https://issues.apache.org/bugzilla/show_bug.cgi?id=55477
Bug ID: 55477
Summary: Add a solution to map an realm name to a security role
Product: Tomcat 7
Version: trunk
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P2
Component: Catalina
Assignee: dev@tomcat.apache.org
Reporter: ste...@mayr-stefan.de
Created attachment 30759
--> https://issues.apache.org/bugzilla/attachment.cgi?id=30759&action=edit
Prototype of a nestable realm
Sometimes it would be quite handy to translate role names of a configured realm
to the specifed security roles used in applications (web.xml). This would be
especially comfortable with the JNDIRealm.
Example:
#1 dev environment
map ldap group developers to security role manager-jmx
#2 production environment
map ldap group developers to security role manager-status
I've already created a prototype of a nestable realm using a simple properties
file (mapping.properties) for translation. I'm no programmer, so it might need
some cleanup.
Configuration could look like this (not tested with JNDI yet):
<Realm className="org.apache.catalina.realm.MappingRealm">
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
resourceName="UserDatabase"/>
</Realm>
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
