You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jetspeed-dev@portals.apache.org by ta...@apache.org on 2003/01/28 05:52:18 UTC
cvs commit: jakarta-jetspeed/src/ldap LDAP-JetspeedSecurity.properties jetspeed.schema ldap-notes.txt
taylor 2003/01/27 20:52:17
Modified: src/ldap LDAP-JetspeedSecurity.properties jetspeed.schema
ldap-notes.txt
Log:
patches from Sami Leino
See ldap-notes.txt for Change Log
Revision Changes Path
1.4 +23 -21 jakarta-jetspeed/src/ldap/LDAP-JetspeedSecurity.properties
Index: LDAP-JetspeedSecurity.properties
===================================================================
RCS file: /home/cvs/jakarta-jetspeed/src/ldap/LDAP-JetspeedSecurity.properties,v
retrieving revision 1.3
retrieving revision 1.4
diff -u -r1.3 -r1.4
--- LDAP-JetspeedSecurity.properties 11 Dec 2002 19:05:47 -0000 1.3
+++ LDAP-JetspeedSecurity.properties 28 Jan 2003 04:52:17 -0000 1.4
@@ -1,30 +1,32 @@
services.JetspeedSecurity.programmatic.cascade.delete=false
services.PortalAuthentication.classname=org.apache.jetspeed.services.security.ldap.LDAPAuthentication
services.PortalAccessController.classname=org.apache.jetspeed.services.security.registry.RegistryAccessController
-services.UserManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPUserManagement
-services.JetspeedSecurity.user.class=org.apache.jetspeed.om.security.ldap.LDAPUser
-services.RoleManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPRoleManagement
-services.JetspeedSecurity.role.class=org.apache.jetspeed.om.security.ldap.LDAPRole
-services.GroupManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPGroupManagement
-services.JetspeedSecurity.group.class=org.apache.jetspeed.om.security.ldap.LDAPGroup
-services.PermissionManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPPermissionManagement
+services.UserManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPUserManagement
+services.JetspeedSecurity.user.class=org.apache.jetspeed.om.security.ldap.LDAPUser
+services.RoleManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPRoleManagement
+services.JetspeedSecurity.role.class=org.apache.jetspeed.om.security.ldap.LDAPRole
+services.GroupManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPGroupManagement
+services.JetspeedSecurity.group.class=org.apache.jetspeed.om.security.ldap.LDAPGroup
+services.PermissionManagement.classname=org.apache.jetspeed.services.security.ldap.LDAPPermissionManagement
services.JetspeedSecurity.permission.class=org.apache.jetspeed.om.security.ldap.LDAPPermission
-services.ldap.classname=org.apache.jetspeed.services.ldap.LDAPService
-services.ldap.host=127.0.0.0
+services.ldap.classname=org.apache.jetspeed.services.ldap.LDAPService
+
+services.ldap.host=localhost
services.ldap.port=389
-services.ldap.sslport=636
+services.ldap.sslport=636
services.ldap.basedn=ou/jetspeed%o/apache
services.ldap.managerdn=cn/ldapadmin%ou/jetspeed%o/apache
services.ldap.password=secret
-services.ldap.anonymousbind=false
-services.ldap.securityauthentication=simple
-#services.ldap.securityprotocol=ssl
-#services.ldap.socketfactory=javax.net.ssl.SSLSocketFactory
-#services.ldap.jndiprovider=com.sun.jndi.ldap.LdapCtxFactory
-#services.ldap.saslclientpckgs=
-services.ldap.limit=0
-services.ldap.timeout=0
-services.ldap.version=3
-LocalWords: SHA
-
+services.ldap.anonymousbind=false
+services.ldap.securityauthentication=simple
+services.ldap.contextcache=false
+# services.ldap.securityprotocol=ssl
+# services.ldap.socketfactory=javax.net.ssl.SSLSocketFactory
+# services.ldap.jndiprovider=com.sun.jndi.ldap.LdapCtxFactory
+# services.ldap.saslclientpckgs=
+services.ldap.limit=0
+services.ldap.timeout=0
+services.ldap.version=3
+LocalWords:SHA
+
1.3 +8 -8 jakarta-jetspeed/src/ldap/jetspeed.schema
Index: jetspeed.schema
===================================================================
RCS file: /home/cvs/jakarta-jetspeed/src/ldap/jetspeed.schema,v
retrieving revision 1.2
retrieving revision 1.3
diff -u -r1.2 -r1.3
--- jetspeed.schema 9 Dec 2002 20:24:09 -0000 1.2
+++ jetspeed.schema 28 Jan 2003 04:52:17 -0000 1.3
@@ -1,30 +1,30 @@
attributetype ( 1.3.6.1.4.1.7915.1.2.3.1 NAME 'groupname'
DESC 'group name'
EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.2 NAME 'rolename'
DESC 'role name'
EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.3 NAME 'permissionname'
DESC 'role name'
EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.4 NAME 'rolepermissions'
DESC 'role rigth'
EQUALITY caseExactIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44)
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
attributetype ( 1.3.6.1.4.1.7915.1.2.3.5 NAME 'members'
DESC 'member list'
EQUALITY caseExactIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44)
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
attributetype ( 1.3.6.1.4.1.7915.1.2.3.6 NAME 'confirm'
DESC 'Confirm value'
EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.44
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.7 NAME 'psml'
DESC 'PSML'
@@ -32,8 +32,8 @@
SINGLE-VALUE )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.8 NAME 'usergrouprole'
DESC 'User Group Role'
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
- SINGLE-VALUE )
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
attributetype ( 1.3.6.1.4.1.7915.1.2.3.9 NAME 'lastlogindate'
DESC 'Last Login Date'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
1.2 +28 -5 jakarta-jetspeed/src/ldap/ldap-notes.txt
Index: ldap-notes.txt
===================================================================
RCS file: /home/cvs/jakarta-jetspeed/src/ldap/ldap-notes.txt,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- ldap-notes.txt 9 Dec 2002 20:24:09 -0000 1.1
+++ ldap-notes.txt 28 Jan 2003 04:52:17 -0000 1.2
@@ -35,11 +35,34 @@
favourite LDAP tool. Jetspeed's LDIF file contains the same user,
group, roles and permission definitions than the database version.
-On the portal side you can enable LDAP user management by renaming the
-provided "JetspeedSecurity.ldap" file to "JetspeedSecurity.properties",
-and set the "services.ldap.host" property to point to your LDAP
-server. Then you should have everything up and running.
+On the portal side you can enable LDAP user management by merging
+the properties found from "LDAP-JetspeedSecurity.properties" file
+to the "JetspeedSecurity.properties" file. Change the
+"services.ldap.host" property to point to your LDAP server.
+Then you should have everything up and running.
If you don't get Jetspeed to work with LDAP but you are sure that
your LDAP tree is properly built, you can contact Sami Leino
-(sami.leino@netorek.fi) and he will try to help you.
\ No newline at end of file
+(sami.leino@netorek.fi) and he will try to help you.
+
+Change log:
+-----------
+
+2003/01/20: Passes all unit-tests now.
+2003/01/20: Performance improvements. Now fetches all users from LDAP with
+ one JNDI lookup when retrieving all users with getUsers() method.
+ Earlier version constructed every user with separate lookup.
+2003/01/20: DirContexts are now properly closed. Should no longer leave
+ LDAP connections open.
+2003/01/20: Error handling fixed. Now propagates Exceptions from LDAP
+ operations to the application level.
+2003/01/20: Date format changed to "yyyyMMddmmHHss'Z'". Dates are now
+ stored using GMT timezone.
+2003/01/20: SYNTAX 1.3.6.1.4.1.1466.115.121.1.44 in "jetspeed.schema" changed
+ to 1.3.6.1.4.1.1466.115.121.1.26 when using caseIgnoreIA5Match.
+2003/01/20: LDAP-safe uid generation mechanism introduced in
+ "BaseLDAPObject.java".
+2003/01/20: Overall code cleanup performed (still a lot to do though).
+ Extraneous imports removed.
+
+
\ No newline at end of file
--
To unsubscribe, e-mail: <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>