You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@jackrabbit.apache.org by Mike Oliver <mo...@corenttech.com> on 2008/09/26 20:28:13 UTC
Don't want anonymous access
I know that it is probably in here someplace but can't find the right search
string to find it. So how do I turn OFF anonymous read access?
--
View this message in context: http://www.nabble.com/Don%27t-want-anonymous-access-tp19694005p19694005.html
Sent from the Jackrabbit - Users mailing list archive at Nabble.com.
Re: Don't want anonymous access
Posted by Jukka Zitting <ju...@gmail.com>.
Hi,
On Fri, Sep 26, 2008 at 10:31 PM, Mike Oliver <mo...@corenttech.com> wrote:
> What about just commenting out the lines that add the AnonymousPrincipal() to
> the principals array so only users with creds pass? Wouldn't that work?
>
> So copy the SimpleLoginModule into a new class RestrictedLoginModule,
> comment out the lines and configure RestrictedLoginModule instead of
> SimpleLoginModule?
Yes, that would work.
BR,
Jukka Zitting
Re: Don't want anonymous access
Posted by Mike Oliver <mo...@corenttech.com>.
What about just commenting out the lines that add the AnonymousPrincipal() to
the principals array so only users with creds pass? Wouldn't that work?
So copy the SimpleLoginModule into a new class RestrictedLoginModule,
comment out the lines and configure RestrictedLoginModule instead of
SimpleLoginModule?
Ollie
Mike Oliver wrote:
>
> What about granting the read access for anonymous to just the root node
> and revoking read access on everything else?
>
> Ollie
>
>
> Jukka Zitting wrote:
>>
>> Hi,
>>
>> On Fri, Sep 26, 2008 at 8:28 PM, Mike Oliver <mo...@corenttech.com>
>> wrote:
>>> I know that it is probably in here someplace but can't find the right
>>> search
>>> string to find it. So how do I turn OFF anonymous read access?
>>
>> Are you using Jackrabbit 1.4 or earlier? You need to replace either
>> the default SimpleLoginModule with JAAS authentication (if run
>> Jackrabbit in a servlet container you can check the JAAS documentation
>> of that container for instructions) or the SimpleAccessManager with a
>> custom AccessManager implementation.
>>
>> BR,
>>
>> Jukka Zitting
>>
>>
>
>
--
View this message in context: http://www.nabble.com/Don%27t-want-anonymous-access-tp19694005p19695855.html
Sent from the Jackrabbit - Users mailing list archive at Nabble.com.
Re: Don't want anonymous access
Posted by Mike Oliver <mo...@corenttech.com>.
What about granting the read access for anonymous to just the root node and
revoking read access on everything else?
Ollie
Jukka Zitting wrote:
>
> Hi,
>
> On Fri, Sep 26, 2008 at 8:28 PM, Mike Oliver <mo...@corenttech.com>
> wrote:
>> I know that it is probably in here someplace but can't find the right
>> search
>> string to find it. So how do I turn OFF anonymous read access?
>
> Are you using Jackrabbit 1.4 or earlier? You need to replace either
> the default SimpleLoginModule with JAAS authentication (if run
> Jackrabbit in a servlet container you can check the JAAS documentation
> of that container for instructions) or the SimpleAccessManager with a
> custom AccessManager implementation.
>
> BR,
>
> Jukka Zitting
>
>
--
View this message in context: http://www.nabble.com/Don%27t-want-anonymous-access-tp19694005p19694542.html
Sent from the Jackrabbit - Users mailing list archive at Nabble.com.
Re: Don't want anonymous access
Posted by Jukka Zitting <ju...@gmail.com>.
Hi,
On Fri, Sep 26, 2008 at 8:28 PM, Mike Oliver <mo...@corenttech.com> wrote:
> I know that it is probably in here someplace but can't find the right search
> string to find it. So how do I turn OFF anonymous read access?
Are you using Jackrabbit 1.4 or earlier? You need to replace either
the default SimpleLoginModule with JAAS authentication (if run
Jackrabbit in a servlet container you can check the JAAS documentation
of that container for instructions) or the SimpleAccessManager with a
custom AccessManager implementation.
BR,
Jukka Zitting