You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cocoon.apache.org by Barbara Slupik <ba...@ntlworld.com> on 2008/06/11 16:36:35 UTC
Authentication block
Hello
I am trying to move my cocoon applications from cocoon-2.1.10 to
cocoon-2.2.0. I cannot make the tomcat security (realm) work with
cocoon-2.2.0 so I tried to use authentication block instead.
=== My application context ===
<bean name="org.apache.cocoon.auth.SecurityHandler/simple"
class="org.apache.cocoon.auth.impl.SimpleSecurityHandler"
scope="singleton">
<property name="userProperties">
<value>
manager=mana
manager.roles=admin_admin
agent001=agen
agent001.roles=admin_user
</value>
</property>
</bean>
<bean name="org.apache.cocoon.auth.Application/cocoon-app"
class="org.apache.cocoon.auth.impl.StandardApplication"
scope="singleton">
<property name="securityHandler"
ref="org.apache.cocoon.auth.SecurityHandler/simple"/>
</bean>
=== My sitemap ===
<map:match pattern="">
<map:redirect-to uri="login"/>
</map:match>
<map:match pattern="home">
<map:act type="cauth-is-logged-in">
<map:parameter name="application" value="cocoon-app"/>
<map:generate src="menu/home.xml"/>
<map:transform type="role-filter"/>
<map:transform type="i18n"><map:parameter name="locale"
value="{request:locale}"/></map:transform>
<map:serialize type="xhtml"/>
</map:act>
<map:redirect-to uri="login"/>
</map:match>
<map:match pattern="login">
<map:act type="cauth-is-logged-in">
<map:parameter name="application" value="cocoon-app"/>
<map:redirect-to uri="home"/>
</map:act>
<map:generate src="menu/login.xml"/>
<map:transform type="i18n"><map:parameter name="locale"
value="{request:locale}"/></map:transform>
<map:serialize type="xhtml"/>
</map:match>
<map:match pattern="j_security_check">
<map:act type="cauth-login">
<map:parameter name="application" value="cocoon-app" />
<map:parameter name="name" value="{request-param:j_username}" />
<map:parameter name="password" value="{request-param:j_password}" />
<map:redirect-to uri="home" />
</map:act>
<map:redirect-to uri="error" />
</map:match>
It looks like it logs in correctly, goes to home and displays menu/
home.xml, but the role-filter transformation can't see admin_admin role.
How to define roles in SimpleSecurityHandler? Are they recognised by
role-filter transformer?
My users are in MySQL database. I use Hibernate. Should I use
DAOSecurityHandler to get my users? How to use DAOSecurityHandler?
Best regards
Barbara
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@cocoon.apache.org
For additional commands, e-mail: users-help@cocoon.apache.org