Re: Example of Principals.xml and web.xml for simple access control?

Tue, 18 Jul 2000 01:10:28 -0700 

I encountered a few stumbling blocks on my way to Orion user authentication.
In fact, what got me going was the JRun manuals ;-), which are quite
extensive, though not totally applicable when it gets server-specific.
AFAIK, the most important thing you need beyond the files you mention is the
mapping between orion users (principals.xml) and J2EE security-roles
(web.xml). I did this in in orion-application.xml (which is where orion
"docs" mention it) with the security-role-mapping item. I dont know what the
permission stuff in principals.xml means, so I just copied what I saw, and
it works for me.. HTH

web.xml:
...
 <security-constraint>
  <web-resource-collection>
   <web-resource-name>WCF Administration</web-resource-name>
   <description>WebComponents Administration</description>
   <url-pattern>*/wcfsystem</url-pattern>
  </web-resource-collection>
  <auth-constraint>
   <description>Administrators only</description>
   <role-name>admins</role-name>
  </auth-constraint>
 </security-constraint>
 <login-config>
  <auth-method>FORM</auth-method>
      <form-login-config>
         <form-login-page>/content/login.html</form-login-page>
         <form-error-page>/content/loginerr.html</form-error-page>
      </form-login-config>
 </login-config>
 <security-role>
  <description>WCF Administrators</description>
  <role-name>admins</role-name>
 </security-role>

orion-application.xml:
...
 <security-role-mapping name="admins">
  <group name="admins" />
 </security-role-mapping>
...

and principals.xml

  <group name="admins">
   <description>WCF administrators</description>
   <permission name="administration" />
  </group>
 </groups>
 <users>
  <user username="admin" password="logos">
   <description>The default administrator</description>
   <group-membership group="administrators" />
   <group-membership group="guests" />
   <group-membership group="users" />
  </user>



-----Original Message-----
From: Steven Punte <[EMAIL PROTECTED]>
To: Orion-Interest <[EMAIL PROTECTED]>
Date: Dienstag, 18. Juli 2000 08:47
Subject: Example of Principals.xml and web.xml for simple access control?


>Dear Orion Community:
>
>    I  LOVE   the Orion Server
>    I  HATE   the Orion documentation.
>
>    We'll I guess that is a bit of an oversimplification.
>
>    Does anyone have an example they could post of a
>    principals.xml and web.xml file that achieve simple
>    access control of users to a directory?
>
>    The principals.xml and web.xml make so much
>    more sense after one has their first working
>    example.
>
>    Sorry for being such a wimp!
>
>STeve Punte
>e-Business Software Architect
>Technologent Inc
>[EMAIL PROTECTED]
>
>

Reply via email to