Dear Shiro guru,
Could you please help me with the following situation?
*Background information:*
- I'm using the Vaadin framework.
- Í'm using ssl.
- Authentication works.
- Username syntax = pietj@<COMPANY>.lcl , jank@<COMPANY>.lcl
- memberOf field is being used as role.
- shiro.ini
[main]
contextFactory = org.apache.shiro.realm.ldap.JndiLdapContextFactory
contextFactory.url = ldaps://<SERVER>:636
contextFactory.systemUsername = <USERNAME>@<COMPANY>
contextFactory.systemPassword = <PASSWORD>
contextFactory.environment[java.naming.security.protocol] = ssl
realm = org.apache.shiro.realm.activedirectory.ActiveDirectoryRealm
realm.ldapContextFactory = $contextFactory
realm.searchBase = "OU=<APPDIR>,DC=<COMPANY>,DC=lcl"
realm.groupRolesMap =
"CN=<ROLE>,OU=<APPDIR>,DC=<COMPANY>,DC=lcl":"Admin"
[roles]
# 'Admin' role has permissions *
Admin = *
*Goal*
- Authorization mapping based on the memberOf field from the currentUser.
*Problem*
- currentUser.hasRole("Admin") always return false.
* Questions *
- Is the above shiro.ini correct?
- How do I fix the problem?
--
View this message in context:
http://shiro-user.582556.n2.nabble.com/LDAP-Authorization-config-tp7580031.html
Sent from the Shiro User mailing list archive at Nabble.com.
