Re: Authorization for Ubuntu server and Windows WS not in a domain

2011-11-12 Thread milos 
Hello,
So I could use MCF as a servise provider for authorization. That is nice
but only if the formats agree (I'll check that).
But still there is one question left: What authorization component to use
if users and indexed files are not on the Windows servers, but on the
Ubuntu server with Unix style file rights of type rwxr--r-- ?
Also, could I use AD component for Windows not in a domain?


 The format of a ManifoldCF access token is a collaboration between an
 authority connector and repository connectors designed to work with
 that authority connector.  If you've already indexed documents using
 another mechanism, you can still use ManifoldCF's authority service to
 obtain access tokens for authenticated users.  This service is a web
 application accessible by http.  You can see what it returns (after
 defining an authority connection or two in the ManifoldCF UI) by
 simply using curl:

 curl
 http://localhost:8345/mcf-authority-service/UserACLs?username=myn...@mydomain.com

 ... and noting what is returned.  The access tokens indexed in Solr by
 your crawler will have to match the access token format returned by
 the authority service, or the Solr query modification components we
 supply will not work.

 Hope this helps,
 Karl

 On Fri, Nov 11, 2011 at 2:12 PM,  mi...@grf.bg.ac.rs wrote:
 Hello,

 I would like to test ManifoldCF (MCF) in order to achieve doc level
 security in my SOLR search app. Actually I already developed my own
 document crawler apart from the MCF framework. My test SOLR app is
 located
 on Ubunutu server (the indexed docs are located on that server). When I
 tried to use MCF Quick Start App I didn't know what authorization
 connector to use for this case (of course I would use MCF crawlers in
 this
 case to retrieve documents).

 I need MCF only for authorization. My crawler already uses Java 7
 capabilities to retrieve file ACL(Posix attributes) What classes do I
 need
 to use from MCF libraries to perform authorization based on Ubuntu
 server
 usernames?

 Finally, is it possible to perform authorization against Windows
 accounts
 on workstations not in a domain (local users)?

 Thank you,
 Milos

Re: Authorization for Ubuntu server and Windows WS not in a domain

2011-11-12 Thread Karl Wright 
Hi,

File acls in ManifoldCF would normally be handled by the repository
connector, during the process of indexing documents.  The
corresponding Linux authority information would include what Unix
groups a user was part of.  There is currently no authority connector
I am aware of that does that.  You could perhaps try to write your own
- I doubt it would be very hard to write.

Karl

On Sat, Nov 12, 2011 at 9:39 AM,  mi...@grf.bg.ac.rs wrote:
 Hello,
 So I could use MCF as a servise provider for authorization. That is nice
 but only if the formats agree (I'll check that).
 But still there is one question left: What authorization component to use
 if users and indexed files are not on the Windows servers, but on the
 Ubuntu server with Unix style file rights of type rwxr--r-- ?
 Also, could I use AD component for Windows not in a domain?


 The format of a ManifoldCF access token is a collaboration between an
 authority connector and repository connectors designed to work with
 that authority connector.  If you've already indexed documents using
 another mechanism, you can still use ManifoldCF's authority service to
 obtain access tokens for authenticated users.  This service is a web
 application accessible by http.  You can see what it returns (after
 defining an authority connection or two in the ManifoldCF UI) by
 simply using curl:

 curl
 http://localhost:8345/mcf-authority-service/UserACLs?username=myn...@mydomain.com

 ... and noting what is returned.  The access tokens indexed in Solr by
 your crawler will have to match the access token format returned by
 the authority service, or the Solr query modification components we
 supply will not work.

 Hope this helps,
 Karl

 On Fri, Nov 11, 2011 at 2:12 PM,  mi...@grf.bg.ac.rs wrote:
 Hello,

 I would like to test ManifoldCF (MCF) in order to achieve doc level
 security in my SOLR search app. Actually I already developed my own
 document crawler apart from the MCF framework. My test SOLR app is
 located
 on Ubunutu server (the indexed docs are located on that server). When I
 tried to use MCF Quick Start App I didn't know what authorization
 connector to use for this case (of course I would use MCF crawlers in
 this
 case to retrieve documents).

 I need MCF only for authorization. My crawler already uses Java 7
 capabilities to retrieve file ACL(Posix attributes) What classes do I
 need
 to use from MCF libraries to perform authorization based on Ubuntu
 server
 usernames?

 Finally, is it possible to perform authorization against Windows
 accounts
 on workstations not in a domain (local users)?

 Thank you,
 Milos