[Ecm] multiple directories with ldap for users?

Sun, 03 Jan 2010 12:24:49 -0800 

Hi all,

I'm trying to configure a nuxeo 5.2 server (with postgres db) with two origins 
for the user authetication. One set, from an ldap server, and another one from 
the default Nuxeo sql user directory. The idea is that the creation of users 
were done in the sql directory, not in the ldap.

I started with the default config for ldap 
(default-ldap-users-directory-bundle.xml example of the svn). My problem is 
that, this config only allows ldap auth and it rewrites the userDirectory 
config. Besides, when a user is created, it is done in the ldap too, which it 
is not desirable for my case.

I read something about multi directories configuration in the documentation, 
where several sources are defined for this problem, but it does not work for 
me, or maybe I need other orientation for my problem. Has someone some idea for 
configuring the different sources? 

This is the config for the userDirectory of my actual 
default-ldap-users-directory-bundle.xml


  <extension target="org.nuxeo.ecm.directory.ldap.LDAPDirectoryFactory"
    point="directories">

       <directory name="userDirectory">
          <server>default</server>
          <schema>user</schema>
          <idField>username</idField>
          <passwordField>password</passwordField>

          <querySizeLimit>1000</querySizeLimit>

          <source name="ldapusers">
            <subDirectory name="authinfo">
              <field for="username">uid</field>
              <field for="password">userPassword</field>
              <field for="email">mail</field>
            </subDirectory>          


            <subDirectory name="userinfo">
              <field for="firstName">givenName</field>
              <field for="lastName">sn</field>
              <field for="company">o</field>
            </subDirectory>

          </source>

          <source name="sqlusers" creation="true">
            <subDirectory name="sqlUserDirectory"/>
          </source>

          <searchBaseDn>ou=People,dc=zylk,dc=net</searchBaseDn>
          <searchClass>person</searchClass>
          <searchScope>onelevel</searchScope>
          <readOnly>false</readOnly>


          <cacheTimeout>3600</cacheTimeout>
          <cacheMaxSize>1000</cacheMaxSize>


          <creationBaseDn>ou=People,dc=zylk,dc=net</creationBaseDn>
          <creationClass>top</creationClass>
          <creationClass>person</creationClass>
          <creationClass>organizationalPerson</creationClass>
          <creationClass>inetOrgPerson</creationClass>
          <rdnAttribute>uid</rdnAttribute>

          <fieldMapping name="username">uid</fieldMapping>
          <fieldMapping name="password">userPassword</fieldMapping>
          <fieldMapping name="firstName">givenName</fieldMapping>
          <fieldMapping name="lastName">sn</fieldMapping>
          <fieldMapping name="company">o</fieldMapping>
          <fieldMapping name="email">mail</fieldMapping>

          <references>
            <inverseReference field="groups" directory="groupDirectory" 
dualReferenceField="members" />
          </references>


   <extension>


 


 


Thanks in advance and best regards.

--C.


--
Posted by "cesarista" at Nuxeo Discussions <http://nuxeo.org/discussions>
View the complete thread: 
<http://www.nuxeo.org/discussions/thread.jspa?threadID=3154#9363>
_______________________________________________
ECM mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm
To unsubscribe, go to http://lists.nuxeo.com/mailman/options/ecm

Reply via email to