Hi, you can look at the ShibAuthentication.java file in 
[dspace-src]/dspace-api/src/main/java/org/dspace/authenticate/ for ideas on 
your getSpecialGroups function. I've modified ours a bit, to use the domain of 
the ePerson's e-mail address to assign people to campus-based groups. It's an 
embarrassing hack, but it works. :-)

--Hardy 

> -----Original Message-----
> From: Sydney Weidman [mailto:[email protected]]
> Sent: Tuesday, August 31, 2010 4:42 PM
> To: [email protected]
> Subject: [Dspace-tech] Mapping LDAP groups to DSpace groups
> 
> Hi!
> 
> I've enabled HierarchicalLDAPAuthentication for our dspace server and it
> seems to be working as expected. I had hoped that there would be a way
> to map LDAP groupMembership attributes to DSpace groups. Tim Donohue was
> kind enough to let me know that this is not possible out of the box, but
> could be done by writing a new Authentication and Authorization plugin.
> 
> Before I embark on the process of trying to learn enough Java to do
> that, I thought I'd ask on this list if a) anyone else has done
> something similar and b) if they'd be willing to share it.
> 
> Perhaps just to clarify, I'd like to be able to just put something like
> this in a config file:
> 
> "cn=UWIN Staff,ou=SBM,o=UOFW":STAFF_GROUP
> "cn=LIBR1,ou=SBM,o=UOFW":LIBRARY_STAFF_GROUP
> "cn=UWIN Faculty,ou=SBM,o=UOFW":FACULTY_GROUP
> etc...
> 
> and then automatically make a user a member of the DSpace "STAFF_GROUP"
> when they are authenticated if their groupMembership attribute contains
> an entry matching "cn=UWIN Staff,ou=SBM,o=UOFW".
> 
> Does that make sense?
> 
> Regards,
> Syd
> 
> 
> 
> 
> ------------------------------------------------------------------------
> ------
> This SF.net Dev2Dev email is sponsored by:
> 
> Show off your parallel programming skills.
> Enter the Intel(R) Threading Challenge 2010.
> http://p.sf.net/sfu/intel-thread-sfd
> _______________________________________________
> DSpace-tech mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/dspace-tech

------------------------------------------------------------------------------
This SF.net Dev2Dev email is sponsored by:

Show off your parallel programming skills.
Enter the Intel(R) Threading Challenge 2010.
http://p.sf.net/sfu/intel-thread-sfd
_______________________________________________
DSpace-tech mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/dspace-tech

Reply via email to