Re: portlet - security proxy?
As of now, we do not have the facility to check the credentials in the portlet. But it is in the proposal list in CVS.Please do check http://www.working-dogs.com/jetspeed/cvsweb/index.cgi/jetspeed/docs/proposal Though Turbine supports it is just for portal. Not for portlet.. So once the proposal is implemented we can do it. Anbunidhi Mahalingam - Original Message - From: "Ivanova, Jordanka" [EMAIL PROTECTED] To: "'JetSpeed'" [EMAIL PROTECTED] Sent: Tuesday, October 24, 2000 9:58 PM Subject: portlet - security proxy? I am looking for information on how portlet can authenticate user for remote service using the same credentials that he/she logged with in the portal. Like a portlet that connects to email/web space site and retrieves the data given the password and id are identical with the portal's. If you have any links or info please email. Thanks, Dannie -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED] -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED]
ACL's
ACL's in Jetspeed : I just tried to control the portlet through Jetspeed (like show / hide particular portlet in the portal) based on the ACL stuff. But I got failed because of the following strategies. If I am wrong in doings, please correct me and help me to resolve this issue.(atleast controlling one portlet) using ACL. As Mr. Kevin Burton is pointing out that Jetspeed can access and use ACL's which is in Turbine to control Jetspeed portal. But, as of my knowledge, the ACL's which we are using in Turbine is not sufficient for controlling our portlet. Turbine ACL's just control entire screen/portal not our individual portlet. It is not possibe to control access to a portlet or part of it through Turbine. If we have ACL's in jetspeed we can control our each and every portlet with in the screen/portal. For example, if we want to use Jetspeed in an intranet stuff like, think about a portlet which can show the salary of each employee. In this case we must have the ability to restrict the usage to people of the HR department. On the other hand it is not necessary to enable this restriction mechanism on the user level. In general we would restrict the access to a group of users (for example the members of the HR department). These users will be members of a specific role. As a result we should enable access to portlet functionality depending on their roles. Username may still need to be used in the access/denial specfication. Otherwise, how do you deny access to one user of the HR group, but allow access to all others? We cannot control this through Turbine ACL's. So we need seperate ACL's which should be in a position to control our individual portlet within portal/screen. With Regards, Anbunidhi Mahalingam. -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED]
Re: ACL's
Is there anyway around to do that with Turbine ACL's ??? - Original Message - From: "Brekke, Jeff" [EMAIL PROTECTED] To: "'JetSpeed'" [EMAIL PROTECTED] Sent: Thursday, October 19, 2000 1:21 PM Subject: RE: ACL's There is a proposal for this in the cvs tree. -Original Message----- From: Anbunidhi Mahalingam [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 19, 2000 4:46 AM To: [EMAIL PROTECTED] Subject: ACL's ACL's in Jetspeed : I just tried to control the portlet through Jetspeed (like show / hide particular portlet in the portal) based on the ACL stuff. But I got failed because of the following strategies. If I am wrong in doings, please correct me and help me to resolve this issue.(atleast controlling one portlet) using ACL. As Mr. Kevin Burton is pointing out that Jetspeed can access and use ACL's which is in Turbine to control Jetspeed portal. But, as of my knowledge, the ACL's which we are using in Turbine is not sufficient for controlling our portlet. Turbine ACL's just control entire screen/portal not our individual portlet. It is not possibe to control access to a portlet or part of it through Turbine. If we have ACL's in jetspeed we can control our each and every portlet with in the screen/portal. For example, if we want to use Jetspeed in an intranet stuff like, think about a portlet which can show the salary of each employee. In this case we must have the ability to restrict the usage to people of the HR department. On the other hand it is not necessary to enable this restriction mechanism on the user level. In general we would restrict the access to a group of users (for example the members of the HR department). These users will be members of a specific role. As a result we should enable access to portlet functionality depending on their roles. Username may still need to be used in the access/denial specfication. Otherwise, how do you deny access to one user of the HR group, but allow access to all others? We cannot control this through Turbine ACL's. So we need seperate ACL's which should be in a position to control our individual portlet within portal/screen. With Regards, Anbunidhi Mahalingam. -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED] --- This message has been scanned for viruses with Trend Micro's Interscan VirusWall. -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED] -- -- Please read the FAQ! http://java.apache.org/faq/ To subscribe:[EMAIL PROTECTED] To unsubscribe: [EMAIL PROTECTED] Archives and Other: http://java.apache.org/main/mail.html Problems?: [EMAIL PROTECTED]