Clive, Clive Gould wrote: > I seem to recall reading somewhere that it is possible for users who are > authorised by LDAP and auto-registered by DSpace to be automatically added > to a group in DSpace at the same time as they are registered. > > Is this possible with LDAP authentication? > > If yes, is this also possible with RADIUS authentication??
Although not possible out of the box, we've made a simple customization to leverage existing Active Directory groups in DSpace at UIUC. It may not be the "best" implementation, but it works well so far...let me explain: 1) I've created a custom AuthenticationMethod which I've called "UIUCSpecialGroups", which really only implements the "getSpecialGroups()" method to automatically add people to "special" groups for the life of their DSpace session. I've added this class to the list of "Stackable Authentication Methods" in the dspace.cfg to enable it. 2) The getSpecialGroups() method of that class is set up to query our local Active Directory, based on the user's netid, and ask for a list of all AD Groups this user is a member of. 3) After getting a list of all AD Groups this person is a member of, we then check DSpace to see if there is a group of the *same exact name*. In order to be a bit more careful, we actually look for a group of the same name with " [automated]" appended to it (plus this lets us know which DSpace groups are actually managed by AD) So, if a user belongs to an AD Group called: "Library Staff" We look in DSpace for a group named: "Library Staff [automated]" If a group of that name is found in DSpace, then we add the user to that group for the remainder of their session. So, in a way we are automatically adding people to groups based on Active Directory memberships, but we are not auto-creating all AD Groups in DSpace (basically cause there are too many of them that DSpace would never use). But, you could use that same sort of idea to replicate your AD groups into DSpace if you really wanted to. As always, I'm glad to share code with those interested. When I get a chance, I also may add something to the DSpace Wiki "HowTo" if others find this useful. - Tim -- ======================================== Tim Donohue Research Programmer, Illinois Digital Environment for Access to Learning and Scholarship (IDEALS) 135 Grainger Engineering Library University of Illinois at Urbana-Champaign email: [EMAIL PROTECTED] web: http://www.ideals.uiuc.edu phone: (217) 333-4648 fax: (217) 244-7764 ======================================== ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech
