On Jun 23, 2008, at 10:56 PM, Jeyasree Vinnavadi Srinivasan wrote:
How can I restrict the portlets at runtime based on the custom roles?
I'm getting roles using openLDAP but I'm not able to restrict the
portlets according to my roles. Please help me with suggestions or
with
a complete guide.
You need to populate your roles into the Java Subject that Jetspeed
uses to do security checks, such as isUserInRole
Best way to do that is either:
1. implement your own RoleManager service.
2. implement your own security valve
The first approach is a little complicated, but gives you the tightest
integration with Jetspeed. It will require some reading on the
security model
http://portals.apache.org/jetspeed-2/multiproject/jetspeed-security/arch.html
Using a security valve, you can populate the Subject using your own
roles that you lookup outside of Jetspeed
This link isn't exactly what you need, but it could help:
http://portals.apache.org/jetspeed-2/guides/guide-ntlm.html
A third way might be to use our LDAP services to connect directly to
openLDAP
http://portals.apache.org/jetspeed-2/multiproject/jetspeed-security/ldap.html
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
