[jira] [Updated] (SYNCOPE-404) LDAP Roles lose entitlement upon LDAP synchronization
[ https://issues.apache.org/jira/browse/SYNCOPE-404?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Francesco Chicchiriccò updated SYNCOPE-404: --- Affects Version/s: 1.1.3 Fix Version/s: 1.2.0 1.1.4 Labels: entitlement (was: core entitlement syncope) LDAP Roles lose entitlement upon LDAP synchronization - Key: SYNCOPE-404 URL: https://issues.apache.org/jira/browse/SYNCOPE-404 Project: Syncope Issue Type: Bug Components: core Affects Versions: 1.1.0, 1.1.3 Reporter: bryan staley Labels: entitlement Fix For: 1.1.4, 1.2.0 After creating a new role in Syncope, and assigning that role to an LDAP resource, i added some Syncope entitlements to the new role. The entitlements were saved to the Syncope database, but upon the following synchronization with LDAP, the entitlements were removed. Steps: Create role (newrole) in syncope Assign ldap as a resource to newrole Assign entitlements to newrole Save newrole Wait for next LDAP synchronization task Examine newrole entitlements (they are empty for me) -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Resolved] (SYNCOPE-404) LDAP Roles lose entitlement upon LDAP synchronization
[ https://issues.apache.org/jira/browse/SYNCOPE-404?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Francesco Chicchiriccò resolved SYNCOPE-404. Resolution: Fixed Assignee: Francesco Chicchiriccò 1_1_X: http://svn.apache.org/r1505611 trunk: http://svn.apache.org/r1505612 LDAP Roles lose entitlement upon LDAP synchronization - Key: SYNCOPE-404 URL: https://issues.apache.org/jira/browse/SYNCOPE-404 Project: Syncope Issue Type: Bug Components: core Affects Versions: 1.1.0, 1.1.3 Reporter: bryan staley Assignee: Francesco Chicchiriccò Labels: entitlement Fix For: 1.1.4, 1.2.0 After creating a new role in Syncope, and assigning that role to an LDAP resource, i added some Syncope entitlements to the new role. The entitlements were saved to the Syncope database, but upon the following synchronization with LDAP, the entitlements were removed. Steps: Create role (newrole) in syncope Assign ldap as a resource to newrole Assign entitlements to newrole Save newrole Wait for next LDAP synchronization task Examine newrole entitlements (they are empty for me) -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira
Re: LDAP Synchronization
On 16/05/2013 16:44, Timothy wrote: Hi, it's me again :) I'm still trying to configure LDAP synchronization. I have followed the [1] guide but when I select org.apache.syncope.core.propagation.impl.LDAPMembershipPropagationActions as Actions Class in the sync task, I get the message that I shoud enable a replication plugin under configuration. Can't seem to find the thing though Where is such message coming from? It sounds strange. LDAPMembershipPropagationActions will enable the propagation of memberships from Syncope to LDAP, e.g. when creating user A with role R in Syncope, user A will be assigned to role R in LDAP as well, under some conditions. However, when I select org.apache.syncope.core.propagation.impl.DefaultSyncActions as Actions Class the synchronization works in one way. Users I have created in OpenDJ are visible in Syncope but any changes I do in Syncope have no effect in OpenDJ. Synchronized users are not assigned any resource by default: you will need to change the user template [2] for the LDAP synchronization task so that every new user synchronized from LDAP will also get the LDAP resource assigned. This will enable the propagation to LDAP of any modification occuring on Syncope. Anyway, have you read the Changelog section towards the end of [1]? There is something related to OpenDJ. Regards. [1] http://blog.tirasa.net/blogs/index.php/ilgrosso/unlock-full-ldap-features-in [2] https://cwiki.apache.org/confluence/display/SYNCOPE/Tasks#Tasks-SpecifyUserTemplate -- Francesco Chicchiriccò ASF Member, Apache Syncope PMC chair, Apache Cocoon PMC Member http://people.apache.org/~ilgrosso/
LDAP Synchronization
Hi, it's me again :) I'm still trying to configure LDAP synchronization. I have followed the [1] guide but when I select org.apache.syncope.core.propagation.impl.LDAPMembershipPropagationActions as Actions Class in the sync task, I get the message that I shoud enable a replication plugin under configuration. Can't seem to find the thing though However, when I select org.apache.syncope.core.propagation.impl.DefaultSyncActions as Actions Class the synchronization works in one way. Users I have created in OpenDJ are visible in Syncope but any changes I do in Syncope have no effect in OpenDJ. [1] http://blog.tirasa.net/blogs/index.php/ilgrosso/unlock-full-ldap-features-in Am I missing something obvious? Thanks and kind regards, Timothy -- View this message in context: http://syncope-dev.1063484.n5.nabble.com/LDAP-Synchronization-tp5713692.html Sent from the syncope-dev mailing list archive at Nabble.com.
