Wyllys -- doesn't your LDAP server return at least one generic role
for users who are authenticated? It would have to in order for
container-managed auth to work. Whatever that role name is, make sure
that name is part of a role-ref element in web.xml that protects the
login page. It probably won't be "Authenticated".
It does sound like JSPWiki knows your users are logged in. There's
just a mismatch between the role name we use to protect the login page
and the one your container is returning.
Andrew
On Mar 27, 2009, at 9:25, Wyllys Ingersoll <[email protected]>
wrote:
Andrew -
No, I'm not using a custom authorizer, just whatever comes
2.8.1. I think the problem is related
to the role mapping. My LDAP server doesn't return any "Group"
information
and I'm not quite sure how to force JSPWiki to make everyone who
authenticated successfully become part of an authorized group or role.
-Wyllys
Andrew Jaquith wrote:
Wyllys--
I'd forgotten about that particular post. Glad you got benefit from
it. I should probably add it to the official docs. :)
Are you using a custom Authorizer by any chance? I fixed a recent
bug in 2.8.1 that prevented custom roles from being added. Sounds a
little like your issue, actually. Could you try the 2.8.2 nightly
build and see if it helps?
If not, we can explore the container authentication config options.
Andrew
