You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@cxf.apache.org by bu...@apache.org on 2013/09/10 13:48:11 UTC
svn commit: r877896 - in /websites/production/cxf/content:
cache/main.pageCache fediz-websphere.html
Author: buildbot
Date: Tue Sep 10 11:48:10 2013
New Revision: 877896
Log:
Production update by buildbot for cxf
Modified:
websites/production/cxf/content/cache/main.pageCache
websites/production/cxf/content/fediz-websphere.html
Modified: websites/production/cxf/content/cache/main.pageCache
==============================================================================
Binary files - no diff available.
Modified: websites/production/cxf/content/fediz-websphere.html
==============================================================================
--- websites/production/cxf/content/fediz-websphere.html (original)
+++ websites/production/cxf/content/fediz-websphere.html Tue Sep 10 11:48:10 2013
@@ -28,6 +28,16 @@
<meta name="description" content="Apache CXF, Services Framework - Fediz Websphere">
+<link type="text/css" rel="stylesheet" href="/resources/highlighter/styles/shCoreCXF.css">
+<link type="text/css" rel="stylesheet" href="/resources/highlighter/styles/shThemeCXF.css">
+
+<script src='/resources/highlighter/scripts/shCore.js'></script>
+<script src='/resources/highlighter/scripts/shBrushJava.js'></script>
+<script src='/resources/highlighter/scripts/shBrushXml.js'></script>
+<script>
+ SyntaxHighlighter.defaults['toolbar'] = false;
+ SyntaxHighlighter.all();
+</script>
<title>
@@ -193,8 +203,8 @@ At deployment time, the declared J2EE se
<ol><li>Open the Administative Console with Administrator privileges and navigate to Security / Global security</li><li>Ensure Application security is enabled<br clear="none">
<span class="image-wrap" style=""><img src="fediz-websphere.data/GlobalSec.png" width="800" style="border: 1px solid black"></span></li><li>Navigate to <em>Security / Global security / Web and SIP security</em> and select <b>Trust association</b><br clear="none">
<span class="image-wrap" style=""><img src="fediz-websphere.data/trust-association.png" width="800" style="border: 1px solid black"></span></li><li>Check the <b>Enable trust association</b> check box</li><li>Select Interceptors<br clear="none">
- <span class="image-wrap" style=""><img src="fediz-websphere.data/enable+trust+assoc.png" width="800" style="border: 1px solid black"></span></li><li>Click on New and specify the Interceptor class name as <tt>org.apache.cxf.fediz.was.tai.FedizInterceptor</tt><br clear="none">
- <span class="image-wrap" style=""><img src="fediz-websphere.data/create+interceptor.png" width="800" style="border: 1px solid black"></span></li></ol>
+ <span class="image-wrap" style=""><img src="fediz-websphere.data/enable-trust-assoc.png" width="800" style="border: 1px solid black"></span></li><li>Click on New and specify the Interceptor class name as <tt>org.apache.cxf.fediz.was.tai.FedizInterceptor</tt><br clear="none">
+ <span class="image-wrap" style=""><img src="fediz-websphere.data/create-interceptor.png" width="800" style="border: 1px solid black"></span></li></ol>
<div class="table-wrap">
@@ -203,7 +213,38 @@ At deployment time, the declared J2EE se
</div>
+<p>The file defined in <tt>groups.mapping.file</tt> must have the following structure:</p>
+
+<div class="code panel" style="border-style: solid;border-width: 1px;"><div class="codeHeader panelHeader" style="border-bottom-width: 1px;border-bottom-style: solid;"><b>roleGroupMapping.xml</b></div><div class="codeContent panelContent">
+<script class="theme: Default; brush: xml; gutter: false" type="syntaxhighlighter"><![CDATA[
+<?xml version="1.0" encoding="UTF-8"?>
+<mapping>
+ <samlToJ2EE>
+ <claim>User</claim>
+ <groups>
+ <j2eeGroup>Authenticated</j2eeGroup>
+ <j2eeGroup>Users</j2eeGroup>
+ </groups>
+ </samlToJ2EE>
+ <samlToJ2EE>
+ <claim>Manager</claim>
+ <groups>
+ <j2eeGroup>Manager</j2eeGroup>
+ <j2eeGroup>Authenticated</j2eeGroup>
+ </groups>
+ </samlToJ2EE>
+ <samlToJ2EE>
+ <claim>Admin</claim>
+ <groups>
+ <j2eeGroup>Admin</j2eeGroup>
+ <j2eeGroup>Authenticated</j2eeGroup>
+ </groups>
+ </samlToJ2EE>
+</mapping>
+]]></script>
+</div></div>
+<p>A role value defined in element <tt>claim</tt> is mapped to a list of the Websphere JEE groups defined in <tt>j2eeGroup</tt>. Finally, these Websphere groups must be mapped to JEE roles. This indirection is required within Websphere.</p>
<h5><a shape="rect" name="FedizWebsphere-Fedizconfiguration"></a>Fediz configuration</h5>