I've been playing around with the security features in 1.5.
However, I have serveral issues.
1. I'm very much interested in using the WinLogin authentication mode
(only). The WinLogin authentication mode works great, however I just
as easily can set up the "Username authentication" and that appears to
work just fine as well :( I want to prevent people from using the
other two forms of authentication and only use WinLogin, if possible.
Is there something that can (or needs to be set up) in the remoting
section of ccservice.exe.config file? I currently use the out of the
box config there.
2. Once authenticated, my authorization on what I can do appears to
work fine through cctray, (it properly allows or deny's ForceBuild,
for instance), I can never view the build results on a web page. I've
seen in other postings "change your webconfig settings", however I
haven't seen any docs on wht it is that I need to do.
Any help would be much appreciated!
I imagine my ccnet.config file is wrong on this, I have something
like:
<cruisecontrol>
<internalSecurity>
<users>
<!-- couldn't get this to work: <ldapUser name="jeremyv"
domain="myldapserver.com" /> -->
<!-- don't want to use passwordUser as I don't want to store
passwords of over 100 developers -->
<!-- probably too open? -->
<simpleUser name="jeremyv" />
<simpleUser name="otherguy" />
</users>
<permissions>
<rolePermission name="admin" defaultRight="Allow">
<users>
<userName name="jeremyv" />
</users>
</rolePermission>
<rolePermission name="user" defaultRight="Deny"
viewProject="Allow" >
<users>
<userName name="*" />
</users>
</rolePermission>
</permissions>
</internalSecurity>
