You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@isis.apache.org by da...@apache.org on 2019/12/11 16:49:11 UTC
[isis-app-simpleapp] 03/03: removes ldap configuration from
shiro.ini, just configure to use iniRealm
This is an automated email from the ASF dual-hosted git repository.
danhaywood pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/isis-app-simpleapp.git
commit 8effe2791a6e47ea81dea7ccab5655246b4aa7f4
Author: danhaywood <da...@haywood-associates.co.uk>
AuthorDate: Mon Dec 9 08:30:28 2019 +0000
removes ldap configuration from shiro.ini, just configure to use iniRealm
---
webapp/src/main/resources/shiro.ini | 36 +-----------------------------------
1 file changed, 1 insertion(+), 35 deletions(-)
diff --git a/webapp/src/main/resources/shiro.ini b/webapp/src/main/resources/shiro.ini
index 7588caa..6820eb9 100644
--- a/webapp/src/main/resources/shiro.ini
+++ b/webapp/src/main/resources/shiro.ini
@@ -1,39 +1,5 @@
-
[main]
-contextFactory = org.apache.isis.security.shiro.realm.ldap.IsisLdapContextFactory
-contextFactory.url = ldap://localhost:10389
-contextFactory.authenticationMechanism = CRAM-MD5
-contextFactory.systemAuthenticationMechanism = simple
-contextFactory.systemUsername = uid=admin,ou=system
-contextFactory.systemPassword = secret
-
-ldapRealm = org.apache.isis.security.shiro.realm.ldap.IsisLdapRealm
-ldapRealm.contextFactory = $contextFactory
-
-ldapRealm.searchBase = ou=groups,o=mojo
-ldapRealm.groupObjectClass = groupOfUniqueNames
-ldapRealm.uniqueMemberAttribute = uniqueMember
-ldapRealm.uniqueMemberAttributeValueTemplate = uid={0}
-
-# optional mapping from physical groups to logical application roles
-#ldapRealm.rolesByGroup = \
-# LDN_USERS: user_role,\
-# NYK_USERS: user_role,\
-# HKG_USERS: user_role,\
-# GLOBAL_ADMIN: admin_role,\
-# DEMOS: self-install_role
-
-ldapRealm.permissionsByRole=\
- user_role = *:SimpleObjectMenu:*:*,\
- *:SimpleObject:*:*; \
- self-install_role = *:FixtureScriptsDefault:*:* ; \
- admin_role = *
-
-# to use ldap...
-# (see docs for details of how to setup users/groups in Apache Directory Studio).
-#securityManager.realms = $ldapRealm
-
# to use .ini file
securityManager.realms = $iniRealm
@@ -71,5 +37,5 @@ guest = guest, user_role
user_role = *:SimpleObjectMenu:*:*,\
*:SimpleObject:*:*
-self-install_role = *:FixtureScriptsDefault:*:*
+self-install_role = *:FixtureScripts:*:*
admin_role = *