Hi,
I try to use LDAP authentication with Karaf 2.1.6 but the it fails
with roles based verification.
10:49:50,518 | DEBUG | NioProcessor-1 | LDAPLoginModule
| 23 - org.apache.karaf.jaas.modules - 2.1.6.fuse-00-05 | Create
the LDAP initial context.
10:49:50,519 | DEBUG | NioProcessor-1 |
Hi,
It could be that the connection.url is not correct (we had this in our
project). We had to add the /dc= .
See https://cwiki.apache.org/DIRxSRVx11/enablesearchforallusers.html
Regards
Andi
-Original Message-
From: Charles Moulliard [mailto:cmoulli...@gmail.com]
Sent:
connection.url is correct as the user has been authenticated. There is
an issue with roles checking
On Thu, Oct 6, 2011 at 11:21 AM, Kuhtz, Andreas andreas.ku...@atos.net wrote:
Hi,
It could be that the connection.url is not correct (we had this in our
project). We had to add the /dc= .
Hi,
Is it possible to add a new Jetty Server (different from the one
provided by default when installing features http or webconsole on
Karaf) and register it as HTTP OSGI Service to allow by example CXF WS
to be registered within the Servlet Container of this HTTP Server ? Is
it something that
Hi Charles,
the role.filter doesn't look correct to me. The member is an ou ?
In that case the filter should be ((ou=member)(uid=%s)).
Regards
JB
On 10/06/2011 11:32 AM, Charles Moulliard wrote:
connection.url is correct as the user has been authenticated. There is
an issue with roles
My idea is to have 2 separate Jetty Servers or one server with by
example 2 connectors (8181, 8282) to be able to separate
administration (webconsole, karaf console, ) from camel-cxf,
camel-jetty that we use in applications and define different level of
security, logging,
On Thu, Oct 6,
OK, got it.
Yes it's possible for the Jetty, but I'm not sure for the OSGi HTTP service.
Let me check.
Regards
JB
On 10/06/2011 11:56 AM, Charles Moulliard wrote:
My idea is to have 2 separate Jetty Servers or one server with by
example 2 connectors (8181, 8282) to be able to separate
OK, got it :)
role.filter should contain (member=uid=%u) and not (member:=uid=%u).
Let me check how I construct the role search filter.
Regards
JB
On 10/06/2011 12:01 PM, Charles Moulliard wrote:
member is not a OU
DN: cn=admin, ou=roles,ou=system
where member=uid=jdoe is a attribute of
I think pax-web uses factory configurations, so multiple configurations
would lead to multiple http servers.
On Thu, Oct 6, 2011 at 12:02, Jean-Baptiste Onofré j...@nanthrax.net wrote:
OK, got it.
Yes it's possible for the Jetty, but I'm not sure for the OSGi HTTP
service.
Let me check.
It's easier with Pax Web Jetty, which provide a blueprint wrapper AFAIR.
On 10/06/2011 12:04 PM, Charles Moulliard wrote:
For jetty this is possible. We can create a Spring Bean file or a
bundle instantiating a jetty server.
Maybe Pax Web could do the trick
On Thu, Oct 6, 2011 at 12:02
That does not change if I use member=uid=%u or member:=uid=%u
On Thu, Oct 6, 2011 at 12:04 PM, Jean-Baptiste Onofré j...@nanthrax.net wrote:
OK, got it :)
role.filter should contain (member=uid=%u) and not (member:=uid=%u).
Let me check how I construct the role search filter.
Regards
JB
What do you mean by multiple configurations ? Is it a config file ?
If yes which one ?
On Thu, Oct 6, 2011 at 12:05 PM, Guillaume Nodet gno...@gmail.com wrote:
I think pax-web uses factory configurations, so multiple configurations
would lead to multiple http servers.
On Thu, Oct 6, 2011 at
Let me check in my configuration.
Regards
JB
On 10/06/2011 12:06 PM, Charles Moulliard wrote:
That does not change if I use member=uid=%u or member:=uid=%u
On Thu, Oct 6, 2011 at 12:04 PM, Jean-Baptiste Onofréj...@nanthrax.net wrote:
OK, got it :)
role.filter should contain
13 matches
Mail list logo