Question about the new security architecture

["Chamberlain James O. CONTR J9C998" <Ja...@je.jfcom.mil>]

I have been digging through the design documents and cvs looking at how
the security is handled in Jetspeed 2. I am interested in having
Jetspeed authenticate & authorize against LDAP instead of the database.
One question that I have is: How will Jetspeed deal with users being
created, updated, and removed with it's knowledge? If for instance I
hooked it to Active Directory and used the default AD tools to admin the
users and groups how would Jetspeed deal with these users and groups
changing. First time a user logs into the portal would it auto-create
the user's preferences, generate a default page based off some template?
Any issues in this area?


Regards,
 
James

---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org

Re: Question about the new security architecture

[David Sean Taylor <da...@bluesunrise.com>]

Chamberlain James O. CONTR J9C998 wrote:

> I have been digging through the design documents and cvs looking at how
> the security is handled in Jetspeed 2. I am interested in having
> Jetspeed authenticate & authorize against LDAP instead of the database.

Me too.
Considering Eve as the default Apache solution:

http://incubator.apache.org/directory/subprojects/eve/

> One question that I have is: How will Jetspeed deal with users being
> created, updated, and removed with it's knowledge? 

Im looking into writing an LDAP User Manager for J2

If for instance I
> hooked it to Active Directory and used the default AD tools to admin the
> users and groups how would Jetspeed deal with these users and groups
> changing. First time a user logs into the portal would it auto-create
> the user's preferences, generate a default page based off some template?
> Any issues in this area?

Im just starting to prototype user creation, default pages, profiles and 
user attributes. User attributes is an interesting area. I was thinking 
that the user manager could handle the mapping from the backend user 
store(s) to the normalized  user attributes made available to the portal.

-- 
David Sean Taylor
Bluesunrise Software
david@bluesunrise.com
[office] +01 707 773 4646
[mobile] +01 707 529 9194

---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org

Re: How to wrap-up Horrible Exception.

[Youssef Mohammed <yo...@gmail.com>]

Did you try to add error page in the web.xml ? 
This is the standard way AFAIK 
Regards


On Tue, 21 Sep 2004 09:23:44 -0700, Sunil Sheshadri <ss...@cisco.com> wrote:
> Hi,
> When ever jetspeed throws any kind of horrible Exception we need to wrap it
> up and redirect it to a common error page. Any idea, how to redirect it?
> 
> Does jetspeed provides any facility to handle these exceptions?
> 
> Regards,
> Sunil
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org
> 
>

---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org

Re: Question about the new security architecture

[David Le Strat <dl...@yahoo.com>]

See comments below.

--- "Chamberlain James O. CONTR J9C998"
<Ja...@je.jfcom.mil> wrote:

> I have been digging through the design documents and
> cvs looking at how
> the security is handled in Jetspeed 2. I am
> interested in having
> Jetspeed authenticate & authorize against LDAP
> instead of the database.

Regarding authentication, mapping to LDAP will be
quite straightforward.  It will basically require an
LDAP implementation of the UserSecurityHandler and
CredentialHandler and a change to the default assembly
configuration.

> One question that I have is: How will Jetspeed deal
> with users being
> created, updated, and removed with it's knowledge?
> If for instance I
> hooked it to Active Directory and used the default
> AD tools to admin the
> users and groups how would Jetspeed deal with these
> users and groups
> changing.

This brings up an interesting question.  For creation
and deletion of user, the user attribute backing
store/stores will need to be updated as well.  This
may require some level of asynchronous work (message
beans or some other mechanism) to keep security and
profile in sync.

> First time a user logs into the portal
> would it auto-create
> the user's preferences, generate a default page
> based off some template?
> Any issues in this area?
> 
> 
> Regards,
>  
> James
> 
>
---------------------------------------------------------------------
> To unsubscribe, e-mail:
> jetspeed-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail:
> jetspeed-user-help@jakarta.apache.org
> 
> 



		
__________________________________
Do you Yahoo!?
Yahoo! Mail - 50x more storage than other providers!
http://promotions.yahoo.com/new_mail

---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org

How to wrap-up Horrible Exception.

[Sunil Sheshadri <ss...@cisco.com>]

Hi,
When ever jetspeed throws any kind of horrible Exception we need to wrap it
up and redirect it to a common error page. Any idea, how to redirect it?

Does jetspeed provides any facility to handle these exceptions?

Regards,
Sunil



---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org