Hi!

I've enabled HierarchicalLDAPAuthentication for our dspace server and it
seems to be working as expected. I had hoped that there would be a way
to map LDAP groupMembership attributes to DSpace groups. Tim Donohue was
kind enough to let me know that this is not possible out of the box, but
could be done by writing a new Authentication and Authorization plugin.

Before I embark on the process of trying to learn enough Java to do
that, I thought I'd ask on this list if a) anyone else has done
something similar and b) if they'd be willing to share it.

Perhaps just to clarify, I'd like to be able to just put something like
this in a config file:

"cn=UWIN Staff,ou=SBM,o=UOFW":STAFF_GROUP
"cn=LIBR1,ou=SBM,o=UOFW":LIBRARY_STAFF_GROUP
"cn=UWIN Faculty,ou=SBM,o=UOFW":FACULTY_GROUP
etc...

and then automatically make a user a member of the DSpace "STAFF_GROUP"
when they are authenticated if their groupMembership attribute contains
an entry matching "cn=UWIN Staff,ou=SBM,o=UOFW". 

Does that make sense?

Regards,
Syd




------------------------------------------------------------------------------
This SF.net Dev2Dev email is sponsored by:

Show off your parallel programming skills.
Enter the Intel(R) Threading Challenge 2010.
http://p.sf.net/sfu/intel-thread-sfd
_______________________________________________
DSpace-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-tech

Reply via email to