redback 1.3-SNAPSHOT is ok for ldap and ssl !! great!!
See redback jira isssue 215
co redback
mvn install
then copy redback jars in ${archiva.home}/apps/archiva/WEB-INF/lib
only redback jars already in v 1.2 !!
Here is my ldap config in security.properties
user.manager.impl=ldap
ldap.user.store.enabled=true
ldap.bind.authenticator.enabled=true
ldap.config.hostname=xxxxxxx
ldap.config.port=636
ldap.config.ssl=true
ldap.config.base.dn=dc=netceler,dc=com
ldap.config.bind.dn=xxxxxxxxxxxxxxxxx,dc=netceler,dc=com
ldap.config.password=xxxxxxxxxxxxxx
ldap.config.context.factory=com.sun.jndi.ldap.LdapCtxFactory
#OpenLdap use uid,not cn attribute
ldap.config.mapper.attribute.user.id=uid
# NPE occur because Ldapuser don't have an pwd expiration date (null)
# and archiva want to display that date.. so disabling that
# functionnnality.No need for that in archiva, I already handle
# expiration date in ldap server
security.policy.password.expiration.enabled=false
Thx Emmanuel!
Le jeudi 26 mars 2009 à 18:23 +0100, Emmanuel Venisse a écrit :
> I added something to support it in Redback, but not tested it.You can look
> at the issue [1]
>
> Can you test it?
>
> [1] http://jira.codehaus.org/browse/REDBACK-215
>
> Emmanuel
>
> On Thu, Mar 26, 2009 at 4:26 PM, Emmanuel Venisse <
> emmanuel.veni...@gmail.com> wrote:
>
> > It isn't there yet.
> > If you really need it, maybe you can write a patch for Redback.
> >
> > Emmanuel
> >
> >
> > On Thu, Mar 26, 2009 at 12:46 PM, Julien Graglia
> > <jgrag...@netceler.com>wrote:
> >
> >> Hi,
> >>
> >> I am currently migrating from archiva 1.1.3 to archiva 1.2.0... and I
> >> want to switch to an ldap authentication (I'am bored of copying user
> >> databases...)
> >>
> >> I'have found many threads about ldap and archiva : security.properties,
> >> redback ldap config page (1)... but I have not found how to connect to a
> >> ldaps directory?
> >> I have defined the ldap.config.port (636) but i did not found how to
> >> says to use ssl
> >>
> >> > On 5 Aug, 2008, at 8:38 AM, Emmanuel Venisse wrote:
> >> > >
> >> > > I'm not sure ldap docs on redback site are up-to-date
> >> > >>
> >> > >> Chris, do you use LDAP or LDAPS?
> >> > >> LDAPS isn't supported for the moment
> >> > >>
> >> > >> Emmanuel
> >> >
> >> >
> >> It seems to me that redback still can't handle SSL for ldap... Did I
> >> have to wait for another archiva/redback release? or stick with my user
> >> database (I don't want to store the users in a sql db, they are already
> >> in ldap...)
> >>
> >> 1 : http://redback.codehaus.org/configuration.html and
> >> http://redback.codehaus.org/integration/ldap.html
> >>
> >>
> >> Thx,
> >>
> >> Le mercredi 06 août 2008 à 11:14 +0800, Maria Odea Ching a écrit :
> >> > I think you might be missing this property?
> >> > user.manager.impl=ldap
> >> >
> >> > Thanks,
> >> > Deng
> >> >
> >> > On Wed, Aug 6, 2008 at 2:38 AM, Chris Brentano <
> >> > chris.brent...@jivesoftware.com> wrote:
> >> >
> >> > > Thanks everyone for your assistance!
> >> > >
> >> > > Just LDAP, no SSL at the moment.
> >> > >
> >> > > I configured my conf/security.properties file like so:
> >> > >
> >> > > ldap.user.store.enabled=true
> >> > > ldap.bind.authenticator.enabled=true
> >> > > ldap.config.hostname=dc02.jiveville.com
> >> > > ldap.config.port=389
> >> > > ldap.config.base.dn=ou=JiveUsers,ou=jiveville,ou=com
> >> > > ldap.config.context.factory=com.sun.jndi.ldap.LdapCtxFactory
> >> > > ldap
> >> > > .config
> >> > > .bind
> >> > > .dn=cn=ldapUser,ou=ResourceAccounts,ou=JiveUsers,ou=jiveville,ou=com
> >> > > ldap.config.password=********
> >> > >
> >> > > But cannot log in with any LDAP accounts. But I do have a couple
> >> questions:
> >> > >
> >> > > - Is there any way to test that Archiva is able to successfully talk
> >> to the
> >> > > LDAP server?
> >> > > - Are there any options above that I may be missing or which are
> >> incorrect?
> >> > > - When LDAP authentication is working, do all accounts that fall under
> >> the
> >> > > base dn OU have access? If so, what level?
> >> > > - Do I need to do anything in User Administrator to grant specific
> >> LDAP
> >> > > accounts access privileges?
> >> > >
> >> > > Thanks again!
> >> > >
> >> > > - Chris
> >> > >
> >> > >
> >> > >
> >> > > On 5 Aug, 2008, at 8:38 AM, Emmanuel Venisse wrote:
> >> > >
> >> > > I'm not sure ldap docs on redback site are up-to-date
> >> > >>
> >> > >> Chris, do you use LDAP or LDAPS?
> >> > >> LDAPS isn't supported for the moment
> >> > >>
> >> > >> Emmanuel
> >> > >>
> >> > >> On Tue, Aug 5, 2008 at 5:08 AM, Maria Odea Ching <och...@apache.org>
> >> > >> wrote:
> >> > >>
> >> > >> Hi Chris,
> >> > >>>
> >> > >>> You just need to put the LDAP config in your security.properties
> >> file,
> >> > >>> you
> >> > >>> no longer need to edit the application.xml as specified here:
> >> > >>> http://redback.codehaus.org/integration/ldap.html (just copy &
> >> paste the
> >> > >>> config specifed in the security.properties section)
> >> > >>>
> >> > >>> And you might also need to add the LDAP specific configuration
> >> specified
> >> > >>> in
> >> > >>> the LDAP Settings section in this document:
> >> > >>> http://redback.codehaus.org/configuration.html
> >> > >>>
> >> > >>> HTH,
> >> > >>> Deng
> >> > >>>
> >> > >>> On Tue, Aug 5, 2008 at 8:16 AM, Chris Brentano <
> >> > >>> chris.brent...@jivesoftware.com> wrote:
> >> > >>>
> >> > >>> Hi all,
> >> > >>>>
> >> > >>>> I'd like to configure Archiva to do LDAP authentication to Active
> >> > >>>> Directory. It appears that Redback has LDAP support, and I've seen
> >> some
> >> > >>>> various bits here and there about configuring the
> >> security.properties or
> >> > >>>> application.xml file to utilize LDAP, but I can't find a concise
> >> guide.
> >> > >>>>
> >> > >>> Can
> >> > >>>
> >> > >>>> anyone provide some basic instructions and are there any gotchas I
> >> > >>>> should
> >> > >>>>
> >> > >>> be
> >> > >>>
> >> > >>>> aware of? Thanks!
> >> > >>>>
> >> > >>>> - Chris
> >> > >>>>
> >> > >>>>
> >> > >>>
> >> > >
> >> --
> >> Julien Graglia
> >> NetCeler
> >>
> >>
> >
--
Julien Graglia - jgrag...@netceler.com
NetCeler
Les Peyrons 05400 Veynes
Tel : +33 4 92 57 12 12 Fax : +33 4 92 57 12 62
