPUserStoreManager.java:166)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.<init>(R
> eadWriteLDAPUserStoreManager.java:102)
> ... 27 more
> Caused by: org.wso2.carbon.user.core.UserStoreException: User name not
> valid. Us
> er name must be a non null string with following format,
> [a-zA-Z0-9._-|//]{3,30}
> $
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> rValidityChecks(ReadWriteLDAPUserStoreManager.java:295)
> at
> org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.doAddUse
> r(ReadWriteLDAPUserStoreManager.java:236)
> at
> org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialA
> dminData(AbstractUserStoreManager.java:3174)
> ... 29 more
>
> Best Regards,
> Damian Perera.
>
>
>
>
> --
> View this message in context:
> http://wso2-oxygen-tank.10903.n7.nabble.com/Dev-WSO2-App-Factory-start-up-error-tp119693.html
> Sent from the WSO2 Development mailing list archive at Nabble.com.
> _______________________________________________
> Dev mailing list
> [email protected]
> http://wso2.org/cgi-bin/mailman/listinfo/dev
>
<!--
~ Copyright WSO2, Inc. (http://wso2.com)
~
~ Licensed under the Apache License, Version 2.0 (the "License");
~ you may not use this file except in compliance with the License.
~ You may obtain a copy of the License at
~
~ http://www.apache.org/licenses/LICENSE-2.0
~
~ Unless required by applicable law or agreed to in writing, software
~ distributed under the License is distributed on an "AS IS" BASIS,
~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
~ See the License for the specific language governing permissions and
~ limitations under the License.
-->
<UserManager>
<Realm>
<Configuration>
<AddAdmin>true</AddAdmin>
<AdminRole>admin</AdminRole>
<AdminUser>
<UserName>admin</UserName>
<Password>admin</Password>
</AdminUser>
<EveryOneRoleName>everyone</EveryOneRoleName> <!-- By default users in this role sees the registry root -->
<Property name="url">jdbc:h2:repository/database/WSO2CARBON_DB;DB_CLOSE_ON_EXIT=FALSE</Property>
<Property name="userName">wso2carbon</Property>
<Property name="password">wso2carbon</Property>
<Property name="driverName">org.h2.Driver</Property>
<Property name="maxActive">50</Property>
<Property name="maxWait">60000</Property>
<Property name="minIdle">5</Property>
<Property name="MultiTenantRealmConfigBuilder">org.wso2.carbon.appfactory.userstore.AppFactoryRealmConfigBuilder</Property>
</Configuration>
<UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager">
<Property name="TenantManager">org.wso2.carbon.user.core.tenant.CommonHybridLDAPTenantManager</Property>
<Property name="ConnectionURL">ldap://localhost:${Ports.EmbeddedLDAP.LDAPServerPort}</Property>
<Property name="ConnectionName">uid=admin,ou=system</Property>
<Property name="ConnectionPassword">admin</Property>
<Property name="Disabled">false</Property>
<Property name="passwordHashMethod">SHA</Property>
<Property name="UserNameListFilter">(objectClass=person)</Property>
<Property name="UserEntryObjectClass">wso2Person</Property>
<Property name="UserSearchBase">ou=Users,dc=appfactory,dc=wso2,dc=com</Property>
<Property name="UserNameSearchFilter">(&(objectClass=person)(mail=?))</Property>
<Property name="UserNameAttribute">mail</Property>
<Property name="PasswordJavaScriptRegEx">^[\S]{5,30}$</Property>
<Property name="UsernameJavaScriptRegEx">^[\S]{3,30}$</Property>
<Property name="UsernameJavaRegEx">[a-zA-Z0-9._-|//]{3,30}$</Property>
<Property name="RolenameJavaScriptRegEx">^[\S]{3,30}$</Property>
<Property name="RolenameJavaRegEx">[a-zA-Z0-9._-|//]{3,30}$</Property>
<Property name="ReadGroups">true</Property>
<Property name="WriteGroups">true</Property>
<Property name="EmptyRolesAllowed">true</Property>
<Property name="GroupSearchBase">ou=Groups,dc=appfactory,dc=wso2,dc=com</Property>
<Property name="GroupNameListFilter">(objectClass=groupOfNames)</Property>
<Property name="GroupEntryObjectClass">groupOfNames</Property>
<Property name="GroupNameSearchFilter">(&(objectClass=groupOfNames)(cn=?))</Property>
<Property name="GroupNameAttribute">cn</Property>
<Property name="SharedGroupNameAttribute">cn</Property>
<Property name="SharedGroupSearchBase">ou=SharedGroups,dc=appfactory,dc=wso2,dc=com</Property>
<Property name="SharedGroupEntryObjectClass">groupOfNames</Property>
<Property name="SharedGroupNameListFilter">(objectClass=groupOfNames)</Property>
<Property name="SharedGroupNameSearchFilter">(&(objectClass=groupOfNames)(cn=?))</Property>
<Property name="SharedTenantNameListFilter">(objectClass=organizationalUnit)</Property>
<Property name="SharedTenantNameAttribute">ou</Property>
<Property name="SharedTenantObjectClass">organizationalUnit</Property>
<Property name="MembershipAttribute">member</Property>
<Property name="UserRolesCacheEnabled">true</Property>
<Property name="UserDNPattern">mail={0},ou=Users,dc=appfactory,dc=wso2,dc=com</Property>
<Property name="MaxRoleNameListLength">100</Property>
<Property name="MaxUserNameListLength">100</Property>
</UserStoreManager>
<!-- Following is the default user store manager. This user store manager is based on embedded-apacheds LDAP. It reads/writes users and roles into the default apacheds LDAP user store. Descriptions about each of the following properties can be found in user management documentation of the respective
product.
Note: Do not comment within UserStoreManager tags. Cause, specific tag names are used as tokens when building configurations for products. -->
<!--UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager">
<Property name="ConnectionURL">ldap://localhost:${Ports.EmbeddedLDAP.LDAPServerPort}</Property>
<Property name="ConnectionName">uid=admin,ou=system</Property>
<Property name="ConnectionPassword">admin</Property>
<Property name="passwordHashMethod">SHA</Property>
<Property name="UserNameListFilter">(objectClass=person)</Property>
<Property name="UserEntryObjectClass">wso2Person</Property>
<Property name="UserSearchBase">ou=Users,dc=wso2,dc=org</Property>
<Property name="UserNameSearchFilter">(&(objectClass=person)(uid=?))</Property>
<Property name="UserNameAttribute">uid</Property>
<Property name="PasswordJavaScriptRegEx">[\\S]{5,30}</Property>
<Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="UsernameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="UsernameJavaScriptRegEx">^[\S]{5,30}$</Property>
<Property name="RolenameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="ReadLDAPGroups">true</Property>
<Property name="WriteLDAPGroups">true</Property>
<Property name="EmptyRolesAllowed">true</Property>
<Property name="GroupSearchBase">ou=Groups,dc=wso2,dc=org</Property>
<Property name="GroupNameListFilter">(objectClass=groupOfNames)</Property>
<Property name="GroupEntryObjectClass">groupOfNames</Property>
<Property name="GroupNameSearchFilter">(&(objectClass=groupOfNames)(cn=?))</Property>
<Property name="GroupNameAttribute">cn</Property>
<Property name="MembershipAttribute">member</Property>
<Property name="UserRolesCacheEnabled">true</Property>
<Property name="UserDNPattern">uid={0},ou=Users,dc=wso2,dc=org</Property>
</UserStoreManager-->
<!-- Following is the configuration for internal JDBC user store. This user store manager is based on JDBC. In case if application needs to manage passwords externally set property <Property name="PasswordsExternallyManaged">true</Property>. Furthermore properties, IsEmailUserName and DomainCalculation are readonly properties.
Note: Do not comment within UserStoreManager tags. Cause, specific tag names are used as tokens when building configurations for products. -->
<!--UserStoreManager class="org.wso2.carbon.user.core.jdbc.JDBCUserStoreManager">
<Property name="ReadOnly">false</Property>
<Property name="MaxUserNameListLength">100</Property>
<Property name="IsEmailUserName">false</Property>
<Property name="DomainCalculation">default</Property>
<Property name="PasswordDigest">SHA-256</Property>
<Property name="StoreSaltedPassword">true</Property>
<Property name="UserNameUniqueAcrossTenants">false</Property>
<Property name="PasswordJavaRegEx">[\S]{5,300}$</Property>
<Property name="PasswordJavaScriptRegEx">[\\S]{5,30}</Property>
<Property name="UsernameJavaRegEx">^[^~!#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="RolenameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="RolenameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="UserRolesCacheEnabled">true</Property>
</UserStoreManager-->
<!-- If product is using an external LDAP as the user store in READ ONLY mode, use following user manager -->
<!--UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager">
<Property name="MaxUserNameListLength">100</Property>
<Property name="ConnectionURL">ldap://localhost:10389</Property>
<Property name="ConnectionName">uid=admin,ou=system</Property>
<Property name="ConnectionPassword">admin</Property>
<Property name="UserSearchBase">ou=system</Property>
<Property name="UserNameListFilter">(objectClass=person)</Property>
<Property name="UserNameAttribute">uid</Property>
<Property name="ReadLDAPGroups">false</Property>
<Property name="GroupSearchBase">ou=system</Property>
<Property name="GroupNameListFilter">(objectClass=groupOfNames)</Property>
<Property name="GroupNameAttribute">cn</Property>
<Property name="MembershipAttribute">member</Property>
<Property name="UserRolesCacheEnabled">true</Property>
<Property name="ReplaceEscapeCharactersAtUserLogin">true</Property>
</UserStoreManager-->
<!-- Active directory configuration is as follows.
There are few special properties for "Active Directory".
They are :
1.Referral - (comment out this property if this feature is not reuired) This enables LDAP referral support.
2.BackLinksEnabled - (Do not comment, set to true or false) In some cases LDAP works with BackLinksEnabled. In which role is stored
at user level. Depending on this value we need to change the Search Base within code.
3.isADLDSRole - (Do not comment) Set to true if connecting to an AD LDS instance else set to false.
-->
<!--UserStoreManager class="org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager">
<Property name="defaultRealmName">WSO2.ORG</Property>
<Property name="kdcEnabled">false</Property>
<Property name="ConnectionURL">ldaps://10.100.1.100:636</Property>
<Property name="ConnectionName">CN=admin,CN=Users,DC=WSO2,DC=Com</Property>
<Property name="ConnectionPassword">A1b2c3d4</Property>
<Property name="passwordHashMethod">SHA</Property>
<Property name="UserSearchBase">CN=Users,DC=WSO2,DC=Com</Property>
<Property name="UserEntryObjectClass">user</Property>
<Property name="UserNameAttribute">cn</Property>
<Property name="isADLDSRole">false</Property
<Property name="UserNameListFilter">(objectClass=user)</Property>
<Property name="UserNameSearchFilter">(&(objectClass=user)(cn=?))</Property>
<Property name="UsernameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>]{3,30}$</Property>
<Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="PasswordJavaScriptRegEx">[\\S]{5,30}</Property>
<Property name="RolenameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="RolenameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>]{3,30}$</Property>
<Property name="ReadLDAPGroups">true</Property>
<Property name="WriteLDAPGroups">true</Property>
<Property name="EmptyRolesAllowed">true</Property>
<Property name="GroupSearchBase">CN=Users,DC=WSO2,DC=Com</Property>
<Property name="GroupEntryObjectClass">group</Property>
<Property name="GroupNameAttribute">cn</Property>
<Property name="MembershipAttribute">member</Property>
<Property name="GroupNameListFilter">(objectcategory=group)</Property>
<Property name="GroupNameSearchFilter">(&(objectClass=group)(cn=?))</Property>
<Property name="UserRolesCacheEnabled">true</Property>
<Property name="Referral">follow</Property>
<Property name="BackLinksEnabled">true</Property>
</UserStoreManager-->
<!-- Following user manager is used by Identity Server (IS) as its default user manager.
IS will do token replacement when building the product. Therefore do not change the syntax.
If "kdcEnabled" parameter is true, IS will allow service principle management. Thus "ServicePasswordJavaRegEx", "ServiceNameJavaRegEx"
properties control the service name format and service password formats.
-->
<!--ISUserStoreManager class="org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager">
<Property name="defaultRealmName">WSO2.ORG</Property>
<Property name="kdcEnabled">false</Property>
<Property name="ConnectionURL">ldap://localhost:${Ports.EmbeddedLDAP.LDAPServerPort}</Property>
<Property name="ConnectionName">uid=admin,ou=system</Property>
<Property name="ConnectionPassword">admin</Property>
<Property name="passwordHashMethod">SHA</Property>
<Property name="UserNameListFilter">(objectClass=person)</Property>
<Property name="UserEntryObjectClass">wso2Person</Property>
<Property name="UserSearchBase">ou=Users,dc=wso2,dc=org</Property>
<Property name="UserNameSearchFilter">(&(objectClass=person)(uid=?))</Property>
<Property name="UserNameAttribute">uid</Property>
<Property name="PasswordJavaScriptRegEx">[\\S]{5,30}</Property>
<Property name="ServicePasswordJavaRegEx">[\\S]{5,30}</Property>
<Property name="ServiceNameJavaRegEx">[\\S]{2,30}/[\\S]{2,30}</Property>
<Property name="UsernameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="UsernameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="RolenameJavaScriptRegEx">[\\S]{3,30}</Property>
<Property name="RolenameJavaRegEx">^[^~!@#$;%^*+={}\\|\\\\<>,\'\"]{3,30}$</Property>
<Property name="ReadLDAPGroups">true</Property>
<Property name="WriteLDAPGroups">true</Property>
<Property name="EmptyRolesAllowed">true</Property>
<Property name="GroupSearchBase">ou=Groups,dc=wso2,dc=org</Property>
<Property name="GroupNameListFilter">(objectClass=groupOfNames)</Property>
<Property name="GroupEntryObjectClass">groupOfNames</Property>
<Property name="GroupNameSearchFilter">(&(objectClass=groupOfNames)(cn=?))</Property>
<Property name="GroupNameAttribute">cn</Property>
<Property name="MembershipAttribute">member</Property>
<Property name="UserRolesCacheEnabled">true</Property>
<Property name="UserDNPattern">uid={0},ou=Users,dc=wso2,dc=org</Property>
</ISUserStoreManager-->
<AuthorizationManager
class="org.wso2.carbon.user.core.authorization.JDBCAuthorizationManager">
<Property name="AdminRoleManagementPermissions">/permission</Property>
</AuthorizationManager>
</Realm>
</UserManager>
<!--*******Description of some of the configuration properties used in user-mgt.xml*********************************
UserRolesCacheEnabled - This is to indicate whether to cache role list of a user. By default it is set to true.
You may need to disable it if user-roles are changed by external means and need to reflect
those changes in the carbon product immediately.
ReplaceEscapeCharactersAtUserLogin - This is to configure whether escape characters in user name needs to be replaced at user login.
Currently the identified escape characters that needs to be replaced are '\' & '\\'
UserDNPattern - This property will be used when authenticating users. During authentication we do a bind. But if the user is login with
email address or some other property we need to first lookup LDAP and retreive DN for the user. This involves an additional step.
If UserDNPattern is specified the DN will be contructed using the pattern specified in this property. Performance of this is much better than looking
up DN and binding user.
passwordHashMethod - This says how the password should be stored. Allowed values are as follows,
SHA - Uses SHA digest method
MD5 - Uses MD 5 digest method
PLAIN_TEXT - Plain text passwords
In addition to above this supports all digest methods supported by http://docs.oracle.com/javase/6/docs/api/java/security/MessageDigest.html.
-->
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
