You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@isis.apache.org by da...@apache.org on 2019/12/11 16:49:11 UTC

[isis-app-simpleapp] 03/03: removes ldap configuration from shiro.ini, just configure to use iniRealm

This is an automated email from the ASF dual-hosted git repository.

danhaywood pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/isis-app-simpleapp.git

commit 8effe2791a6e47ea81dea7ccab5655246b4aa7f4
Author: danhaywood <da...@haywood-associates.co.uk>
AuthorDate: Mon Dec 9 08:30:28 2019 +0000

    removes ldap configuration from shiro.ini, just configure to use iniRealm
---
 webapp/src/main/resources/shiro.ini | 36 +-----------------------------------
 1 file changed, 1 insertion(+), 35 deletions(-)

diff --git a/webapp/src/main/resources/shiro.ini b/webapp/src/main/resources/shiro.ini
index 7588caa..6820eb9 100644
--- a/webapp/src/main/resources/shiro.ini
+++ b/webapp/src/main/resources/shiro.ini
@@ -1,39 +1,5 @@
-
 [main]
 
-contextFactory = org.apache.isis.security.shiro.realm.ldap.IsisLdapContextFactory
-contextFactory.url = ldap://localhost:10389
-contextFactory.authenticationMechanism = CRAM-MD5
-contextFactory.systemAuthenticationMechanism = simple
-contextFactory.systemUsername = uid=admin,ou=system
-contextFactory.systemPassword = secret
-
-ldapRealm = org.apache.isis.security.shiro.realm.ldap.IsisLdapRealm
-ldapRealm.contextFactory = $contextFactory
-
-ldapRealm.searchBase = ou=groups,o=mojo
-ldapRealm.groupObjectClass = groupOfUniqueNames
-ldapRealm.uniqueMemberAttribute = uniqueMember
-ldapRealm.uniqueMemberAttributeValueTemplate = uid={0}
-
-# optional mapping from physical groups to logical application roles
-#ldapRealm.rolesByGroup = \
-#    LDN_USERS: user_role,\
-#    NYK_USERS: user_role,\
-#    HKG_USERS: user_role,\
-#    GLOBAL_ADMIN: admin_role,\
-#    DEMOS: self-install_role
-
-ldapRealm.permissionsByRole=\
-   user_role = *:SimpleObjectMenu:*:*,\
-               *:SimpleObject:*:*; \
-   self-install_role = *:FixtureScriptsDefault:*:* ; \
-   admin_role = *
-
-# to use ldap...
-# (see docs for details of how to setup users/groups in Apache Directory Studio).
-#securityManager.realms = $ldapRealm
-
 # to use .ini file
 securityManager.realms = $iniRealm
 
@@ -71,5 +37,5 @@ guest = guest, user_role
 
 user_role =   *:SimpleObjectMenu:*:*,\
               *:SimpleObject:*:*
-self-install_role = *:FixtureScriptsDefault:*:*
+self-install_role = *:FixtureScripts:*:*
 admin_role = *