Hi,
I want to configure the user login to authenticate against ldap [ novell ] and
authorize the portlets using this user.i didnt get any docs from site to configure
ldap.i got some help from the forum to modify the jetspeedsecurity.properties file.i
modified the file but there is some problem with the
services.JetspeedSecurity.classname property value.initially i gave
org.apache.jetspeed.services.security.JetspeedLDAPSecurityService
as the value but am getting class not found exception.Then i tried with
org.apache.jetspeed.services.ldap.LDAPService its giving a class cast exception.
given below is my configuration file.any help is appreciated.am using jetspeed 1.4
latest release after 1.4 b4.
Thanks In Advance,
Adarsh
# -------------------------------------------------------------------
# $Id: JetspeedSecurity.template,v 1.12 2003/06/09 22:06:58 morciuch Exp $
#
# This is the configuration file for JetspeedSecurity
#
# Note that strings containing "," (comma) characters must backslash
# escape the comma (i.e. '\,')
#
# -------------------------------------------------------------------
#services.JetspeedSecurity.classname=org.apache.jetspeed.services.security.JetspeedDBSecurityService
services.JetspeedSecurity.classname=org.apache.jetspeed.services.ldap.LDAPService
#########################################
# Programmatic Cascade Delete Service #
#########################################
services.JetspeedSecurity.programmatic.cascade.delete=false
#########################################
# Authentication Service #
#########################################
#services.PortalAuthentication.classname=org.apache.jetspeed.services.security.turbine.TurbineAuthentication
services.PortalAuthentication.classname=org.apache.jetspeed.services.security.ldap.LDAPAuthentication
#########################################
# Authorization Service #
#########################################
#services.PortalAccessController.classname=org.apache.jetspeed.services.security.registry.RegistryAccessController
#########################################
# User Management Service #
#########################################
#services.UserManagement.classname=org.apache.jetspeed.services.security.turbine.TurbineUserManagement
#services.JetspeedSecurity.user.class=org.apache.jetspeed.om.security.BaseJetspeedUser
services.UserManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPUserManagement
services.JetspeedSecurity.user.class=org.apache.jetspeed.om.security.ldap.LDAPUser
#########################################
# Role Management Service #
#########################################
#services.RoleManagement.classname=org.apache.jetspeed.services.security.turbine.TurbineRoleManagement
#services.JetspeedSecurity.role.class=org.apache.jetspeed.om.security.BaseJetspeedRole
services.JetspeedSecurity.role.default=user
services.RoleManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPRoleManagement
services.JetspeedSecurity.role.class=org.apache.jetspeed.om.security.ldap.LDAPRole
#########################################
# Group Management Service #
#########################################
#services.GroupManagement.classname=org.apache.jetspeed.services.security.turbine.TurbineGroupManagement
#services.JetspeedSecurity.group.class=org.apache.jetspeed.om.security.BaseJetspeedGroup
services.GroupManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPGroupManagement
services.JetspeedSecurity.group.class=org.apache.jetspeed.om.security.ldap.LDAPGroup
#########################################
# Permission Management Service #
#########################################
#services.PermissionManagement.classname=org.apache.jetspeed.services.security.turbine.TurbinePermissionManagement
services.JetspeedSecurity.permission.class=org.apache.jetspeed.om.security.BaseJetspeedPermission
services.PermissionManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPPermissionManagement
#########################################
# Security Cache Service #
#########################################
services.SecurityCache.classname=org.apache.jetspeed.services.security.SecurityCacheImpl
# This is used by the SecurityService to make the password checking
# secure. When enabled, passwords are transformed by a one-way
# function into a sequence of bytes that is base64 encoded.
# It is impossible to guess the plain-text form of the password
# from the representation. When user logs in, the entered password
# is transformed the same way and then compared with stored value.
#
# Default: false
#
services.JetspeedSecurity.secure.passwords=false
#
# This property lets you choose what digest algorithm will be used
# for encrypting passwords. Check documentation of your JRE for
# available algorithms.
#
# Default: SHA
#
services.JetspeedSecurity.secure.passwords.algorithm=SHA
# Role(s) to assign to new user. Multiple Role must be comma separated.
services.JetspeedSecurity.newuser.roles=user
# Default permission(s) when object have no permissions defined
# The follow permissions are define in the default Jetspeed installation:
# view, customize, minimize, maximize, close
# * = All permissions
services.JetspeedSecurity.permission.default.anonymous=view
services.JetspeedSecurity.permission.default.loggedin=*
# During logon, username and password can be case sensitive or case insensitive
# This option configures the logon username and password to be case sensitive or
insensitive
# if its case insensitive, then "logon.casesensitive.upper" controls whether the
username and
# password or converted to upper or lower case before passing on to the database
services.JetspeedSecurity.caseinsensitive.username=false
services.JetspeedSecurity.caseinsensitive.password=false
services.JetspeedSecurity.caseinsensitive.upper=true
# Auto-Account-Disable Feature
services.JetspeedSecurity.logon.auto.disable=false
# 3 logon strikes per 300 seconds and your out
services.JetspeedSecurity.logon.strike.count=3
services.JetspeedSecurity.logon.strike.interval=300
# dont allow more than 10 over any time period
services.JetspeedSecurity.logon.strike.max=10
# anonymous user
services.JetspeedSecurity.user.anonymous=anon
# Caching
services.JetspeedSecurity.caching.enable=true
#
# Number of days until password expires. To disable
# this feature, set it to 0.
#
# Default: 0
#
services.JetspeedSecurity.password.expiration.period=0
#
# Comma separated list of system users. System users cannot
# be deleted because they are essential to security service.
#
# Default: admin, anon
#
services.JetspeedSecurity.system.users = admin
services.JetspeedSecurity.system.users = anon
#
# Comma separated list of system roles. System roles cannot
# be deleted because they are essential to security service.
#
# Default: user, admin
#
services.JetspeedSecurity.system.roles = user
services.JetspeedSecurity.system.roles = admin
#
# Comma separated list of system groups. System groups cannot
# be deleted because they are essential to security service.
#
# Default: jetspeed
#
services.JetspeedSecurity.system.groups = Jetspeed
#
# Comma separated list of system permissions. System permissions cannot
# be deleted because they are essential to security service.
#
# Default: <none>
#
services.JetspeedSecurity.system.permissions =
#########################################
# Action buttons #
#########################################
services.JetspeedSecurity.actions.anon.disable=true
services.JetspeedSecurity.actions.allusers.disable=false
services.JetspeedSecurity.action.allusers.disable=false
#########################################
# LDAP Service #
#########################################
services.ldap.classname=org.apache.jetspeed.services.ldap.LDAPService
services.ldap.host=10.160.129.132
services.ldap.port=389
services.ldap.sslport=636
services.ldap.basedn=o/imr2
services.ldap.managerdn=cn/ksrivatsa%ou/bng%ou/in%o/imr2
services.ldap.password=sudha12
services.ldap.anonymousbind=false
services.ldap.securityauthentication=simple
#services.ldap.securityprotocol=ssl
#services.ldap.socketfactory=javax.net.ssl.SSLSocketFactory
#services.ldap.jndiprovider=com.sun.jndi.ldap.LdapCtxFactory
#services.ldap.saslclientpckgs=
services.ldap.limit=0
services.ldap.timeout=0
services.ldap.version=3
