I am new to Apache Fortress (and LDAP), and very hooked! Great work!
I am experimenting with
<addcontext>
<context name="Client123"/>
</addcontext>
I try to understand the different ways to do multi-tenancy.
One for apps could be simply to create a new partition in the LDAP - I have
some success with that.
Each company using the app wants to define their own roles, so I thought of
using context. With the ant-script in core I can load into a specific context.
Does that mean that A/RBAC structure and the permissions have to be duplicated
to each context? Permissions have to be the same within one application, of
course.
I am having trouble with getting the realm and/or the web-admin to behave
nicely. How should they be configured? It seems that for instance web-admin
have hardcoded "HOME" in applicationContext and that J2eePolicyMgrImpl in the
real is hardcoded to GlobalIds.HOME.
Is there a right way to handle multiple tentants and contexts?
How do I make the web-admin avare of contexts? - Will I have to deploy an
instance for each context and LDAP-partition?
