Hi! I've enabled HierarchicalLDAPAuthentication for our dspace server and it seems to be working as expected. I had hoped that there would be a way to map LDAP groupMembership attributes to DSpace groups. Tim Donohue was kind enough to let me know that this is not possible out of the box, but could be done by writing a new Authentication and Authorization plugin.
Before I embark on the process of trying to learn enough Java to do that, I thought I'd ask on this list if a) anyone else has done something similar and b) if they'd be willing to share it. Perhaps just to clarify, I'd like to be able to just put something like this in a config file: "cn=UWIN Staff,ou=SBM,o=UOFW":STAFF_GROUP "cn=LIBR1,ou=SBM,o=UOFW":LIBRARY_STAFF_GROUP "cn=UWIN Faculty,ou=SBM,o=UOFW":FACULTY_GROUP etc... and then automatically make a user a member of the DSpace "STAFF_GROUP" when they are authenticated if their groupMembership attribute contains an entry matching "cn=UWIN Staff,ou=SBM,o=UOFW". Does that make sense? Regards, Syd ------------------------------------------------------------------------------ This SF.net Dev2Dev email is sponsored by: Show off your parallel programming skills. Enter the Intel(R) Threading Challenge 2010. http://p.sf.net/sfu/intel-thread-sfd _______________________________________________ DSpace-tech mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspace-tech

