RE: jsp form-based authentication
Roland, Hope you are asking what I think you are. :) If this is about setting up your own user manager and calling it from role manager, keep reading. I am still trying to work out all the kinks on this for myself, but there is a message in the archivesby Chris Miller, "Re: custom user management" onOct 17, 2000 that really got me started on this. He explains what to implement and override, with notes on methods that require special attention. There are a few things missing, be careful to implement shells of all the methods instead of just the ones he lists as needing special attention, but otherwise it is very concise. HTH, - Ernie -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Roland DongSent: Tuesday, February 27, 2001 3:07 AMTo: Orion-InterestSubject: RE: jsp form-based authentication Has anyone responded to this message? I am also interested in that... Roland -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Vaskin KissoyanSent: Friday, February 23, 2001 10:46 AMTo: Orion-InterestSubject: jsp form-based authentication I need a good example of looking up username/password in a database, how do you override the security so that it checks a database instead of checking the internal web.xml file and principals.xml?
RE: jsp form-based authentication
Go inside "orion.jar" and extract "EJBUser*.class" files then use reverse engeneering to get the java code and you will see exactly what you need to implement. Then go into "orion-application.xml" file and add user-manager class="com.acme.security.CustomUserManager" property name="blah" value="blah" / /user-manager You also have to pack into a jar all the files (the equivalent of EJBUser* files) needed to the security and copy it into the lib folder. Then go into web.xml and set the proper role names, login-config, the constrains, etc. I hope it helps. Danut At 08:02 AM 2/27/2001 -0500, Ernie Phelps wrote: Roland, Hope you are asking what I think you are. :) If this is about setting up your own user manager and calling it from role manager, keep reading. I am still trying to work out all the kinks on this for myself, but there is a message in the archives by Chris Miller, "Re: custom user management" on Oct 17, 2000 that really got me started on this. He explains what to implement and override, with notes on methods that require special attention. There are a few things missing, be careful to implement shells of all the methods instead of just the ones he lists as needing special attention, but otherwise it is very concise. HTH, - Ernie -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Roland Dong Sent: Tuesday, February 27, 2001 3:07 AM To: Orion-Interest Subject: RE: jsp form-based authentication Has anyone responded to this message? I am also interested in that... Roland -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Vaskin Kissoyan Sent: Friday, February 23, 2001 10:46 AM To: Orion-Interest Subject: jsp form-based authentication I need a good example of looking up username/password in a database, how do you override the security so that it checks a database instead of checking the internal web.xml file and principals.xml? _ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com
RE: jsp form-based authentication
You should look in the Orion javadocs for DataSourceUserManager. Here's an example of what to put in the orion-application.xml: user-manager class="com.evermind.sql.DataSourceUserManager" property name="table" value="Member" / property name="passwordField" value="password" / property name="defaultGroups" value="authenticated,god" / property name="usernameField" value="name" / property name="dataSource" value="jdbc/SimilarityCoreDS" / property name="staleness" value="0" / /user-manager Note that you will also need to define your groups in principals.xml (either the deployment version or the global version). Good luck, Jeff -Original Message----- From: Roland Dong [mailto:[EMAIL PROTECTED]] Sent: Tuesday, February 27, 2001 12:07 AM To: Orion-Interest Subject: RE: jsp form-based authentication Has anyone responded to this message? I am also interested in that... Roland -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Vaskin Kissoyan Sent: Friday, February 23, 2001 10:46 AM To: Orion-Interest Subject: jsp form-based authentication I need a good example of looking up username/password in a database, how do you override the security so that it checks a database instead of checking the internal web.xml file and principals.xml?
RE: jsp form-based authentication
Has anyone responded to this message? I am also interested in that... Roland -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Vaskin KissoyanSent: Friday, February 23, 2001 10:46 AMTo: Orion-InterestSubject: jsp form-based authentication I need a good example of looking up username/password in a database, how do you override the security so that it checks a database instead of checking the internal web.xml file and principals.xml?