epugh 2003/08/24 18:07:11
Modified: security/xdocs navigation.xml changes.xml tasks.xml
index.xml
security project.xml
Added: security/xdocs authenticators.xml
Log:
Update docs for authenticatores. We are up to 163 tests!
Revision Changes Path
1.3 +2 -1 jakarta-turbine-fulcrum/security/xdocs/navigation.xml
Index: navigation.xml
===================================================================
RCS file: /home/cvs/jakarta-turbine-fulcrum/security/xdocs/navigation.xml,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- navigation.xml 23 Aug 2003 15:31:41 -0000 1.2
+++ navigation.xml 25 Aug 2003 01:07:11 -0000 1.3
@@ -13,7 +13,8 @@
<menu name="Overview">
<item name="Main" href="/index.html"/>
- <item name="Tasks" href="/tasks.html"/>
+ <item name="Authenticators" href="/authenticators.html"/>
+ <item name="Tasks" href="/tasks.html"/>
</menu>
</body>
</project>
1.2 +6 -0 jakarta-turbine-fulcrum/security/xdocs/changes.xml
Index: changes.xml
===================================================================
RCS file: /home/cvs/jakarta-turbine-fulcrum/security/xdocs/changes.xml,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- changes.xml 24 Aug 2003 19:53:59 -0000 1.1
+++ changes.xml 25 Aug 2003 01:07:11 -0000 1.2
@@ -7,6 +7,12 @@
<body>
<release version="1.0-alpha-1" date="in cvs">
+ <action dev="epugh" type="add">
+ Pluggable Authenticators done. Added NT, crypto, and plain text.
+ </action>
+ <action dev="epugh" type="add">
+ Hibernate based Simple model done.
+ </action>
<action dev="epugh" type="update">
Converted all id's for security objects to "long" values to prevent running
out of numbers.
</action>
1.3 +3 -0 jakarta-turbine-fulcrum/security/xdocs/tasks.xml
Index: tasks.xml
===================================================================
RCS file: /home/cvs/jakarta-turbine-fulcrum/security/xdocs/tasks.xml,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- tasks.xml 24 Aug 2003 19:53:59 -0000 1.2
+++ tasks.xml 25 Aug 2003 01:07:11 -0000 1.3
@@ -22,6 +22,9 @@
Need to provide an Memory implementation of the Turbine model for
unit testing.
</li>
<li>
+ Need to use the encryption component!
+ </li>
+ <li>
Finish fleshing out the Adapters for Turbine. Right now they are a
pretty minimal implementation
to validate that the Adapter concept would work. Currently they only
support moving objects from
fulcrum to turbine. Sending objects from Turbine back to Fulcrum is
not supported. Just needs some
1.3 +15 -0 jakarta-turbine-fulcrum/security/xdocs/index.xml
Index: index.xml
===================================================================
RCS file: /home/cvs/jakarta-turbine-fulcrum/security/xdocs/index.xml,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- index.xml 23 Aug 2003 15:31:42 -0000 1.2
+++ index.xml 25 Aug 2003 01:07:11 -0000 1.3
@@ -20,6 +20,21 @@
<li>Not make assumptions about how a security framework should be
setup.</li>
</ul>
</p>
+ <subsection name="Matrix">
+ <table>
+ <tr>
+ <th/><th colspan="4">Simple</th><th colspan="4">Turbine</th>
+ </tr>
+ <tr>
+
<th/><th>User</th><th>Group</th><th>Role</th><th>Permission</th><th>User</th><th>Group</th><th>Role</th><th>Permission</th>
+ </tr>
+
<tr><th>Memory</th><td>X</td><td>X</td><td>X</td><td>X</td><td></td><td></td><td></td><td></td></tr>
+
<tr><th>Hibernate</th><td>X</td><td>X</td><td>X</td><td>X</td><td></td><td></td><td></td><td></td></tr>
+
<tr><th>Torque</th><td></td><td></td><td></td><td></td><td>X</td><td>X</td><td>X</td><td>X</td></tr>
+
<tr><th>Passive</th><td></td><td></td><td></td><td></td><td>X</td><td></td><td></td><td></td></tr>
+
<tr><th>NT</th><td>X</td><td></td><td></td><td></td><td></td><td></td><td></td><td></td></tr>
+ </table>
+ </subsection>
</section>
<section name="Common Security Implementations">
1.1 jakarta-turbine-fulcrum/security/xdocs/authenticators.xml
Index: authenticators.xml
===================================================================
<?xml version="1.0"?>
<document>
<properties>
<title>Authenticator Component</title>
<author email="[EMAIL PROTECTED]">Eric PUgh</author>
</properties>
<body>
<section name="Overview">
<p>
The security system has the concept of pluggable authenticators. For instance,
you may keep your user information in the database, but you want to
authenticate
against NT. Or you keep your passwords in the database, but you have different
encryptions schemes. Via the component config file you can specify what
authenticator
to use.
</p>
<subsection name="NoOpAuthenticator">
<p>
Always returns true, regardless of what is passed in.
</p>
</subsection>
<subsection name="TextMatchAuthenticator">
<p>
Does a plain text match of the passwords. Case does matter.
</p>
</subsection>
<subsection name="NTAuthenticator">
<p>
Attempts to authenticate the user against an NT domain. The
username must look like CVILLE\epugh. You will need to configure your
system to use the tagish library.
</p>
<p>
http://www.mooreds.com/jaas.html
<br/>
http://free.tagish.net/jaas/doc.html
<br/>
http://www.raibledesigns.com/page/rd/20030217
<br/>
This application uses a small DLL to provide security. Put the NTSecurity.dll
in your JAVA_HOME/jre/bin directory.
This provides the JNI interface to NT used by JAAS.
<br/>
Then put the tagish.login fil in the ${java.home}/jre/lib/security/ directory.
This tells the Tagish
code what classes to load for security.
<br/>
Lastly, you must edit the ${java.home}/jre/lib/security/java.security file and
add this line:
<source>
login.config.url.1=file:${java.home}/lib/security/tagish.login
</source>
This tells the java security policy how to find the tagish information.
</p>
<p>
<!--The last thing is to put the file jaas.jar in your tomcat server/lib/
directory so the JAAS realm can function.-->
</p>
</subsection>
<subsection name="CryptoAuthenticator">
<p>
Uses the fulcrum crypto service to check the password
against the encrypted one. You can specify the algorithm and cipher to use.
</p>
<p>
Using the combined format looks like this:
</p>
<source>
<![CDATA[
<component
role="org.apache.fulcrum.security.authenticator.Authenticator"
class="org.apache.fulcrum.security.authenticator.CryptoAuthenticator">
<algorithm>java</algorithm>
<cipher>SHA1</cipher>
</component>
<component
role="org.apache.fulcrum.crypto.CryptoService"
class="org.apache.fulcrum.crypto.DefaultCryptoService">
<algorithm>
<unix>org.apache.fulcrum.crypto.provider.UnixCrypt</unix>
<clear>org.apache.fulcrum.crypto.provider.ClearCrypt</clear>
<java>org.apache.fulcrum.crypto.provider.JavaCrypt</java>
<oldjava>org.apache.fulcrum.crypto.provider.OldJavaCrypt</oldjava>
</algorithm>
</component>
]]>
</source>
</subsection>
</section>
</body>
</document>
1.4 +7 -0 jakarta-turbine-fulcrum/security/project.xml
Index: project.xml
===================================================================
RCS file: /home/cvs/jakarta-turbine-fulcrum/security/project.xml,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- project.xml 24 Aug 2003 19:54:22 -0000 1.3
+++ project.xml 25 Aug 2003 01:07:11 -0000 1.4
@@ -28,6 +28,13 @@
<id>fulcrum-factory</id>
<version>1.0-alpha-1</version>
</dependency>
+
+<!-- Needed for the NT SPI -->
+ <dependency>
+ <id>tagishauth</id>
+ <version>1.0.2</version>
+ <url>http://free.tagish.net/jaas/index.jsp</url>
+ </dependency>
<!-- Needed for the Torque SPI -->
<dependency>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
