date:20050421

Security error(?) in editing psml

2005-04-21 Thread Stefano Bianchi

Dear ALL,
I am using J1.5.
I have a file based management of psml.
For user stefano/stefano I have the following psml:

?xml version="1.0" encoding="iso-8859-1"?>


No description found. Generic portlet
My Home







Home










http://jakarta.apache.org/jetspeed/channels/jetspeed.rss";>











http://www.xmlhack.com/rsscat.php";>































http://www.mozilla.org/news.rdf";>





http://jakarta.apache.org/jetspeed/channels/turbine.rss";>








When I try to modify this psml from the admin editor, I can click on the
default.psml link, get the editor page when panels are shown but as soon as
I click "save" or "Home" to modify the pane I get the message "You do not
have access to these portlets".

I thought it was because of that owner-only security property for the panel,
I changed it by editing the file, but I get the same.

Any hint?
Thank you
Stefano



Ing. Stefano Bianchi
Softeco Sismat S.p.A.
Via De Marini, 1 - WTC Tower
16149 Genoa (ITALY)
e-mail: [EMAIL PROTECTED]
tel: +39 010 60.26.368
fax: +39 010 60.26.350



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: Security error(?) in editing psml

2005-04-21 Thread Archana Turaga

Your problem is definitely related to the security-refs. Send your PSML
file and I can maybe take a look in my PSML editor here to see if there
are any problems. If possible your xreg definition too..

-Original Message-
From: Stefano Bianchi [mailto:[EMAIL PROTECTED] 
Sent: Thursday, April 21, 2005 2:15 AM
To: Jetspeed Users List
Subject: Security error(?) in editing psml

Dear ALL,
I am using J1.5.
I have a file based management of psml.
For user stefano/stefano I have the following psml:

?xml version="1.0" encoding="iso-8859-1"?>

No description found. Generic portlet
My Home

Home

http://jakarta.apache.org/jetspeed/channels/jetspeed.rss";>

http://www.xmlhack.com/rsscat.php";>

http://www.mozilla.org/news.rdf";>

http://jakarta.apache.org/jetspeed/channels/turbine.rss";>

When I try to modify this psml from the admin editor, I can click on the
default.psml link, get the editor page when panels are shown but as soon
as
I click "save" or "Home" to modify the pane I get the message "You do
not
have access to these portlets".

I thought it was because of that owner-only security property for the
panel,
I changed it by editing the file, but I get the same.

Any hint?
Thank you
Stefano

Ing. Stefano Bianchi
Softeco Sismat S.p.A.
Via De Marini, 1 - WTC Tower
16149 Genoa (ITALY)
e-mail: [EMAIL PROTECTED]
tel: +39 010 60.26.368
fax: +39 010 60.26.350

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

This e-mail transmission may contain information that is proprietary, 
privileged and/or confidential and is intended exclusively for the person(s) to 
whom it is addressed. Any use, copying, retention or disclosure by any person 
other than the intended recipient or the intended recipient's designees is 
strictly prohibited. If you are the intended recipient, you must treat the 
information in confidence and in accordance with all laws related to the 
privacy and confidentiality of such information.  If you are not the intended 
recipient or their designee, please notify the sender immediately by return 
e-mail and delete all copies of this email, including all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

$cslink and layouts/default.vm problem (Jetspeed-1.6-dev)

2005-04-21 Thread Eugene Apanasenko

Hi,
I have the same problem in 1.5. What I noticed is that the problem comes 
only when you disable left navigation bar. I think it has to do with the 
customization I've done, because, I'm not able to reproduce the problem 
using the sample war, even with the disabled left bar.

Although your suggestion takes care of the problem, it would be good to 
find out what's going wrong.

Thanks,
Eugene
  $cslink and layouts/default.vm problem (Jetspeed-1.6-dev)
Bjørn Vidar Remme
Wed, 02 Feb 2005 01:08:54 -0800
Hi, 

I just discovered that the line 

in layouts/default.vm sometimes returns the last URL generated by the
$clink object in one of the previous requestes. The statement above
would thus expand to something like 
href="http://mysite/theapp/portal/images/logos/somelogo.gif"; ;>.

I guess there is some sort of reuse of the actual java object here so
I changed the code to

Can anybody confirm this problem?
Regards, 
Bjørn Vidar Remme


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: Security error(?) in editing psml

2005-04-21 Thread Archana Turaga

The other thing that can be checked is what role the stephano user got
assigned. If it is guest then obviously the portlets will not be
accessible since the access is only for user and admin. You can either
check the User browser to check what role the user is or check the
database.

-Original Message-
From: Archana Turaga [mailto:[EMAIL PROTECTED] 
Sent: Thursday, April 21, 2005 5:16 AM
To: Jetspeed Users List
Subject: RE: Security error(?) in editing psml

Your problem is definitely related to the security-refs. Send your PSML
file and I can maybe take a look in my PSML editor here to see if there
are any problems. If possible your xreg definition too..

-Original Message-
From: Stefano Bianchi [mailto:[EMAIL PROTECTED] 
Sent: Thursday, April 21, 2005 2:15 AM
To: Jetspeed Users List
Subject: Security error(?) in editing psml

Dear ALL,
I am using J1.5.
I have a file based management of psml.
For user stefano/stefano I have the following psml:

?xml version="1.0" encoding="iso-8859-1"?>

No description found. Generic portlet
My Home

Home

http://jakarta.apache.org/jetspeed/channels/jetspeed.rss";>

http://www.xmlhack.com/rsscat.php";>

http://www.mozilla.org/news.rdf";>

http://jakarta.apache.org/jetspeed/channels/turbine.rss";>

When I try to modify this psml from the admin editor, I can click on the
default.psml link, get the editor page when panels are shown but as soon
as
I click "save" or "Home" to modify the pane I get the message "You do
not
have access to these portlets".

I thought it was because of that owner-only security property for the
panel,
I changed it by editing the file, but I get the same.

Any hint?
Thank you
Stefano

Ing. Stefano Bianchi
Softeco Sismat S.p.A.
Via De Marini, 1 - WTC Tower
16149 Genoa (ITALY)
e-mail: [EMAIL PROTECTED]
tel: +39 010 60.26.368
fax: +39 010 60.26.350

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

This e-mail transmission may contain information that is proprietary,
privileged and/or confidential and is intended exclusively for the
person(s) to whom it is addressed. Any use, copying, retention or
disclosure by any person other than the intended recipient or the
intended recipient's designees is strictly prohibited. If you are the
intended recipient, you must treat the information in confidence and in
accordance with all laws related to the privacy and confidentiality of
such information.  If you are not the intended recipient or their
designee, please notify the sender immediately by return e-mail and
delete all copies of this email, including all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

This e-mail transmission may contain information that is proprietary, 
privileged and/or confidential and is intended exclusively for the person(s) to 
whom it is addressed. Any use, copying, retention or disclosure by any person 
other than the intended recipient or the intended recipient's designees is 
strictly prohibited. If you are the intended recipient, you must treat the 
information in confidence and in accordance with all laws related to the 
privacy and confidentiality of such information.  If you are not the intended 
recipient or their designee, please notify the sender immediately by return 
e-mail and delete all copies of this email, including all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

browser title changes to $data.profile.document.portlets.getMetaInfo().title in password reminder

2005-04-21 Thread Eugene Apanasenko

Hi All,
I use Jetspeed 1.5. Does anyone know why the browser title changes to 
$data.profile.document.portlets.getMetaInfo().title when you click on 
"Email Password" button in LoginHelp template.

Thanks a lot,
Eugene
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: Security error(?) in editing psml

2005-04-21 Thread Stefano Bianchi

The role is user!
But please consider I can not access the portlets from the admin psml editor
interface, not as stefano.

- Original Message - 
From: "Archana Turaga" <[EMAIL PROTECTED]>
To: "Jetspeed Users List" 
Sent: Thursday, April 21, 2005 4:37 PM
Subject: RE: Security error(?) in editing psml

The other thing that can be checked is what role the stephano user got
assigned. If it is guest then obviously the portlets will not be
accessible since the access is only for user and admin. You can either
check the User browser to check what role the user is or check the
database.

-Original Message-
From: Archana Turaga [mailto:[EMAIL PROTECTED]
Sent: Thursday, April 21, 2005 5:16 AM
To: Jetspeed Users List
Subject: RE: Security error(?) in editing psml

Your problem is definitely related to the security-refs. Send your PSML
file and I can maybe take a look in my PSML editor here to see if there
are any problems. If possible your xreg definition too..

-Original Message-
From: Stefano Bianchi [mailto:[EMAIL PROTECTED]
Sent: Thursday, April 21, 2005 2:15 AM
To: Jetspeed Users List
Subject: Security error(?) in editing psml

Dear ALL,
I am using J1.5.
I have a file based management of psml.
For user stefano/stefano I have the following psml:

?xml version="1.0" encoding="iso-8859-1"?>

No description found. Generic portlet
My Home

Home

http://jakarta.apache.org/jetspeed/channels/jetspeed.rss";>

http://www.xmlhack.com/rsscat.php";>

http://www.mozilla.org/news.rdf";>

http://jakarta.apache.org/jetspeed/channels/turbine.rss";>

When I try to modify this psml from the admin editor, I can click on the
default.psml link, get the editor page when panels are shown but as soon
as
I click "save" or "Home" to modify the pane I get the message "You do
not
have access to these portlets".

I thought it was because of that owner-only security property for the
panel,
I changed it by editing the file, but I get the same.

Any hint?
Thank you
Stefano

Ing. Stefano Bianchi
Softeco Sismat S.p.A.
Via De Marini, 1 - WTC Tower
16149 Genoa (ITALY)
e-mail: [EMAIL PROTECTED]
tel: +39 010 60.26.368
fax: +39 010 60.26.350

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

This e-mail transmission may contain information that is proprietary,
privileged and/or confidential and is intended exclusively for the
person(s) to whom it is addressed. Any use, copying, retention or
disclosure by any person other than the intended recipient or the
intended recipient's designees is strictly prohibited. If you are the
intended recipient, you must treat the information in confidence and in
accordance with all laws related to the privacy and confidentiality of
such information.  If you are not the intended recipient or their
designee, please notify the sender immediately by return e-mail and
delete all copies of this email, including all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

This e-mail transmission may contain information that is proprietary,
privileged and/or confidential and is intended exclusively for the person(s)
to whom it is addressed. Any use, copying, retention or disclosure by any
person other than the intended recipient or the intended recipient's
designees is strictly prohibited. If you are the intended recipient, you
must treat the information in confidence and in accordance with all laws
related to the privacy and confidentiality of such information.  If you are
not the intended recipient or their designee, please notify the sender
immediately by return e-mail and delete all copies of this email, including
all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

-
To u

RE: Security error(?) in editing psml

2005-04-21 Thread Archana Turaga

Hmmm...I actually just took the PSML that you have in the email and put
the file in my PSML database here and it came up fine without any
problem. 

The other thing to check is the security-ref on the PortletCustomizer in
admin.xreg. If it is user-only make it admin-only and try what you are
doing again.

-Original Message-
From: Stefano Bianchi [mailto:[EMAIL PROTECTED] 
Sent: Thursday, April 21, 2005 9:46 AM
To: Jetspeed Users List
Subject: Re: Security error(?) in editing psml

The role is user!
But please consider I can not access the portlets from the admin psml
editor
interface, not as stefano.

- Original Message - 
From: "Archana Turaga" <[EMAIL PROTECTED]>
To: "Jetspeed Users List" 
Sent: Thursday, April 21, 2005 4:37 PM
Subject: RE: Security error(?) in editing psml


The other thing that can be checked is what role the stephano user got
assigned. If it is guest then obviously the portlets will not be
accessible since the access is only for user and admin. You can either
check the User browser to check what role the user is or check the
database.

-Original Message-
From: Archana Turaga [mailto:[EMAIL PROTECTED]
Sent: Thursday, April 21, 2005 5:16 AM
To: Jetspeed Users List
Subject: RE: Security error(?) in editing psml

Your problem is definitely related to the security-refs. Send your PSML
file and I can maybe take a look in my PSML editor here to see if there
are any problems. If possible your xreg definition too..

-Original Message-
From: Stefano Bianchi [mailto:[EMAIL PROTECTED]
Sent: Thursday, April 21, 2005 2:15 AM
To: Jetspeed Users List
Subject: Security error(?) in editing psml

Dear ALL,
I am using J1.5.
I have a file based management of psml.
For user stefano/stefano I have the following psml:

?xml version="1.0" encoding="iso-8859-1"?>


No description found. Generic portlet
My Home







Home










http://jakarta.apache.org/jetspeed/channels/jetspeed.rss";>











http://www.xmlhack.com/rsscat.php";>































http://www.mozilla.org/news.rdf";>





http://jakarta.apache.org/jetspeed/channels/turbine.rss";>








When I try to modify this psml from the admin editor, I can click on the
default.psml link, get the editor page when panels are shown but as soon
as
I click "save" or "Home" to modify the pane I get the message "You do
not
have access to these portlets".

I thought it was because of that owner-only security property for the
panel,
I changed it by editing the file, but I get the same.

Any hint?
Thank you
Stefano



Ing. Stefano Bianchi
Softeco Sismat S.p.A.
Via De Marini, 1 - WTC Tower
16149 Genoa (ITALY)
e-mail: [EMAIL PROTECTED]
tel: +39 010 60.26.368
fax: +39 010 60.26.350



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail transmission may contain information that is proprietary,
privileged and/or confidential and is intended exclusively for the
person(s) to whom it is addressed. Any use, copying, retention or
disclosure by any person other than the intended recipient or the
intended recipient's designees is strictly prohibited. If you are the
intended recipient, you must treat the information in confidence and in
accordance with all laws related to the privacy and confidentiality of
such information.  If you are not the intended recipient or their
designee, please notify the sender immediately by return e-mail and
delete all copies of this email, including all attachments.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


This e-mail transmission may contain information that is proprietary,
privileged and/or confidential and is intended exclusively for the
person(s)
to whom it is addressed. Any use, copying, retention or disclosure by
any
person other than the intended recipient or the intended recipient's
designees is strictly prohibited. If you are the intended recipient, you
must treat the information in confidence and in accordance wi

Accessing Role and Group info

2005-04-21 Thread Bernie, Miles R $UK - London$

Hello,
Perhaps you can help?
I'm trying to write a Forum portlet as a means to learn all about
portlets / struts bridges and of course the wonderful Jetspeed2 itself!
In the portlet I'm writing I'd like to provide access to Forums based on
a users Role membership.
I understand that JAAS is being used with a RDBMS login module but I am
unsure how I grab a list of all the users roles to allow a filter of
those Forums available to the user.
Is it the correct approach to use the users role in this manner or would
I be better of trying to setup user preferences?
I've looked at the Jetspeed2 Security Docs which mentions the use of
user.getSubject().getPrincipals() to provide a list of the users
associated roles but I'm not sure how to first access the user! I can of
course access the Princpial using the httprequest.getUserPrincipal() but
I really need access to the complete list of a users Roles.

In essence I'd like to capture the rich portal defined user info around
Role and Group access to use it in a portlet.

Any thoughts or tips would be very useful.

Kind regards, 

m
 
IMPORTANT NOTICE
If you have received this e-mail in error or wish to read our e-mail disclaimer 
statement and monitoring policy, please refer to the statement below or contact 
the sender.
This communication is from Deloitte MCS Limited whose registered office is at 
Hill House, 1 Little New Street, London EC4A 3TR, United Kingdom.  Registered 
in England No 3311052.  
This communication and any attachments contain information which is 
confidential and may also be privileged.  It is for the exclusive use of the 
intended recipient(s).  If you are not the intended recipient(s) please note 
that any form of disclosure, distribution, copying or use of this communication 
or the information in it or in any attachments is strictly prohibited and may 
be unlawful.  If you have received this communication in error, please return 
it with the title "received in error" to [EMAIL PROTECTED] then delete the 
email and destroy any copies of it.
E-mail communications cannot be guaranteed to be secure or error free, as 
information could be intercepted, corrupted, amended, lost, destroyed, arrive 
late or incomplete, or contain viruses.  We do not accept liability for any 
such matters or their consequences.  Anyone who communicates with us by e-mail 
is taken to accept the risks in doing so.
When addressed to our clients, any opinions or advice contained in this e-mail 
and any attachments are subject to the terms and conditions expressed in the 
governing Deloitte MCS Limited client engagement letter.
Opinions, conclusions and other information in this e-mail and any attachments 
which do not relate to the official business of the firm are neither given nor 
endorsed by it.

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

HEADS UP: Migration of jetspeed repositories to subversion

2005-04-21 Thread Santiago Gala

I created a JIRA issue WRT the migration of lists from
jakarta.apache.org to portals.apache.org and moving jetspeed
repositories from cvs to subversion:

http://issues.apache.org/jira/browse/INFRA-302

We are trying to set up a schedule for the migration. The moment seems
good, I hope nobody has real issues with subversion now that there is a
eclipse plugin and support has greatly improved.

If nobody has major problems we can proceed with the migration.

WDYT?

Regards
-- 
Santiago Gala <[EMAIL PROTECTED]>
High Sierra Technology, SLU


signature.asc
Description: Esta parte del mensaje =?ISO-8859-1?Q?est=E1?= firmada	digitalmente

Re: HEADS UP: Migration of jetspeed repositories to subversion

2005-04-21 Thread Ate Douma

Santiago Gala wrote:
I created a JIRA issue WRT the migration of lists from
jakarta.apache.org to portals.apache.org and moving jetspeed
repositories from cvs to subversion:
http://issues.apache.org/jira/browse/INFRA-302
We are trying to set up a schedule for the migration. The moment seems
good, I hope nobody has real issues with subversion now that there is a
eclipse plugin and support has greatly improved.
If nobody has major problems we can proceed with the migration.
WDYT?
+1, ASAP
Regards, Ate
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

J2 Security Customization

2005-04-21 Thread Santiago Urrizola

Hi, i wan t to change a part of the security model of J2, to adapt they on mi 
organization model.
Basically i need to change the part where J2, 
1 - retrive users from de DataBase. (my own tables, not the default tables of 
the j2), and obiously where save new/modified users
2 - autenticate the passwords of login users
3 - retrive all groups and roles, and users in a group role.

I see the sources for a while, and see a lot of places where i can change this, 
but i dont know where is the correct place (class or classes) to change it. I 
see UserManager, and think its posible to create a new UserManager, but this 
class dont have full control of the users, i know tht i need to change the 
implementor of some interfaces in the *.xml in the assembly director.
But can some one tell me how classes i must modify (or create new implementor 
for this interaces) ???
Thank you very very very very much

Santiago

Re: J2 Security Customization

2005-04-21 Thread Randy Watler

Santiago,
There are multiple solutions to this common requirement. The easiest is 
probably to implement your own SecurityValve. Just make sure you use the 
existing o/a/j/security.impl.SecurityValveImpl.java as a template. Then 
there is JAAS...

Scott can probably comment in more detail.
Randy
Santiago Urrizola wrote:
Hi, i wan t to change a part of the security model of J2, to adapt they on mi organization model.
Basically i need to change the part where J2, 
1 - retrive users from de DataBase. (my own tables, not the default tables of the j2), and obiously where save new/modified users
2 - autenticate the passwords of login users
3 - retrive all groups and roles, and users in a group role.

I see the sources for a while, and see a lot of places where i can change this, 
but i dont know where is the correct place (class or classes) to change it. I 
see UserManager, and think its posible to create a new UserManager, but this 
class dont have full control of the users, i know tht i need to change the 
implementor of some interfaces in the *.xml in the assembly director.
But can some one tell me how classes i must modify (or create new implementor 
for this interaces) ???
Thank you very very very very much
Santiago
 


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: J2 Security Customization

2005-04-21 Thread Santiago Urrizola

I see, his class. But i need to change for example: the data base acces,
tables, columns, (the database model is diferent), a so on  i think
there is more classes ... isn't it ?

- Original Message - 
From: "Randy Watler" <[EMAIL PROTECTED]>
To: "Jetspeed Users List" 
Sent: Thursday, April 21, 2005 4:59 PM
Subject: Re: J2 Security Customization


> Santiago,
>
> There are multiple solutions to this common requirement. The easiest is
> probably to implement your own SecurityValve. Just make sure you use the
> existing o/a/j/security.impl.SecurityValveImpl.java as a template. Then
> there is JAAS...
>
> Scott can probably comment in more detail.
>
> Randy
>
> Santiago Urrizola wrote:
>
> >Hi, i wan t to change a part of the security model of J2, to adapt they
on mi organization model.
> >Basically i need to change the part where J2,
> >1 - retrive users from de DataBase. (my own tables, not the default
tables of the j2), and obiously where save new/modified users
> >2 - autenticate the passwords of login users
> >3 - retrive all groups and roles, and users in a group role.
> >
> >I see the sources for a while, and see a lot of places where i can change
this, but i dont know where is the correct place (class or classes) to
change it. I see UserManager, and think its posible to create a new
UserManager, but this class dont have full control of the users, i know tht
i need to change the implementor of some interfaces in the *.xml in the
assembly director.
> >But can some one tell me how classes i must modify (or create new
implementor for this interaces) ???
> >Thank you very very very very much
> >
> >Santiago
> >
> >
> >
> >
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>




-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: J2 Security Customization

2005-04-21 Thread Scott T Weaver

Yes, writing a security valve is very simple since J2 uses standard
javax.security.Subject for authorization.  I have attached the code I use
that builds a Subject from our home grown SSO application.

Hth,
Scott

> -Original Message-
> From: Randy Watler [mailto:[EMAIL PROTECTED]
> Sent: Thursday, April 21, 2005 4:00 PM
> To: Jetspeed Users List
> Subject: Re: J2 Security Customization
> 
> Santiago,
> 
> There are multiple solutions to this common requirement. The easiest is
> probably to implement your own SecurityValve. Just make sure you use the
> existing o/a/j/security.impl.SecurityValveImpl.java as a template. Then
> there is JAAS...
> 
> Scott can probably comment in more detail.
> 
> Randy
> 
> Santiago Urrizola wrote:
> 
> >Hi, i wan t to change a part of the security model of J2, to adapt they
> on mi organization model.
> >Basically i need to change the part where J2,
> >1 - retrive users from de DataBase. (my own tables, not the default
> tables of the j2), and obiously where save new/modified users
> >2 - autenticate the passwords of login users
> >3 - retrive all groups and roles, and users in a group role.
> >
> >I see the sources for a while, and see a lot of places where i can change
> this, but i dont know where is the correct place (class or classes) to
> change it. I see UserManager, and think its posible to create a new
> UserManager, but this class dont have full control of the users, i know
> tht i need to change the implementor of some interfaces in the *.xml in
> the assembly director.
> >But can some one tell me how classes i must modify (or create new
> implementor for this interaces) ???
> >Thank you very very very very much
> >
> >Santiago
> >
> >
> >
> >
> 
> 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]

/*
 * Created on Jun 21, 2004
 *
 * TODO To change the template for this generated file go to
 * Window - Preferences - Java - Code Generation - Code and Comments
 */
package com.ugs.it.jetspeed.valves;

import java.io.IOException;
import java.security.Principal;
import java.util.ArrayList;
import java.util.Collections;
import java.util.HashSet;
import java.util.Iterator;
import java.util.List;
import java.util.Set;

import javax.security.auth.Subject;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

import org.apache.commons.configuration.Configuration;
import org.apache.commons.logging.Log;
import org.apache.commons.logging.LogFactory;
import org.apache.jetspeed.pipeline.PipelineException;
import org.apache.jetspeed.pipeline.valve.SecurityValve;
import org.apache.jetspeed.pipeline.valve.ValveContext;
import org.apache.jetspeed.request.RequestContext;
import org.apache.jetspeed.security.SecurityHelper;
import org.apache.jetspeed.security.UserPrincipal;
import org.apache.jetspeed.security.impl.AbstractSecurityValve;
import org.apache.jetspeed.security.impl.RolePrincipalImpl;
import org.apache.jetspeed.security.impl.UserPrincipalImpl;
import org.springframework.beans.BeansException;
import org.springframework.beans.factory.BeanFactory;
import org.springframework.beans.factory.BeanFactoryAware;

import com.ugs.it.jetspeed.security.ProductPrincipal;
import com.ugs.it.jetspeed.security.ZonePrincipal;
import com.ugs.it.salescentre.user.MissingCookieException;
import com.ugs.it.salescentre.user.MissingUserException;
import com.ugs.it.salescentre.user.SalesCentreUser;
import com.ugs.it.salescentre.util.spring.HttpServletRequestFactoryBean;

/**
 * @author mailto:[EMAIL PROTECTED]">Scott T. Weaver 
 * 
 */
public class WebKeySecurityValve extends AbstractSecurityValve implements
SecurityValve, BeanFactoryAware
{
protected final String WEBKEY_COOKIE = "WEBKEY_SSO";
protected final Log log = LogFactory.getLog(WebKeySecurityValve.class);
protected String webKeyServer;
private Configuration config;
private BeanFactory beanFactory;

public WebKeySecurityValve(Configuration config)
{
this.config = config;
}

/**
 * 
 * invoke
 * 
 * 
 * @see 
org.apache.jetspeed.pipeline.valve.Valve#invoke(org.apache.jetspeed.request.RequestContext,
 *  org.apache.jetspeed.pipeline.valve.ValveContext)
 * @param arg0
 * @param arg1
 * @throws org.apache.jetspeed.pipeline.PipelineException
 */
public void invoke(RequestContext rc, ValveContext vc)
throws PipelineException
{
HttpServletRequest request = rc.getRequest();
HttpServletResponse response = rc.getResponse();

HttpServletRequestFactoryBean requestFactoryBean = 
(HttpServletRequestFactoryBean) beanFactory
.getBean("&HttpServletRequest");
requestFactoryBean.setRequest((HttpServletRequest) request);

try
{
SalesCentreUser user = (SalesCentreUser) beanFactory
.getBean("SalesCentreUser")

Re: J2 Security Customization

2005-04-21 Thread Santiago Urrizola

Thanks a lot !!
But so, want is the usefull of the UserManager, RoleManager, and all the
other interfaces ...
the class you send me work at the request level, its there anuy posibility
to change only the base layer of the aplication, like, the getUser(String
user) method of the UserManager or something like that ??
or its convenient, to change al the clases begin with the SecurityValve ???


- Original Message - 
From: "Scott T Weaver" <[EMAIL PROTECTED]>
To: "'Jetspeed Users List'" 
Sent: Thursday, April 21, 2005 5:13 PM
Subject: RE: J2 Security Customization


> Yes, writing a security valve is very simple since J2 uses standard
> javax.security.Subject for authorization.  I have attached the code I use
> that builds a Subject from our home grown SSO application.
>
> Hth,
> Scott
>
> > -Original Message-
> > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > Sent: Thursday, April 21, 2005 4:00 PM
> > To: Jetspeed Users List
> > Subject: Re: J2 Security Customization
> >
> > Santiago,
> >
> > There are multiple solutions to this common requirement. The easiest is
> > probably to implement your own SecurityValve. Just make sure you use the
> > existing o/a/j/security.impl.SecurityValveImpl.java as a template. Then
> > there is JAAS...
> >
> > Scott can probably comment in more detail.
> >
> > Randy
> >
> > Santiago Urrizola wrote:
> >
> > >Hi, i wan t to change a part of the security model of J2, to adapt they
> > on mi organization model.
> > >Basically i need to change the part where J2,
> > >1 - retrive users from de DataBase. (my own tables, not the default
> > tables of the j2), and obiously where save new/modified users
> > >2 - autenticate the passwords of login users
> > >3 - retrive all groups and roles, and users in a group role.
> > >
> > >I see the sources for a while, and see a lot of places where i can
change
> > this, but i dont know where is the correct place (class or classes) to
> > change it. I see UserManager, and think its posible to create a new
> > UserManager, but this class dont have full control of the users, i know
> > tht i need to change the implementor of some interfaces in the *.xml in
> > the assembly director.
> > >But can some one tell me how classes i must modify (or create new
> > implementor for this interaces) ???
> > >Thank you very very very very much
> > >
> > >Santiago
> > >
> > >
> > >
> > >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
>
>






> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]




-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: J2 Security Customization

2005-04-21 Thread Frank Villarreal

Scott,

... man this is excellent.  I've been struggling with swapping out J2's
security for days upon days.  Being that the docs on security are somewhat
sparse didn't help.  I didn't want to even attempt to implement JAAS.
Taking a look at you attached code cleared a few things up.  If I reverse
engineer your example for my custom needs and reconfigure the files in
"WEB-INF/assembly" to use this class as the default security valve ... other
than breaking PAM application ... is there anything else that has to be
"reimplemented" to get a custom authentication & authorization valve
functional in J2?

- Frank



> -Original Message-
> From: Scott T Weaver [mailto:[EMAIL PROTECTED]
> Sent: Thursday, April 21, 2005 03:13 PM
> To: 'Jetspeed Users List'
> Subject: RE: J2 Security Customization
>
>
> Yes, writing a security valve is very simple since J2 uses standard
> javax.security.Subject for authorization.  I have attached the code I use
> that builds a Subject from our home grown SSO application.
>
> Hth,
> Scott
>
> > -Original Message-
> > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > Sent: Thursday, April 21, 2005 4:00 PM
> > To: Jetspeed Users List
> > Subject: Re: J2 Security Customization
> >
> > Santiago,
> >
> > There are multiple solutions to this common requirement. The easiest is
> > probably to implement your own SecurityValve. Just make sure you use the
> > existing o/a/j/security.impl.SecurityValveImpl.java as a template. Then
> > there is JAAS...
> >
> > Scott can probably comment in more detail.
> >
> > Randy
> >
> > Santiago Urrizola wrote:
> >
> > >Hi, i wan t to change a part of the security model of J2, to adapt they
> > on mi organization model.
> > >Basically i need to change the part where J2,
> > >1 - retrive users from de DataBase. (my own tables, not the default
> > tables of the j2), and obiously where save new/modified users
> > >2 - autenticate the passwords of login users
> > >3 - retrive all groups and roles, and users in a group role.
> > >
> > >I see the sources for a while, and see a lot of places where i
> can change
> > this, but i dont know where is the correct place (class or classes) to
> > change it. I see UserManager, and think its posible to create a new
> > UserManager, but this class dont have full control of the users, i know
> > tht i need to change the implementor of some interfaces in the *.xml in
> > the assembly director.
> > >But can some one tell me how classes i must modify (or create new
> > implementor for this interaces) ???
> > >Thank you very very very very much
> > >
> > >Santiago
> > >
> > >
> > >
> > >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: J2 Security Customization

2005-04-21 Thread Scott T Weaver

Nope, I just removed all of the custom J2 security valve stuff and stuck
mine in palce of it.  Here is an example of my current pipeline config.

-Scott

> -Original Message-
> From: Frank Villarreal [mailto:[EMAIL PROTECTED]
> Sent: Thursday, April 21, 2005 4:37 PM
> To: Jetspeed Users List
> Subject: RE: J2 Security Customization
> 
> Scott,
> 
> ... man this is excellent.  I've been struggling with swapping out J2's
> security for days upon days.  Being that the docs on security are somewhat
> sparse didn't help.  I didn't want to even attempt to implement JAAS.
> Taking a look at you attached code cleared a few things up.  If I reverse
> engineer your example for my custom needs and reconfigure the files in
> "WEB-INF/assembly" to use this class as the default security valve ...
> other
> than breaking PAM application ... is there anything else that has to be
> "reimplemented" to get a custom authentication & authorization valve
> functional in J2?
> 
> - Frank
> 
> 
> 
> > -Original Message-
> > From: Scott T Weaver [mailto:[EMAIL PROTECTED]
> > Sent: Thursday, April 21, 2005 03:13 PM
> > To: 'Jetspeed Users List'
> > Subject: RE: J2 Security Customization
> >
> >
> > Yes, writing a security valve is very simple since J2 uses standard
> > javax.security.Subject for authorization.  I have attached the code I
> use
> > that builds a Subject from our home grown SSO application.
> >
> > Hth,
> > Scott
> >
> > > -Original Message-
> > > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > > Sent: Thursday, April 21, 2005 4:00 PM
> > > To: Jetspeed Users List
> > > Subject: Re: J2 Security Customization
> > >
> > > Santiago,
> > >
> > > There are multiple solutions to this common requirement. The easiest
> is
> > > probably to implement your own SecurityValve. Just make sure you use
> the
> > > existing o/a/j/security.impl.SecurityValveImpl.java as a template.
> Then
> > > there is JAAS...
> > >
> > > Scott can probably comment in more detail.
> > >
> > > Randy
> > >
> > > Santiago Urrizola wrote:
> > >
> > > >Hi, i wan t to change a part of the security model of J2, to adapt
> they
> > > on mi organization model.
> > > >Basically i need to change the part where J2,
> > > >1 - retrive users from de DataBase. (my own tables, not the default
> > > tables of the j2), and obiously where save new/modified users
> > > >2 - autenticate the passwords of login users
> > > >3 - retrive all groups and roles, and users in a group role.
> > > >
> > > >I see the sources for a while, and see a lot of places where i
> > can change
> > > this, but i dont know where is the correct place (class or classes) to
> > > change it. I see UserManager, and think its posible to create a new
> > > UserManager, but this class dont have full control of the users, i
> know
> > > tht i need to change the implementor of some interfaces in the *.xml
> in
> > > the assembly director.
> > > >But can some one tell me how classes i must modify (or create new
> > > implementor for this interaces) ???
> > > >Thank you very very very very much
> > > >
> > > >Santiago
> > > >
> > > >
> > > >
> > > >
> > >
> > >
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> 
> 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]


http://www.springframework.org/dtd/spring-beans.dtd";>


  
  
   
	  	
   
   
 
  
   
   	UGSWebkeyPipeline
   
   

	
	
	

	
	
	
	
	


 

-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: J2 Security Customization

2005-04-21 Thread Santiago Urrizola

Scot, its really grate thanks !
i clarifiy mi requeriments with this:
   I must let new users to register in the portal. (create new users)
   This class, have anithing in common with this process ???

- Original Message - 
From: "Frank Villarreal" <[EMAIL PROTECTED]>
To: "Jetspeed Users List" 
Sent: Thursday, April 21, 2005 5:37 PM
Subject: RE: J2 Security Customization


> Scott,
>
> ... man this is excellent.  I've been struggling with swapping out J2's
> security for days upon days.  Being that the docs on security are somewhat
> sparse didn't help.  I didn't want to even attempt to implement JAAS.
> Taking a look at you attached code cleared a few things up.  If I reverse
> engineer your example for my custom needs and reconfigure the files in
> "WEB-INF/assembly" to use this class as the default security valve ...
other
> than breaking PAM application ... is there anything else that has to be
> "reimplemented" to get a custom authentication & authorization valve
> functional in J2?
>
> - Frank
>
>
>
> > -Original Message-
> > From: Scott T Weaver [mailto:[EMAIL PROTECTED]
> > Sent: Thursday, April 21, 2005 03:13 PM
> > To: 'Jetspeed Users List'
> > Subject: RE: J2 Security Customization
> >
> >
> > Yes, writing a security valve is very simple since J2 uses standard
> > javax.security.Subject for authorization.  I have attached the code I
use
> > that builds a Subject from our home grown SSO application.
> >
> > Hth,
> > Scott
> >
> > > -Original Message-
> > > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > > Sent: Thursday, April 21, 2005 4:00 PM
> > > To: Jetspeed Users List
> > > Subject: Re: J2 Security Customization
> > >
> > > Santiago,
> > >
> > > There are multiple solutions to this common requirement. The easiest
is
> > > probably to implement your own SecurityValve. Just make sure you use
the
> > > existing o/a/j/security.impl.SecurityValveImpl.java as a template.
Then
> > > there is JAAS...
> > >
> > > Scott can probably comment in more detail.
> > >
> > > Randy
> > >
> > > Santiago Urrizola wrote:
> > >
> > > >Hi, i wan t to change a part of the security model of J2, to adapt
they
> > > on mi organization model.
> > > >Basically i need to change the part where J2,
> > > >1 - retrive users from de DataBase. (my own tables, not the default
> > > tables of the j2), and obiously where save new/modified users
> > > >2 - autenticate the passwords of login users
> > > >3 - retrive all groups and roles, and users in a group role.
> > > >
> > > >I see the sources for a while, and see a lot of places where i
> > can change
> > > this, but i dont know where is the correct place (class or classes) to
> > > change it. I see UserManager, and think its posible to create a new
> > > UserManager, but this class dont have full control of the users, i
know
> > > tht i need to change the implementor of some interfaces in the *.xml
in
> > > the assembly director.
> > > >But can some one tell me how classes i must modify (or create new
> > > implementor for this interaces) ???
> > > >Thank you very very very very much
> > > >
> > > >Santiago
> > > >
> > > >
> > > >
> > > >
> > >
> > >
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
>
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>




-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: J2 Security Customization

2005-04-21 Thread Scott T Weaver

We don't do any user management in the portal, as that is all taken care of
through other means which we do not concern ourselves with currently.

Regards,
Scott

> -Original Message-
> From: Santiago Urrizola [mailto:[EMAIL PROTECTED]
> Sent: Thursday, April 21, 2005 4:29 PM
> To: Jetspeed Users List
> Subject: Re: J2 Security Customization
> 
> Thanks a lot !!
> But so, want is the usefull of the UserManager, RoleManager, and all the
> other interfaces ...
> the class you send me work at the request level, its there anuy posibility
> to change only the base layer of the aplication, like, the getUser(String
> user) method of the UserManager or something like that ??
> or its convenient, to change al the clases begin with the SecurityValve
> ???
> 
> 
> - Original Message -
> From: "Scott T Weaver" <[EMAIL PROTECTED]>
> To: "'Jetspeed Users List'" 
> Sent: Thursday, April 21, 2005 5:13 PM
> Subject: RE: J2 Security Customization
> 
> 
> > Yes, writing a security valve is very simple since J2 uses standard
> > javax.security.Subject for authorization.  I have attached the code I
> use
> > that builds a Subject from our home grown SSO application.
> >
> > Hth,
> > Scott
> >
> > > -Original Message-
> > > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > > Sent: Thursday, April 21, 2005 4:00 PM
> > > To: Jetspeed Users List
> > > Subject: Re: J2 Security Customization
> > >
> > > Santiago,
> > >
> > > There are multiple solutions to this common requirement. The easiest
> is
> > > probably to implement your own SecurityValve. Just make sure you use
> the
> > > existing o/a/j/security.impl.SecurityValveImpl.java as a template.
> Then
> > > there is JAAS...
> > >
> > > Scott can probably comment in more detail.
> > >
> > > Randy
> > >
> > > Santiago Urrizola wrote:
> > >
> > > >Hi, i wan t to change a part of the security model of J2, to adapt
> they
> > > on mi organization model.
> > > >Basically i need to change the part where J2,
> > > >1 - retrive users from de DataBase. (my own tables, not the default
> > > tables of the j2), and obiously where save new/modified users
> > > >2 - autenticate the passwords of login users
> > > >3 - retrive all groups and roles, and users in a group role.
> > > >
> > > >I see the sources for a while, and see a lot of places where i can
> change
> > > this, but i dont know where is the correct place (class or classes) to
> > > change it. I see UserManager, and think its posible to create a new
> > > UserManager, but this class dont have full control of the users, i
> know
> > > tht i need to change the implementor of some interfaces in the *.xml
> in
> > > the assembly director.
> > > >But can some one tell me how classes i must modify (or create new
> > > implementor for this interaces) ???
> > > >Thank you very very very very much
> > > >
> > > >Santiago
> > > >
> > > >
> > > >
> > > >
> > >
> > >
> > > -
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> >
> 
> 
> --
> --
> 
> 
> 
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> 
> 
> 
> 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: J2 Security Customization

2005-04-21 Thread Scott T Weaver

Our registration process is very controlled and goes through a work flow and
verification process.  The process is handled by an entirely different
department.

-Scott

> -Original Message-
> From: Santiago Urrizola [mailto:[EMAIL PROTECTED]
> Sent: Thursday, April 21, 2005 4:38 PM
> To: Jetspeed Users List
> Subject: Re: J2 Security Customization
> 
> Scot, its really grate thanks !
> i clarifiy mi requeriments with this:
>I must let new users to register in the portal. (create new users)
>This class, have anithing in common with this process ???
> 
> - Original Message -
> From: "Frank Villarreal" <[EMAIL PROTECTED]>
> To: "Jetspeed Users List" 
> Sent: Thursday, April 21, 2005 5:37 PM
> Subject: RE: J2 Security Customization
> 
> 
> > Scott,
> >
> > ... man this is excellent.  I've been struggling with swapping out J2's
> > security for days upon days.  Being that the docs on security are
> somewhat
> > sparse didn't help.  I didn't want to even attempt to implement JAAS.
> > Taking a look at you attached code cleared a few things up.  If I
> reverse
> > engineer your example for my custom needs and reconfigure the files in
> > "WEB-INF/assembly" to use this class as the default security valve ...
> other
> > than breaking PAM application ... is there anything else that has to be
> > "reimplemented" to get a custom authentication & authorization valve
> > functional in J2?
> >
> > - Frank
> >
> >
> >
> > > -Original Message-
> > > From: Scott T Weaver [mailto:[EMAIL PROTECTED]
> > > Sent: Thursday, April 21, 2005 03:13 PM
> > > To: 'Jetspeed Users List'
> > > Subject: RE: J2 Security Customization
> > >
> > >
> > > Yes, writing a security valve is very simple since J2 uses standard
> > > javax.security.Subject for authorization.  I have attached the code I
> use
> > > that builds a Subject from our home grown SSO application.
> > >
> > > Hth,
> > > Scott
> > >
> > > > -Original Message-
> > > > From: Randy Watler [mailto:[EMAIL PROTECTED]
> > > > Sent: Thursday, April 21, 2005 4:00 PM
> > > > To: Jetspeed Users List
> > > > Subject: Re: J2 Security Customization
> > > >
> > > > Santiago,
> > > >
> > > > There are multiple solutions to this common requirement. The easiest
> is
> > > > probably to implement your own SecurityValve. Just make sure you use
> the
> > > > existing o/a/j/security.impl.SecurityValveImpl.java as a template.
> Then
> > > > there is JAAS...
> > > >
> > > > Scott can probably comment in more detail.
> > > >
> > > > Randy
> > > >
> > > > Santiago Urrizola wrote:
> > > >
> > > > >Hi, i wan t to change a part of the security model of J2, to adapt
> they
> > > > on mi organization model.
> > > > >Basically i need to change the part where J2,
> > > > >1 - retrive users from de DataBase. (my own tables, not the default
> > > > tables of the j2), and obiously where save new/modified users
> > > > >2 - autenticate the passwords of login users
> > > > >3 - retrive all groups and roles, and users in a group role.
> > > > >
> > > > >I see the sources for a while, and see a lot of places where i
> > > can change
> > > > this, but i dont know where is the correct place (class or classes)
> to
> > > > change it. I see UserManager, and think its posible to create a new
> > > > UserManager, but this class dont have full control of the users, i
> know
> > > > tht i need to change the implementor of some interfaces in the *.xml
> in
> > > > the assembly director.
> > > > >But can some one tell me how classes i must modify (or create new
> > > > implementor for this interaces) ???
> > > > >Thank you very very very very much
> > > > >
> > > > >Santiago
> > > > >
> > > > >
> > > > >
> > > > >
> > > >
> > > >
> > > > 
> -
> > > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > > For additional commands, e-mail: jetspeed-user-
> [EMAIL PROTECTED]
> > >
> > >
> >
> >
> > -
> > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > For additional commands, e-mail: [EMAIL PROTECTED]
> >
> 
> 
> 
> 
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]



-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: J2 Security Customization

2005-04-21 Thread David Sean Taylor

Scott T Weaver wrote:
Our registration process is very controlled and goes through a work flow and
verification process.  The process is handled by an entirely different
department.
Ive got the same kind of situation on a Jetspeed-2 portal deployment.
The login is actually done by a federated authentication server, and 
then redirected to Jetspeed.

--
David Sean Taylor
Bluesunrise Software
[EMAIL PROTECTED]
[office] +01 707 773-4646
[mobile] +01 707 529 9194
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: J2 Security Customization

2005-04-21 Thread Santiago Urrizola

ok, thanks !!
so ... anyone knows how can i change .. or where i mus see .. to change the
registration and autentication procees, thats include:

loks for an user when he try to login, and if tis valid asign some roles
(roles of the portal, not of my organitzation) depending in some atributes
of the user (who is stores in another database)

register a new user, and permit a new user register its own to the
portal (me by i can create a new portlet/application for this ??)


Y see a lot of places where i can change this, buyt i dont want to change or
create classes anyware, i want to create or modify the correct classses or
implement the correct interfaces for this problem.

Thanks a lot, all of you

- Original Message - 
From: "David Sean Taylor" <[EMAIL PROTECTED]>
To: "Jetspeed Users List" 
Sent: Thursday, April 21, 2005 6:14 PM
Subject: Re: J2 Security Customization


> Scott T Weaver wrote:
> > Our registration process is very controlled and goes through a work flow
and
> > verification process.  The process is handled by an entirely different
> > department.
> >
> Ive got the same kind of situation on a Jetspeed-2 portal deployment.
> The login is actually done by a federated authentication server, and
> then redirected to Jetspeed.
>
> -- 
> David Sean Taylor
> Bluesunrise Software
> [EMAIL PROTECTED]
> [office] +01 707 773-4646
> [mobile] +01 707 529 9194
>
> -
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>




-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Security error(?) in editing psml

RE: Security error(?) in editing psml

$cslink and layouts/default.vm problem (Jetspeed-1.6-dev)

RE: Security error(?) in editing psml

browser title changes to $data.profile.document.portlets.getMetaInfo().title in password reminder

Re: Security error(?) in editing psml

RE: Security error(?) in editing psml

Accessing Role and Group info

HEADS UP: Migration of jetspeed repositories to subversion

Re: HEADS UP: Migration of jetspeed repositories to subversion

J2 Security Customization

Re: J2 Security Customization

Re: J2 Security Customization

RE: J2 Security Customization

Re: J2 Security Customization

RE: J2 Security Customization

RE: J2 Security Customization

Re: J2 Security Customization

RE: J2 Security Customization

RE: J2 Security Customization

Re: J2 Security Customization

Re: J2 Security Customization

22 matches

Site Navigation

Mail list logo

Footer information