On Fri, May 8, 2009 at 10:16 AM, jonathan <[email protected]> wrote: > I've got Roller (4.0) authenticating to our ldap database, with a mixed > ldap/rollerdb config. I've received a request to password protect a > specific blog, allowing all ldap users to access it, though I don't want to > have to create a local roller account for these people (there are many, many > thousands of ldap accounts). Is there a way to do this? I can easily allow > access to a blog for all authenticated users (who have the "register" role), > but users who aren't in the database can't log in at all without a local > account. Having some sort of "guest" privilege assigned to > ldap-authenticated but non-rollerdb users would be ideal, but I'm not sure > it's possible (well... possible without a major overhaus of our > authentication system).
I don't have a good suggestion for you. It is possible, I guess, that you might be able do do what you want to do via the Spring Security System, which is what Roller uses for authentication and authorization. Read-up on Spring Security. If it is possible, you'll probably have to make some changes to Roller's WEB-INF/security.xml file and you might have to add a Java class or two of your own. - Dave - Dave
