Hey Richard, Thanks a lot for the explanation. Appreciate it. Got it working as per your suggestion; attaching a snippet of current implementation doc here with. [img]http://i49.tinypic.com/2znn8za.jpg[/img]
Regards, Swanand [quote]Hi Swanand, Sounds like you've achieved a lot already! AFAIK Magnolia will not integrate with spring-security out of the box. However, it should not be difficult to integrate. It depends a bit on what you are trying to achieve: 1) Do you have an existing user-database (external to magnolia) which is already integrated with your spring-security setup? In this case you just need to write a magnolia LoginHandler and a JAAS AuthenticationModule. 2) Or are you trying to get Spring-Security to use the Magnolia User-Database for verifying the users? In this case you need to write a Spring-Security UserDetailsService and/or AuthenticationManager that talks to Magnolia's User-Database to get the user information. Assuming case 1) above, and that your spring security configuration is working and users are logged in with their SecurityContext set up, you could proceed as follows: - Write a "LoginHandler" class which reads username from the security-context and passes it in a CallbackHandler to the JAAS authentication - Write a JAAS AuthenticationModule extending magnolia's standard authentication module which accepts the username from the CallbackHandler without further password checks - You then need to think about which roles/groups you assign to the user. Let me know if you have further questions on this. Regards from Vienna, Richard -----Ursprüngliche Nachricht----- Von: [email protected] [mailto:[email protected]] Im Auftrag von Swanand Shetwal (via Magnolia Forums) Gesendet: Dienstag, 18. Dezember 2012 11:44 An: Magnolia User List Betreff: [magnolia-user] Grails_Spring Security + Magnolia Integration Hi, I am new to Magnolia community as after evaluating many CMSs, settled for Magnolia. I have my web app running with Grails 2.0+ and Spring Security Plugin embedded in that. I have successfully integrated Magnolia 4.5.2 with Spring Blossom and able to fetch the data to and fro. Now the issue that I have is whether Magnolia will support my existing Spring Security? or is there any configuration that I need to do? Any suggestions would help. Thanks.[/quote][quote]Hi Swanand, Sounds like you've achieved a lot already! AFAIK Magnolia will not integrate with spring-security out of the box. However, it should not be difficult to integrate. It depends a bit on what you are trying to achieve: 1) Do you have an existing user-database (external to magnolia) which is already integrated with your spring-security setup? In this case you just need to write a magnolia LoginHandler and a JAAS AuthenticationModule. 2) Or are you trying to get Spring-Security to use the Magnolia User-Database for verifying the users? In this case you need to write a Spring-Security UserDetailsService and/or AuthenticationManager that talks to Magnolia's User-Database to get the user information. Assuming case 1) above, and that your spring security configuration is working and users are logged in with their SecurityContext set up, you could proceed as follows: - Write a "LoginHandler" class which reads username from the security-context and passes it in a CallbackHandler to the JAAS authentication - Write a JAAS AuthenticationModule extending magnolia's standard authentication module which accepts the username from the CallbackHandler without further password checks - You then need to think about which roles/groups you assign to the user. Let me know if you have further questions on this. Regards from Vienna, Richard -----Ursprüngliche Nachricht----- Von: [email protected] [mailto:[email protected]] Im Auftrag von Swanand Shetwal (via Magnolia Forums) Gesendet: Dienstag, 18. Dezember 2012 11:44 An: Magnolia User List Betreff: [magnolia-user] Grails_Spring Security + Magnolia Integration Hi, I am new to Magnolia community as after evaluating many CMSs, settled for Magnolia. I have my web app running with Grails 2.0+ and Spring Security Plugin embedded in that. I have successfully integrated Magnolia 4.5.2 with Spring Blossom and able to fetch the data to and fro. Now the issue that I have is whether Magnolia will support my existing Spring Security? or is there any configuration that I need to do? Any suggestions would help. Thanks.[/quote] -- Context is everything: http://forum.magnolia-cms.com/forum/thread.html?threadId=e560f1c4-4298-4ac4-8b85-9075951aa4b0 ---------------------------------------------------------------- For list details, see http://www.magnolia-cms.com/community/mailing-lists.html Alternatively, use our forums: http://forum.magnolia-cms.com/ To unsubscribe, E-mail to: <[email protected]> ----------------------------------------------------------------
