Thanks for the reply. When I mentioned about Mapping Only Feature, I am talking about "IS_MAPPING_ONLY" column in SECURITY_PRINCIPAL table.
The SecurityAccess Interface has both setInternalUserPrincipal(InternalUserPrincipal, isMappingOnly) and setInternalGroupPrincipal(InternalGroupPrincipal, isMappingOnly) methods. >From the DefaultSecurityMappingHandler setRolePrincipalInGroup() calls setInternalGroupPrincipal() method always passes false for isMappingOnly. commonQueries.setInternalGroupPrincipal(internalGroup, false); If the group is not found, then it throws SecurityException.GROUP_DOES_NOT_EXIST But the DefaultSecurityMappingHandler setUserPrincipalInRolw() calls setInternalUserPrincipal() method by passing false or true based on whether the user already exists or not The reason is I am trying to leave my users and groups in weblogic realm and trying to maintain the roles in jetspeed. It looks like when I am trying to assign a user to a role, it creates the user in SECURITY_PRINCIPAL table but with the IS_MAPPING_ONLY flag as 1. But when I am trying to assign a group to role, I am getting SecurityException.GROUP_DOES_NOT_EXIST If jetspeed creates the group in SECURITY_PRINCIPAL table with the IS_MAPPING_ONLY flag as 1 for this case, it will work fine. For that I need to make modification to DefaultSecurityMappingHandler. I want to make sure that is there any reason for this not to be implemented before. Hope this helps about what I am trying to convey here. Thanks Prasanna David Sean Taylor wrote: > > > On Oct 31, 2007, at 9:14 AM, prasana wrote: > >> >> It looks like that Security Mapping only Feature exist for User >> Principal but >> not for Group Principal. >> >> Is there any reason behind not implementing this for Group Principal. >> > Not that I am aware of, probably just no requirement up until now > > I am looking at the UserManager: > > getUser(String username) > ... > principals.add(userPrincipal); > principals.addAll(securityMappingHandler.getRolePrincipals > (username)); > principals.addAll(securityMappingHandler.getGroupPrincipals > (username)); > > > Is this what you are saying is missing with groups? > > > > -- View this message in context: http://www.nabble.com/Security-%22Mapping-Only%22-Feature-for-Groups-tf4726066.html#a13517717 Sent from the Jetspeed - Dev mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
