You are viewing a plain text version of this content. The canonical link for it is here.
Posted to slide-dev@jakarta.apache.org by ec...@apache.org on 2005/03/02 09:28:37 UTC
cvs commit: jakarta-slide/proposals/tamino/etc/urm ActiveDirectory.xml.template OS.xml.template OpenLDAP.xml.template SunOne.xml.template urm_config.xml
eckehard 2005/03/02 00:28:37
Modified: proposals/tamino/etc/urm Tag: TWS421_BRANCH
ActiveDirectory.xml.template OS.xml.template
OpenLDAP.xml.template SunOne.xml.template
urm_config.xml
Log:
fixed logon problem. Added SSPI switch
Revision Changes Path
No revision
No revision
1.1.4.1 +7 -8 jakarta-slide/proposals/tamino/etc/urm/ActiveDirectory.xml.template
Index: ActiveDirectory.xml.template
===================================================================
RCS file: /home/cvs/jakarta-slide/proposals/tamino/etc/urm/ActiveDirectory.xml.template,v
retrieving revision 1.1
retrieving revision 1.1.4.1
diff -u -r1.1 -r1.1.4.1
--- ActiveDirectory.xml.template 25 Mar 2004 16:17:58 -0000 1.1
+++ ActiveDirectory.xml.template 2 Mar 2005 08:28:37 -0000 1.1.4.1
@@ -5,7 +5,7 @@
<Attribute name="authType" value="ldap" description="Ldap authentication is choosen."/>
<Attribute name="cacheSize" value="100" description="The size of the authenticated user cache."/>
<Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication."/>
- <Attribute name="denyCount" value="3" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
+ <Attribute name="denyCount" value="0" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
<Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached."/>
<Attribute name="${serverHost}" value="localhost" description="The host of the LDAP database server."/>
<Attribute name="${serverPort}" value="636" description="The port on the LDAP database server."/>
@@ -84,10 +84,10 @@
<Property key="business.ipPhone" name="ipPhone" writeable="true" description="The business internet phone number of the user."/>
<!--Property key="business.webPage" name="???" writeable="true" description="The business web page of the user."/-->
<Property key="business.assistant" name="assistant" format="{user}" writeable="true" description="The assistant or substitute of the user."/>
- <Property key="business.notes" name="comment" writeable="true" description="Additional business notes of/for the user."/-->
+ <!--Property key="business.notes" name="comment" writeable="true" description="Additional business notes of/for the user."/-->
<!-- preferences -->
- <Property key="preferences.locale" name="l" writeable="true" description="The wished locale of the user."/-->
+ <!--Property key="preferences.locale" name="l" writeable="true" description="The wished locale of the user."/-->
<!-- home properties -->
<Property key="home.streetAddress" name="homePostalAddress" writeable="true" description="The home street/address."/>
@@ -126,9 +126,9 @@
<!--Property key="seeAlso" name="seeAlso" format="{group}" writeable="true" description="Where to find more info."/-->
<!-- business properties -->
- <!--Property key="business.company" name="???" writeable="true" description="The company name."/>
- <!--Property key="business.department" name="???" writeable="true" description="The department of the group."/>
- <!--Property key="business.category" name="???" writeable="true" description="The business category of the group."/>
+ <!--Property key="business.company" name="???" writeable="true" description="The company name."/-->
+ <!--Property key="business.department" name="???" writeable="true" description="The department of the group."/-->
+ <!--Property key="business.category" name="???" writeable="true" description="The business category of the group."/-->
</Group>
@@ -263,9 +263,8 @@
<Attribute name="roleCacheSwitch" value="active" description="switches on the role cache"/>
</Attributes>
</RoleManager>
- <AclAdministrator Class="org.apache.slide.accesscontroler.impl.tamino.URMAccessControlerSpiTamino" Info="Tamino implementation only for internal usage" ProviderURL="http://www.softwareag.com/">
+ <AclAdministrator Class="org.apache.slide.urm.accesscontroler.impl.tamino.URMAccessControlerSpiTamino" Info="Tamino implementation only for internal usage" ProviderURL="http://www.softwareag.com/">
<AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.firstmatch.URMFirstMatchSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-FirstMatch-Semantic" ProviderURL="http://www.softwareag.com/"/>
- <!--AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.conjunction.URMConjunctionSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-AND-Semantic" ProviderURL="http://www.softwareag.com/"/-->
<Attributes>
<Attribute name="actionCache" value="100" description="max. number of cached actions"/>
<Attribute name="aclCache" value="10000" description="max. number of cached acl evaluation results"/>
1.1.4.2 +7 -2 jakarta-slide/proposals/tamino/etc/urm/OS.xml.template
Index: OS.xml.template
===================================================================
RCS file: /home/cvs/jakarta-slide/proposals/tamino/etc/urm/OS.xml.template,v
retrieving revision 1.1.4.1
retrieving revision 1.1.4.2
diff -u -r1.1.4.1 -r1.1.4.2
--- OS.xml.template 14 May 2004 14:48:16 -0000 1.1.4.1
+++ OS.xml.template 2 Mar 2005 08:28:37 -0000 1.1.4.2
@@ -2,13 +2,16 @@
<SagUrmConfiguration>
<Authenticator Class="org.apache.slide.urm.authenticator.impl.ssx.URMAuthenticatorSSX" Info="SSX authenticator provider" ProviderURL="http://www.openldap.org/">
<Attributes>
+ <Attribute name="sensitive" value="true" description="indicates if user and domain should be handeled case sensitive: true if case sensitive, false else" />
<Attribute name="authType" value="os" description="Choosen authentication."/>
<Attribute name="cacheSize" value="100" description="The size of the authenticated user cache."/>
<Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication."/>
- <Attribute name="denyCount" value="3" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
+ <Attribute name="denyCount" value="0" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
<Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached."/>
- <Attribute name="nativeLogFile" value="logs/webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
+ <Attribute name="nativeLogFile" value="webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
<Attribute name="nativeLogLevel" value="0" description="The valid value range is between 1 and 6. If 0 or not defined than there will be no logging."/>
+ <Attribute name="winCheckLocalGroups" value="1" description="always include local groups" />
+ <Attribute name="useLogonUseron2000" value="1" description="always include local groups" />
<!--Attribute name="defaultGroup" value="group name" description="Each group will belong to this group."/-->
<!--Attribute name="${defaultDomain}" description="It will be used for OS authentication if the domain is not specified explicit in a method call."/-->
</Attributes>
@@ -30,6 +33,8 @@
<UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.ssx.URMUserDBManagerSpiSSX" Info="SSX administrator provider" ProviderURL="http://www.openldap.org/">
<Attributes>
+ <Attribute name="guestId" value="SemanticServer" description="URM Guest account" />
+ <Attribute name="guestPassword" value="SemanticServer" description="URM Guest password" />
<Attribute name="allCacheSize" value="100" description="The size of all the caches (all users, all groups, group members etc.)."/>
<Attribute name="allCacheTime" value="900" description="The time in seconds till antry will be valid in the cache (of all users, all groups, group members etc.)."/>
<!--Attribute name="defaultDomain" value="domain name" description="The specified doamin will be used for OS authentication if is not specified explicit."/-->
1.1.4.1 +4 -3 jakarta-slide/proposals/tamino/etc/urm/OpenLDAP.xml.template
Index: OpenLDAP.xml.template
===================================================================
RCS file: /home/cvs/jakarta-slide/proposals/tamino/etc/urm/OpenLDAP.xml.template,v
retrieving revision 1.1
retrieving revision 1.1.4.1
diff -u -r1.1 -r1.1.4.1
--- OpenLDAP.xml.template 25 Mar 2004 16:17:58 -0000 1.1
+++ OpenLDAP.xml.template 2 Mar 2005 08:28:37 -0000 1.1.4.1
@@ -5,7 +5,7 @@
<Attribute name="authType" value="ldap" description="Ldap authentication is choosen."/>
<Attribute name="cacheSize" value="100" description="The size of the authenticated user cache."/>
<Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication."/>
- <Attribute name="denyCount" value="3" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
+ <Attribute name="denyCount" value="0" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
<Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached."/>
<Attribute name="${serverHost}" value="localhost" description="The host of the LDAP database server."/>
<Attribute name="${serverPort}" value="389" description="The port on the LDAP database server."/>
@@ -14,7 +14,7 @@
<Attribute name="personObjClass" value="top,person,organizationalPerson,inetOrgPerson" description="The whole LDAP class hierarchy for person entries, from top to bottom, separated by comma."/>
<Attribute name="groupObjClass" value="top,groupOfUniqueNames" description="The whole LDAP class hierarchy for group entries, from top to bottom, separated by comma."/>
<Attribute name="connectionPerOperation" value="true" description="The LDAP connection (bind) is created for each operation and closed after that."/>
- <Attribute name="nativeLogFile" value="logs/webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
+ <Attribute name="nativeLogFile" value="webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
<Attribute name="nativeLogLevel" value="0" description="The valid value range is between 1 and 6. If 0 or not defined than there will be no logging."/>
<Attribute name="serverType" value="OpenLdap" description="It can be 'ActiveDirectory' or 'OpenLdap'."/>
<!--Attribute name="defaultGroup" value="group name" description="Each group will belong to this group."/-->
@@ -38,6 +38,8 @@
<UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.ssx.URMUserDBManagerSpiSSX" Info="SSX administrator provider" ProviderURL="http://www.openldap.org/">
<Attributes>
+ <Attribute name="guestId" value="SemanticServer" description="URM Guest account" />
+ <Attribute name="guestPassword" value="SemanticServer" description="URM Guest password" />
<Attribute name="allCacheSize" value="100" description="The size of all the caches (all users, all groups, group members etc.)."/>
<Attribute name="allCacheTime" value="900" description="The time in seconds till antry will be valid in the cache (of all users, all groups, group members etc.)."/>
</Attributes>
@@ -260,7 +262,6 @@
</RoleManager>
<AclAdministrator Class="org.apache.slide.urm.accesscontroler.impl.tamino.URMAccessControlerSpiTamino" Info="Tamino implementation only for internal usage" ProviderURL="http://www.softwareag.com/">
<AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.firstmatch.URMFirstMatchSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-FirstMatch-Semantic" ProviderURL="http://www.softwareag.com/"/>
- <!--AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.conjunction.URMConjunctionSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-AND-Semantic" ProviderURL="http://www.softwareag.com/"/-->
<Attributes>
<Attribute name="actionCache" value="100" description="max. number of cached actions"/>
<Attribute name="aclCache" value="10000" description="max. number of cached acl evaluation results"/>
1.1.4.1 +273 -271 jakarta-slide/proposals/tamino/etc/urm/SunOne.xml.template
Index: SunOne.xml.template
===================================================================
RCS file: /home/cvs/jakarta-slide/proposals/tamino/etc/urm/SunOne.xml.template,v
retrieving revision 1.1
retrieving revision 1.1.4.1
diff -u -r1.1 -r1.1.4.1
--- SunOne.xml.template 25 Mar 2004 16:17:58 -0000 1.1
+++ SunOne.xml.template 2 Mar 2005 08:28:37 -0000 1.1.4.1
@@ -1,274 +1,276 @@
<?xml version="1.0" encoding="UTF-8"?>
<SagUrmConfiguration>
- <Authenticator Class="org.apache.slide.urm.authenticator.impl.ssx.URMAuthenticatorSSX" Info="SSX authenticator provider" ProviderURL="http://www.openldap.org/">
- <Attributes>
- <Attribute name="authType" value="ldap" description="Ldap authentication is choosen."/>
- <Attribute name="cacheSize" value="100" description="The size of the authenticated user cache."/>
- <Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication."/>
- <Attribute name="denyCount" value="3" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
- <Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached."/>
- <Attribute name="${serverHost}" value="localhost" description="The host of the LDAP database server."/>
- <Attribute name="${serverPort}" value="389" description="The port on the LDAP database server."/>
- <Attribute name="${personBindDn}" value="cn=users,dc=localhost" description="The base bind distinguished name for the person entries."/>
- <Attribute name="${groupBindDn}" value="cn=groups,dc=localhost" description="The base bind distinguished name for the group entries."/>
- <Attribute name="personObjClass" value="top,person,organizationalPerson,inetOrgPerson" description="The whole LDAP class hierarchy for person entries, from top to bottom, separated by comma."/>
- <Attribute name="groupObjClass" value="top,groupOfUniqueNames" description="The whole LDAP class hierarchy for group entries, from top to bottom, separated by comma."/>
- <Attribute name="connectionPerOperation" value="true" description="The LDAP connection (bind) is created for each operation and closed after that."/>
- <Attribute name="nativeLogFile" value="logs/webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
- <Attribute name="nativeLogLevel" value="0" description="The valid value range is between 1 and 6. If 0 or not defined than there will be no logging."/>
- <Attribute name="serverType" value="SunOneDirectory" description="It can be 'ActiveDirectory', 'SunOneDirectory' or 'OpenLdap'."/>
- <!--Attribute name="defaultGroup" value="group name" description="Each group will belong to this group."/-->
- </Attributes>
- <!-- If the Administrator is not defined here than there should be a default one -->
- <Administrator>
- <Attributes>
- <Attribute name="${initSecurity}" value="false" description="If 'true', the acl and group entries for protecting the urm metadata collection are added to the ino:security collection of the Tamino metadata database"/>
- <Attribute name="${databaseUri}" value="http://localhost/tamino/urmDB" description="Tamino database URI containing a role collection."/>
- <Attribute name="collectionName" value="URM" description="Tamino collection containing a role information."/>
- <Attribute name="${databaseAccount}" value="URMTaminoAdmin" description="URM Tamino database administrator name"/>
- <Attribute name="${databasePassword}" value="URMTaminoAdmin" description="URM Tamino database administrator password"/>
- <!--Attribute name="${databaseDomain}" value="URMDomain" description="URM administrator userdb domain"/-->
- <Attribute name="connPoolMaxConns" value="60" description="URM Tamino connection pool maximum number of parallel connections"/>
- <Attribute name="connPoolTimeout" value="600" description="URM Tamino connection timeout (in secs.)"/>
- <Attribute name="userMetaDataSchemaName" value="URMUserProperties" description="Tamino Schema defining the user properties"/>
- <Attribute name="userRoleMappingSchemaName" value="URMUserRoleMapping" description="Tamino Schema defining the user-role mapping"/>
- <Attribute name="urmInitAdmin" value="URMInitAdmin" description="URMAdmin init mapping"/>
-
- </Attributes>
- <UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.ssx.URMUserDBManagerSpiSSX" Info="SSX administrator provider" ProviderURL="http://www.openldap.org/">
-
- <Attributes>
- <Attribute name="allCacheSize" value="100" description="The size of all the caches (all users, all groups, group members etc.)."/>
- <Attribute name="allCacheTime" value="900" description="The time in seconds till antry will be valid in the cache (of all users, all groups, group members etc.)."/>
- </Attributes>
-
- <NativeProperties>
-
- <User>
-
- <!-- WebDAV properties -->
- <!--Property key="displayname" name="???sn" writeable="true" description="WebDAV property DAV:displayname"/-->
- <!--Property key="creationdate" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
- <!--Property key="creationuser" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
- <!--Property key="modificationdate" name="???" writeable="true" description="WebDAV property DAV:modificationdate"/-->
- <!--Property key="modificationuser" name="???" writeable="true" description="WebDAV property DAV:modifcationuser"/-->
- <Property key="description" name="description" writeable="true" description="The additional information about the group."/>
-
- <!-- basic properties -->
- <Property key="firstName" name="givenName" writeable="true" description="The first name of the user."/>
- <!--Property key="middleName" name="???" writeable="true" description="The middle name of the user."/-->
- <Property key="lastName" name="sn" writeable="true" description="The last name of the user."/>
- <Property key="initials" name="initials" writeable="true" description="The initials of the user."/>
- <Property key="displayName" name="displayName" writeable="true" description="The display name of the user."/>
- <Property key="title" name="title" writeable="true" description="The title of the user."/>
- <!--Property key="salutation" name="???" writeable="true" description="The salutation for the user."/-->
- <!--Property key="nickName" name="???" writeable="true" description="The nickname of the user."/-->
- <Property key="eMail" name="mail" writeable="true" description="The eMail address of the user."/>
- <Property key="notes" name="description" writeable="true" description="Additional notes of/for the user."/>
- <Property key="seeAlso" name="seeAlso" format="{user}" writeable="true" description="Where to find more info."/>
-
- <!-- business properties -->
- <Property key="business.company" name="o" writeable="true" description="The company name."/>
- <Property key="business.streetAddress" name="postalAddress" writeable="true" description="The company street/address."/>
- <!--Property key="business.city" name="???" writeable="true" description="The company city."/-->
- <Property key="business.stateProvince" name="st" writeable="true" description="The company state/rovince."/>
- <Property key="business.zipCode" name="postalCode" writeable="true" description="The company zip code."/>
- <!--Property key="business.countryRegion" name="???" writeable="true" description="The company country/region."/-->
- <!--Property key="business.jobTitle" name="???" writeable="true" description="The job title of the user."/-->
- <Property key="business.department" name="ou" writeable="true" description="The department of the user."/>
- <Property key="business.office" name="roomNumber" writeable="true" description="The office of the user."/>
- <Property key="business.phone" name="telephoneNumber" writeable="true" description="The business telephone number of the user."/>
- <Property key="business.fax" name="facsimileTelephoneNumber" writeable="true" description="The business fax number of the user."/>
- <Property key="business.pager" name="pager" writeable="true" description="The pager number of the user."/>
- <Property key="business.mobile" name="mobile" writeable="true" description="The business mobile phone number of the user."/>
- <!--Property key="business.ipPhone" name="???" writeable="true" description="The business internet phone number of the user."/-->
- <!--Property key="business.webPage" name="???" writeable="true" description="The business web page of the user."/-->
- <!--Property key="business.assistant" name="???" format="{user}" writeable="true" description="The assistant or substitute of the user."/-->
- <!--Property key="business.notes" name="???" writeable="true" description="Additional business notes of/for the user."/-->
-
- <!-- preferences -->
- <Property key="preferences.locale" name="l" writeable="true" description="The wished locale of the user."/>
-
- <!-- home properties -->
- <Property key="home.streetAddress" name="homePostalAddress" writeable="true" description="The home street/address."/>
- <!--Property key="home.city" name="???" writeable="true" description="The home city."/-->
- <!--Property key="home.stateProvince" name="???" writeable="true" description="The home state/province."/-->
- <!--Property key="home.zipCode" vwriteable="true" description="The home zip code."/-->
- <!--Property key="home.countryRegion" name="???" writeable="true" description="The home country/region."/-->
- <Property key="home.phone" name="homePhone" writeable="true" description="The home telephone number of the user."/>
- <!--Property key="home.fax" name="???" writeable="true" description="The home fax number of the user."/-->
- <!--Property key="home.mobile" name="???" writeable="true" description="The home mobile phone number of the user."/-->
- <!--Property key="home.webPage" name="???" writeable="true" description="The home web page of the user."/-->
- <!--Property key="home.notes" name="???" writeable="true" description="Additional home notes of/for the user."/-->
-
- <!-- personal properties -->
- <!--Property key="personal.gender" name="???" writeable="true" description="The gender of the user."/-->
- <!--Property key="personal.birthday" name="???" writeable="true" description="The birthday of the user."/-->
- <!--Property key="personal.anniversary" name="???" writeable="true" description="The anniversary of the user."/-->
- <!--Property key="personal.notes" name="???" writeable="true" description="Additional personal notes of/for the user."/-->
-
- </User>
-
- <Group>
-
- <!-- WebDAV properties -->
- <!--Property key="displayname" name="???" writeable="true" description="WebDAV property DAV:displayname"/-->
- <!--Property key="creationdate" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
- <!--Property key="creationuser" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
- <!--Property key="modificationdate" name="???" writeable="true" description="WebDAV property DAV:modificationdate"/-->
- <!--Property key="modificationuser" name="???" writeable="true" description="WebDAV property DAV:modifcationuser"/-->
- <Property key="description" name="description" writeable="true" description="The additional information about the group."/>
-
- <!-- basic properties -->
- <!--Property key="eMail" name="mail" writeable="true" description="The eMail address of the group."/-->
- <Property kay="manager" name="owner" format="{user}" writeable="true" description="The manager name of the group."/>
- <Property key="notes" name="description" writeable="true" description="Additional notes of/for the group."/>
- <Property key="seeAlso" name="seeAlso" format="{group}" writeable="true" description="Where to find more info."/>
-
- <!-- business properties -->
- <Property key="business.company" name="o" writeable="true" description="The company name."/>
- <Property key="business.department" name="ou" writeable="true" description="The department of the group."/>
- <Property key="business.category" name="businessCategory" writeable="true" description="The business category of the group."/>
-
- </Group>
-
- </NativeProperties>
-
- <MetadataProperties Class="org.apache.slide.urm.authenticator.userdb.impl.tamino.URMMetadataPropsSpiTamino">
-
- <User>
-
- <!-- WebDAV properties -->
- <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
- <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
- <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
- <!--Property name="description" writeable="true" description="The additional information about the group."/-->
-
- <!-- basic properties -->
- <!--Property name="firstName" writeable="true" description="The first name of the user."/-->
- <Property name="middleName" writeable="true" description="The middle name of the user."/>
- <!--Property name="lastName" writeable="true" description="The last name of the user."/-->
- <!--Property name="initials" writeable="true" description="The initials of the user."/-->
- <!--Property name="displayName" writeable="true" description="The display name of the user."/-->
- <!--Property name="title" writeable="true" description="The title of the user."/-->
- <Property name="salutation" writeable="true" description="The salutation for the user."/>
- <Property name="nickName" writeable="true" description="The nickname of the user."/>
- <!--Property name="eMail" writeable="true" description="The eMail address of the user."/-->
- <Property name="notes" writeable="true" description="Additional notes of/for the user."/>
- <!--Property name="seeAlso" writeable="true" description="Where to find more info."/-->
-
- <!-- preferences -->
- <!--Property name="preferences.locale" writeable="true" description="The wished locale of the user."/-->
-
- <!-- business properties -->
- <!--Property name="business.company" writeable="true" description="The company name."/-->
- <!--Property name="business.streetAddress" writeable="true" description="The company street/address."/-->
- <Property name="business.city" writeable="true" description="The company city."/>
- <!--Property name="business.stateProvince" writeable="true" description="The company state/rovince."/-->
- <!--Property name="business.zipCode" writeable="true" description="The company zip code."/-->
- <Property name="business.countryRegion" writeable="true" description="The company country/region."/>
- <Property name="business.jobTitle" writeable="true" description="The job title of the user."/>
- <!--Property name="business.department" writeable="true" description="The department of the user."/-->
- <!--Property name="business.office" writeable="true" description="The office of the user."/-->
- <!--Property name="business.phone" writeable="true" description="The business telephone number of the user."/-->
- <!--Property name="business.fax" writeable="true" description="The business fax number of the user."/-->
- <!--Property name="business.pager" writeable="true" description="The pager number of the user."/-->
- <!--Property name="business.mobile" writeable="true" description="The business mobile phone number of the user."/-->
- <Property name="business.ipPhone" writeable="true" description="The business internet phone number of the user."/>
- <Property name="business.webPage" writeable="true" description="The business web page of the user."/>
- <Property name="business.assistant" writeable="true" description="The assistant or substitute of the user."/>
- <Property name="business.notes" writeable="true" description="Additional business notes of/for the user."/>
-
- <!-- home properties -->
- <!--Property name="home.streetAddress" writeable="true" description="The home street/address."/-->
- <Property name="home.city" writeable="true" description="The home city."/>
- <Property name="home.stateProvince" writeable="true" description="The home state/province."/>
- <Property name="home.zipCode" writeable="true" description="The home zip code."/>
- <Property name="home.countryRegion" writeable="true" description="The home country/region."/>
- <!--Property name="home.phone" writeable="true" description="The home telephone number of the user."/-->
- <Property name="home.fax" writeable="true" description="The home fax number of the user."/>
- <Property name="home.mobile" writeable="true" description="The home mobile phone number of the user."/>
- <Property name="home.webPage" writeable="true" description="The home web page of the user."/>
- <Property name="home.notes" writeable="true" description="Additional home notes of/for the user."/>
-
- <!-- personal properties -->
- <Property name="personal.gender" writeable="true" description="The gender of the user."/>
- <Property name="personal.birthday" writeable="true" description="The birthday of the user."/>
- <Property name="personal.anniversary" writeable="true" description="The anniversary of the user."/>
- <Property name="personal.notes" writeable="true" description="Additional personal notes of/for the user."/>
-
- </User>
-
- <Group>
-
- <!-- WebDAV properties -->
- <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
- <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
- <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
- <!--Property name="description" writeable="true" description="The additional information about the group."/-->
-
- <!-- basic properties -->
- <Property name="eMail" writeable="true" description="The eMail address of the group."/>
- <!--Property name="manager" writeable="true" description="The manager name of the group."/-->
- <!--Property name="notes" writeable="true" description="Additional notes of/for the group."/-->
- <!--Property name="seeAlso" writeable="true" description="Where to find more info."/-->
-
- <!-- business properties -->
- <!--Property name="business.company" writeable="true" description="The company name."/-->
- <!--Property name="business.department" writeable="true" description="The department of the group."/-->
- <!--Property name="business.category" writeable="true" description="The business category of the group."/-->
-
- </Group>
-
- <Role>
-
- <!-- WebDAV properties -->
- <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
- <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
- <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
- <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
- <Property name="description" writeable="true" description="The additional information about the group."/>
-
- <!-- basic properties -->
- <Property name="eMail" writeable="true" description="The eMail address of the role."/>
- <Property name="coordinator" writeable="true" description="The coordinator name of the group."/>
- <Property name="notes" writeable="true" description="Additional notes of/for the role."/>
- <Property name="seeAlso" writeable="true" description="Where to find more info."/>
-
- <!-- business properties -->
- <Property name="business.company" writeable="true" description="The company name."/>
- <Property name="business.department" writeable="true" description="The department of the role."/>
- <Property name="business.category" writeable="true" description="The business category of the role."/>
-
- </Role>
-
- </MetadataProperties>
- </UserDatabase>
- <RoleManager Class="org.apache.slide.urm.authenticator.rolemanager.impl.tamino.URMRoleManagerSpiTamino" Info="Tamino role administrator provider" ProviderURL="http://www.softwareag.com/">
- <Attributes>
- <Attribute name="roleMetaDataSchemaName" value="URMRole" description="Tamino Schema defining the role meta data"/>
- <Attribute name="urmRoot" value="URMRoot" description="URM System role Root"/>
- <Attribute name="urmAdmin" value="URMAdmin" description="URM System role Admin"/>
- <Attribute name="urmGuest" value="URMGuest" description="URM System role Guest"/>
- <Attribute name="roleManagerCache" value="100" description="Size of the role fifo cache"/>
- <Attribute name="roleCacheSwitch" value="active" description="switches on the role cache"/>
- </Attributes>
- </RoleManager>
- <AclAdministrator Class="org.apache.slide.urm.accesscontroler.impl.tamino.URMAccessControlerSpiTamino" Info="Tamino implementation only for internal usage" ProviderURL="http://www.softwareag.com/">
- <AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.firstmatch.URMFirstMatchSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-FirstMatch-Semantic" ProviderURL="http://www.softwareag.com/"/>
- <!--AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.conjunction.URMConjunctionSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-AND-Semantic" ProviderURL="http://www.softwareag.com/"/-->
- <Attributes>
- <Attribute name="actionCache" value="100" description="max. number of cached actions"/>
- <Attribute name="aclCache" value="10000" description="max. number of cached acl evaluation results"/>
- <Attribute name="actionMetaDataSchemaName" value="URMAction" description="Tamino Schema defining the action meta data"/>
- <Attribute name="aclMetaDataSchemaName" value="URMAccessControlList" description="Tamino Schema defining the acl meta data"/>
- </Attributes>
- </AclAdministrator>
- </Administrator>
- </Authenticator>
+ <Authenticator Class="org.apache.slide.urm.authenticator.impl.ssx.URMAuthenticatorSSX" Info="SSX authenticator provider" ProviderURL="http://www.openldap.org/">
+ <Attributes>
+ <Attribute name="authType" value="ldap" description="Ldap authentication is choosen."/>
+ <Attribute name="cacheSize" value="100" description="The size of the authenticated user cache."/>
+ <Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication."/>
+ <Attribute name="denyCount" value="0" description="The number of the unsuccessful authentication after that user gets into the deny cache."/>
+ <Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached."/>
+ <Attribute name="${serverHost}" value="localhost" description="The host of the LDAP database server."/>
+ <Attribute name="${serverPort}" value="389" description="The port on the LDAP database server."/>
+ <Attribute name="${personBindDn}" value="cn=users,dc=localhost" description="The base bind distinguished name for the person entries."/>
+ <Attribute name="${groupBindDn}" value="cn=groups,dc=localhost" description="The base bind distinguished name for the group entries."/>
+ <Attribute name="personObjClass" value="top,person,organizationalPerson,inetOrgPerson" description="The whole LDAP class hierarchy for person entries, from top to bottom, separated by comma."/>
+ <Attribute name="groupObjClass" value="top,groupOfUniqueNames" description="The whole LDAP class hierarchy for group entries, from top to bottom, separated by comma."/>
+ <Attribute name="connectionPerOperation" value="true" description="The LDAP connection (bind) is created for each operation and closed after that."/>
+ <Attribute name="nativeLogFile" value="webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible."/>
+ <Attribute name="nativeLogLevel" value="0" description="The valid value range is between 1 and 6. If 0 or not defined than there will be no logging."/>
+ <Attribute name="serverType" value="SunOneDirectory" description="It can be 'ActiveDirectory', 'SunOneDirectory' or 'OpenLdap'."/>
+ <!--Attribute name="defaultGroup" value="group name" description="Each group will belong to this group."/-->
+ </Attributes>
+ <!-- If the Administrator is not defined here than there should be a default one -->
+ <Administrator>
+ <Attributes>
+ <Attribute name="${initSecurity}" value="false" description="If 'true', the acl and group entries for protecting the urm metadata collection are added to the ino:security collection of the Tamino metadata database"/>
+ <Attribute name="${databaseUri}" value="http://localhost/tamino/urmDB" description="Tamino database URI containing a role collection."/>
+ <Attribute name="collectionName" value="URM" description="Tamino collection containing a role information."/>
+ <Attribute name="${databaseAccount}" value="URMTaminoAdmin" description="URM Tamino database administrator name"/>
+ <Attribute name="${databasePassword}" value="URMTaminoAdmin" description="URM Tamino database administrator password"/>
+ <!--Attribute name="${databaseDomain}" value="URMDomain" description="URM administrator userdb domain"/-->
+ <Attribute name="connPoolMaxConns" value="60" description="URM Tamino connection pool maximum number of parallel connections"/>
+ <Attribute name="connPoolTimeout" value="600" description="URM Tamino connection timeout (in secs.)"/>
+ <Attribute name="userMetaDataSchemaName" value="URMUserProperties" description="Tamino Schema defining the user properties"/>
+ <Attribute name="userRoleMappingSchemaName" value="URMUserRoleMapping" description="Tamino Schema defining the user-role mapping"/>
+ <Attribute name="urmInitAdmin" value="URMInitAdmin" description="URMAdmin init mapping"/>
+
+ </Attributes>
+ <UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.ssx.URMUserDBManagerSpiSSX" Info="SSX administrator provider" ProviderURL="http://www.openldap.org/">
+
+ <Attributes>
+ <Attribute name="guestId" value="SemanticServer" description="URM Guest account" />
+ <Attribute name="guestPassword" value="SemanticServer" description="URM Guest password" />
+ <Attribute name="allCacheSize" value="100" description="The size of all the caches (all users, all groups, group members etc.)."/>
+ <Attribute name="allCacheTime" value="900" description="The time in seconds till antry will be valid in the cache (of all users, all groups, group members etc.)."/>
+ </Attributes>
+
+ <NativeProperties>
+
+ <User>
+
+ <!-- WebDAV properties -->
+ <!--Property key="displayname" name="???sn" writeable="true" description="WebDAV property DAV:displayname"/-->
+ <!--Property key="creationdate" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
+ <!--Property key="creationuser" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
+ <!--Property key="modificationdate" name="???" writeable="true" description="WebDAV property DAV:modificationdate"/-->
+ <!--Property key="modificationuser" name="???" writeable="true" description="WebDAV property DAV:modifcationuser"/-->
+ <Property key="description" name="description" writeable="true" description="The additional information about the group."/>
+
+ <!-- basic properties -->
+ <Property key="firstName" name="givenName" writeable="true" description="The first name of the user."/>
+ <!--Property key="middleName" name="???" writeable="true" description="The middle name of the user."/-->
+ <Property key="lastName" name="sn" writeable="true" description="The last name of the user."/>
+ <Property key="initials" name="initials" writeable="true" description="The initials of the user."/>
+ <Property key="displayName" name="displayName" writeable="true" description="The display name of the user."/>
+ <Property key="title" name="title" writeable="true" description="The title of the user."/>
+ <!--Property key="salutation" name="???" writeable="true" description="The salutation for the user."/-->
+ <!--Property key="nickName" name="???" writeable="true" description="The nickname of the user."/-->
+ <Property key="eMail" name="mail" writeable="true" description="The eMail address of the user."/>
+ <Property key="notes" name="description" writeable="true" description="Additional notes of/for the user."/>
+ <Property key="seeAlso" name="seeAlso" format="{user}" writeable="true" description="Where to find more info."/>
+
+ <!-- business properties -->
+ <Property key="business.company" name="o" writeable="true" description="The company name."/>
+ <Property key="business.streetAddress" name="postalAddress" writeable="true" description="The company street/address."/>
+ <!--Property key="business.city" name="???" writeable="true" description="The company city."/-->
+ <Property key="business.stateProvince" name="st" writeable="true" description="The company state/rovince."/>
+ <Property key="business.zipCode" name="postalCode" writeable="true" description="The company zip code."/>
+ <!--Property key="business.countryRegion" name="???" writeable="true" description="The company country/region."/-->
+ <!--Property key="business.jobTitle" name="???" writeable="true" description="The job title of the user."/-->
+ <Property key="business.department" name="ou" writeable="true" description="The department of the user."/>
+ <Property key="business.office" name="roomNumber" writeable="true" description="The office of the user."/>
+ <Property key="business.phone" name="telephoneNumber" writeable="true" description="The business telephone number of the user."/>
+ <Property key="business.fax" name="facsimileTelephoneNumber" writeable="true" description="The business fax number of the user."/>
+ <Property key="business.pager" name="pager" writeable="true" description="The pager number of the user."/>
+ <Property key="business.mobile" name="mobile" writeable="true" description="The business mobile phone number of the user."/>
+ <!--Property key="business.ipPhone" name="???" writeable="true" description="The business internet phone number of the user."/-->
+ <!--Property key="business.webPage" name="???" writeable="true" description="The business web page of the user."/-->
+ <!--Property key="business.assistant" name="???" format="{user}" writeable="true" description="The assistant or substitute of the user."/-->
+ <!--Property key="business.notes" name="???" writeable="true" description="Additional business notes of/for the user."/-->
+
+ <!-- preferences -->
+ <Property key="preferences.locale" name="l" writeable="true" description="The wished locale of the user."/>
+
+ <!-- home properties -->
+ <Property key="home.streetAddress" name="homePostalAddress" writeable="true" description="The home street/address."/>
+ <!--Property key="home.city" name="???" writeable="true" description="The home city."/-->
+ <!--Property key="home.stateProvince" name="???" writeable="true" description="The home state/province."/-->
+ <!--Property key="home.zipCode" vwriteable="true" description="The home zip code."/-->
+ <!--Property key="home.countryRegion" name="???" writeable="true" description="The home country/region."/-->
+ <Property key="home.phone" name="homePhone" writeable="true" description="The home telephone number of the user."/>
+ <!--Property key="home.fax" name="???" writeable="true" description="The home fax number of the user."/-->
+ <!--Property key="home.mobile" name="???" writeable="true" description="The home mobile phone number of the user."/-->
+ <!--Property key="home.webPage" name="???" writeable="true" description="The home web page of the user."/-->
+ <!--Property key="home.notes" name="???" writeable="true" description="Additional home notes of/for the user."/-->
+
+ <!-- personal properties -->
+ <!--Property key="personal.gender" name="???" writeable="true" description="The gender of the user."/-->
+ <!--Property key="personal.birthday" name="???" writeable="true" description="The birthday of the user."/-->
+ <!--Property key="personal.anniversary" name="???" writeable="true" description="The anniversary of the user."/-->
+ <!--Property key="personal.notes" name="???" writeable="true" description="Additional personal notes of/for the user."/-->
+
+ </User>
+
+ <Group>
+
+ <!-- WebDAV properties -->
+ <!--Property key="displayname" name="???" writeable="true" description="WebDAV property DAV:displayname"/-->
+ <!--Property key="creationdate" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
+ <!--Property key="creationuser" name="???" writeable="true" description="WebDAV property DAV:creationdate"/-->
+ <!--Property key="modificationdate" name="???" writeable="true" description="WebDAV property DAV:modificationdate"/-->
+ <!--Property key="modificationuser" name="???" writeable="true" description="WebDAV property DAV:modifcationuser"/-->
+ <Property key="description" name="description" writeable="true" description="The additional information about the group."/>
+
+ <!-- basic properties -->
+ <!--Property key="eMail" name="mail" writeable="true" description="The eMail address of the group."/-->
+ <Property kay="manager" name="owner" format="{user}" writeable="true" description="The manager name of the group."/>
+ <Property key="notes" name="description" writeable="true" description="Additional notes of/for the group."/>
+ <Property key="seeAlso" name="seeAlso" format="{group}" writeable="true" description="Where to find more info."/>
+
+ <!-- business properties -->
+ <Property key="business.company" name="o" writeable="true" description="The company name."/>
+ <Property key="business.department" name="ou" writeable="true" description="The department of the group."/>
+ <Property key="business.category" name="businessCategory" writeable="true" description="The business category of the group."/>
+
+ </Group>
+
+ </NativeProperties>
+
+ <MetadataProperties Class="org.apache.slide.urm.authenticator.userdb.impl.tamino.URMMetadataPropsSpiTamino">
+
+ <User>
+
+ <!-- WebDAV properties -->
+ <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
+ <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
+ <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
+ <!--Property name="description" writeable="true" description="The additional information about the group."/-->
+
+ <!-- basic properties -->
+ <!--Property name="firstName" writeable="true" description="The first name of the user."/-->
+ <Property name="middleName" writeable="true" description="The middle name of the user."/>
+ <!--Property name="lastName" writeable="true" description="The last name of the user."/-->
+ <!--Property name="initials" writeable="true" description="The initials of the user."/-->
+ <!--Property name="displayName" writeable="true" description="The display name of the user."/-->
+ <!--Property name="title" writeable="true" description="The title of the user."/-->
+ <Property name="salutation" writeable="true" description="The salutation for the user."/>
+ <Property name="nickName" writeable="true" description="The nickname of the user."/>
+ <!--Property name="eMail" writeable="true" description="The eMail address of the user."/-->
+ <Property name="notes" writeable="true" description="Additional notes of/for the user."/>
+ <!--Property name="seeAlso" writeable="true" description="Where to find more info."/-->
+
+ <!-- preferences -->
+ <!--Property name="preferences.locale" writeable="true" description="The wished locale of the user."/-->
+
+ <!-- business properties -->
+ <!--Property name="business.company" writeable="true" description="The company name."/-->
+ <!--Property name="business.streetAddress" writeable="true" description="The company street/address."/-->
+ <Property name="business.city" writeable="true" description="The company city."/>
+ <!--Property name="business.stateProvince" writeable="true" description="The company state/rovince."/-->
+ <!--Property name="business.zipCode" writeable="true" description="The company zip code."/-->
+ <Property name="business.countryRegion" writeable="true" description="The company country/region."/>
+ <Property name="business.jobTitle" writeable="true" description="The job title of the user."/>
+ <!--Property name="business.department" writeable="true" description="The department of the user."/-->
+ <!--Property name="business.office" writeable="true" description="The office of the user."/-->
+ <!--Property name="business.phone" writeable="true" description="The business telephone number of the user."/-->
+ <!--Property name="business.fax" writeable="true" description="The business fax number of the user."/-->
+ <!--Property name="business.pager" writeable="true" description="The pager number of the user."/-->
+ <!--Property name="business.mobile" writeable="true" description="The business mobile phone number of the user."/-->
+ <Property name="business.ipPhone" writeable="true" description="The business internet phone number of the user."/>
+ <Property name="business.webPage" writeable="true" description="The business web page of the user."/>
+ <Property name="business.assistant" writeable="true" description="The assistant or substitute of the user."/>
+ <Property name="business.notes" writeable="true" description="Additional business notes of/for the user."/>
+
+ <!-- home properties -->
+ <!--Property name="home.streetAddress" writeable="true" description="The home street/address."/-->
+ <Property name="home.city" writeable="true" description="The home city."/>
+ <Property name="home.stateProvince" writeable="true" description="The home state/province."/>
+ <Property name="home.zipCode" writeable="true" description="The home zip code."/>
+ <Property name="home.countryRegion" writeable="true" description="The home country/region."/>
+ <!--Property name="home.phone" writeable="true" description="The home telephone number of the user."/-->
+ <Property name="home.fax" writeable="true" description="The home fax number of the user."/>
+ <Property name="home.mobile" writeable="true" description="The home mobile phone number of the user."/>
+ <Property name="home.webPage" writeable="true" description="The home web page of the user."/>
+ <Property name="home.notes" writeable="true" description="Additional home notes of/for the user."/>
+
+ <!-- personal properties -->
+ <Property name="personal.gender" writeable="true" description="The gender of the user."/>
+ <Property name="personal.birthday" writeable="true" description="The birthday of the user."/>
+ <Property name="personal.anniversary" writeable="true" description="The anniversary of the user."/>
+ <Property name="personal.notes" writeable="true" description="Additional personal notes of/for the user."/>
+
+ </User>
+
+ <Group>
+
+ <!-- WebDAV properties -->
+ <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
+ <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
+ <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
+ <!--Property name="description" writeable="true" description="The additional information about the group."/-->
+
+ <!-- basic properties -->
+ <Property name="eMail" writeable="true" description="The eMail address of the group."/>
+ <!--Property name="manager" writeable="true" description="The manager name of the group."/-->
+ <!--Property name="notes" writeable="true" description="Additional notes of/for the group."/-->
+ <!--Property name="seeAlso" writeable="true" description="Where to find more info."/-->
+
+ <!-- business properties -->
+ <!--Property name="business.company" writeable="true" description="The company name."/-->
+ <!--Property name="business.department" writeable="true" description="The department of the group."/-->
+ <!--Property name="business.category" writeable="true" description="The business category of the group."/-->
+
+ </Group>
+
+ <Role>
+
+ <!-- WebDAV properties -->
+ <Property name="displayname" writeable="true" description="WebDAV property DAV:displayname"/>
+ <Property name="creationdate" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="creationuser" writeable="true" description="WebDAV property DAV:creationdate"/>
+ <Property name="modificationdate" writeable="true" description="WebDAV property DAV:modificationdate"/>
+ <Property name="modificationuser" writeable="true" description="WebDAV property DAV:modifcationuser"/>
+ <Property name="description" writeable="true" description="The additional information about the group."/>
+
+ <!-- basic properties -->
+ <Property name="eMail" writeable="true" description="The eMail address of the role."/>
+ <Property name="coordinator" writeable="true" description="The coordinator name of the group."/>
+ <Property name="notes" writeable="true" description="Additional notes of/for the role."/>
+ <Property name="seeAlso" writeable="true" description="Where to find more info."/>
+
+ <!-- business properties -->
+ <Property name="business.company" writeable="true" description="The company name."/>
+ <Property name="business.department" writeable="true" description="The department of the role."/>
+ <Property name="business.category" writeable="true" description="The business category of the role."/>
+
+ </Role>
+
+ </MetadataProperties>
+ </UserDatabase>
+ <RoleManager Class="org.apache.slide.urm.authenticator.rolemanager.impl.tamino.URMRoleManagerSpiTamino" Info="Tamino role administrator provider" ProviderURL="http://www.softwareag.com/">
+ <Attributes>
+ <Attribute name="roleMetaDataSchemaName" value="URMRole" description="Tamino Schema defining the role meta data"/>
+ <Attribute name="urmRoot" value="URMRoot" description="URM System role Root"/>
+ <Attribute name="urmAdmin" value="URMAdmin" description="URM System role Admin"/>
+ <Attribute name="urmGuest" value="URMGuest" description="URM System role Guest"/>
+ <Attribute name="roleManagerCache" value="100" description="Size of the role fifo cache"/>
+ <Attribute name="roleCacheSwitch" value="active" description="switches on the role cache"/>
+ </Attributes>
+ </RoleManager>
+ <AclAdministrator Class="org.apache.slide.urm.accesscontroler.impl.tamino.URMAccessControlerSpiTamino" Info="Tamino implementation only for internal usage" ProviderURL="http://www.softwareag.com/">
+ <AclSemantic Class="org.apache.slide.urm.accesscontroler.impl.semantic.firstmatch.URMFirstMatchSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-FirstMatch-Semantic" ProviderURL="http://www.softwareag.com/"/>
+ <!--AclSemantic Class="com.softwareag.urm.accesscontroler.impl.semantic.conjunction.URMConjunctionSemanticFactory" PredefinedActionSemantic="GrantOverDeny" Info="ACLSemantic: FirstMatch-AND-Semantic" ProviderURL="http://www.softwareag.com/"/-->
+ <Attributes>
+ <Attribute name="actionCache" value="100" description="max. number of cached actions"/>
+ <Attribute name="aclCache" value="10000" description="max. number of cached acl evaluation results"/>
+ <Attribute name="actionMetaDataSchemaName" value="URMAction" description="Tamino Schema defining the action meta data"/>
+ <Attribute name="aclMetaDataSchemaName" value="URMAccessControlList" description="Tamino Schema defining the acl meta data"/>
+ </Attributes>
+ </AclAdministrator>
+ </Administrator>
+ </Authenticator>
</SagUrmConfiguration>
1.1.4.1 +9 -6 jakarta-slide/proposals/tamino/etc/urm/urm_config.xml
Index: urm_config.xml
===================================================================
RCS file: /home/cvs/jakarta-slide/proposals/tamino/etc/urm/urm_config.xml,v
retrieving revision 1.1
retrieving revision 1.1.4.1
diff -u -r1.1 -r1.1.4.1
--- urm_config.xml 25 Mar 2004 16:17:58 -0000 1.1
+++ urm_config.xml 2 Mar 2005 08:28:37 -0000 1.1.4.1
@@ -1,21 +1,22 @@
<?xml version="1.0" encoding="UTF-8"?>
<SagUrmConfiguration>
- <Authenticator Class="org.apache.slide.urm.authenticator.impl.jndi.URMAuthenticatorJNDI" Info="JNDI authenticator provider" ProviderURL="http://java.sun.com/products/jndi/">
+ <Authenticator Class="org.apache.slide.urm.authenticator.impl.ssx.URMAuthenticatorSSX" Info="SSX authenticator provider" ProviderURL="http://www.openldap.org/">
<Attributes>
+ <Attribute name="sensitive" value="false" description="indicates if user and domain should be handeled case sensitive: true if case sensitive, false else" />
<Attribute name="authType" value="os" description="Choosen authentication." />
<Attribute name="cacheSize" value="100" description="The size of the authenticated user cache." />
<Attribute name="cacheTime" value="900" description="The time in seconds till the user will be valid in the cache after a successful authentication." />
- <Attribute name="denyCount" value="3" description="The number of the unsuccessful authentication after that user gets into the deny cache." />
+ <Attribute name="denyCount" value="0" description="The number of the unsuccessful authentication after that user gets into the deny cache." />
<Attribute name="denyTime" value="60" description="The time in seconds till the user authentication will be denied after the 'denyCount' is reached." />
- <Attribute name="nativeLogFile" value="logs/webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible." />
+ <Attribute name="nativeLogFile" value="webdavrealmnativeuserdb.log" description="The log file name for the logging of the user DB library. The global 'ssx_userdb_global_errors.log' file (which located in the default temp directory) will be used if the log ability is turned on and the logging to the specified logfile is not possible." />
<Attribute name="nativeLogLevel" value="0" description="The valid value range is between 1 and 6. If 0 or not defined than there will be no logging." />
<!--Attribute name="defaultGroup" value="group name" description="Each group will belong to this group."/-->
- <Attribute name="defaultDomain" description="It will be used for OS authentication if the domain is not specified explicit in a method call." value="localhost" />
+ <!--Attribute name="${defaultDomain}" description="It will be used for OS authentication if the domain is not specified explicit in a method call."/-->
</Attributes>
<!-- If the Administrator is not defined here than there should be a default one -->
<Administrator>
<Attributes>
- <Attribute name="initSecurity" value="false" description="If 'true', the acl and group entries for protecting the urm metadata collection are added to the ino:security collection of the Tamino metadata database" />
+ <Attribute name="initSecurity" value="false" description="If 'true', the acl and group entries for protecting the urm metadata collection are added to the ino:security collection of the Tamino metadata database." />
<Attribute name="databaseUri" value="http://localhost/tamino/urmDB" description="Tamino database URI containing the metadata collection." />
<Attribute name="collectionName" value="URM_OS" description="Tamino collection containing the metadata information." />
<Attribute name="databaseAccount" value="URMTaminoAdmin" description="URM Tamino database administrator name." />
@@ -27,8 +28,10 @@
<Attribute name="userRoleMappingSchemaName" value="URMUserRoleMapping" description="Tamino Schema defining the user-role mapping" />
<Attribute name="urmInitAdmin" value="URMInitAdmin" description="URMAdmin init mapping" />
</Attributes>
- <UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.jndi.URMUserDBManagerSpiJNDI" Info="JNDI administrator provider" ProviderURL="http://java.sun.com/products/jndi/">
+ <UserDatabase Class="org.apache.slide.urm.authenticator.userdb.impl.ssx.URMUserDBManagerSpiSSX" Info="SSX administrator provider" ProviderURL="http://www.openldap.org/">
<Attributes>
+ <Attribute name="guestId" value="SemanticServer" description="URM Guest account" />
+ <Attribute name="guestPassword" value="SemanticServer" description="URM Guest password" />
<Attribute name="allCacheSize" value="100" description="The size of all the caches (all users, all groups, group members etc.)." />
<Attribute name="allCacheTime" value="900" description="The time in seconds till antry will be valid in the cache (of all users, all groups, group members etc.)." />
<!--Attribute name="defaultDomain" value="domain name" description="The specified doamin will be used for OS authentication if is not specified explicit."/-->
---------------------------------------------------------------------
To unsubscribe, e-mail: slide-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: slide-dev-help@jakarta.apache.org