redback 1.3-SNAPSHOT is ok for ldap and ssl !! great!! See redback jira isssue 215
co redback mvn install then copy redback jars in ${archiva.home}/apps/archiva/WEB-INF/lib only redback jars already in v 1.2 !! Here is my ldap config in security.properties user.manager.impl=ldap ldap.user.store.enabled=true ldap.bind.authenticator.enabled=true ldap.config.hostname=xxxxxxx ldap.config.port=636 ldap.config.ssl=true ldap.config.base.dn=dc=netceler,dc=com ldap.config.bind.dn=xxxxxxxxxxxxxxxxx,dc=netceler,dc=com ldap.config.password=xxxxxxxxxxxxxx ldap.config.context.factory=com.sun.jndi.ldap.LdapCtxFactory #OpenLdap use uid,not cn attribute ldap.config.mapper.attribute.user.id=uid # NPE occur because Ldapuser don't have an pwd expiration date (null) # and archiva want to display that date.. so disabling that # functionnnality.No need for that in archiva, I already handle # expiration date in ldap server security.policy.password.expiration.enabled=false Thx Emmanuel! Le jeudi 26 mars 2009 à 18:23 +0100, Emmanuel Venisse a écrit : > I added something to support it in Redback, but not tested it.You can look > at the issue [1] > > Can you test it? > > [1] http://jira.codehaus.org/browse/REDBACK-215 > > Emmanuel > > On Thu, Mar 26, 2009 at 4:26 PM, Emmanuel Venisse < > emmanuel.veni...@gmail.com> wrote: > > > It isn't there yet. > > If you really need it, maybe you can write a patch for Redback. > > > > Emmanuel > > > > > > On Thu, Mar 26, 2009 at 12:46 PM, Julien Graglia > > <jgrag...@netceler.com>wrote: > > > >> Hi, > >> > >> I am currently migrating from archiva 1.1.3 to archiva 1.2.0... and I > >> want to switch to an ldap authentication (I'am bored of copying user > >> databases...) > >> > >> I'have found many threads about ldap and archiva : security.properties, > >> redback ldap config page (1)... but I have not found how to connect to a > >> ldaps directory? > >> I have defined the ldap.config.port (636) but i did not found how to > >> says to use ssl > >> > >> > On 5 Aug, 2008, at 8:38 AM, Emmanuel Venisse wrote: > >> > > > >> > > I'm not sure ldap docs on redback site are up-to-date > >> > >> > >> > >> Chris, do you use LDAP or LDAPS? > >> > >> LDAPS isn't supported for the moment > >> > >> > >> > >> Emmanuel > >> > > >> > > >> It seems to me that redback still can't handle SSL for ldap... Did I > >> have to wait for another archiva/redback release? or stick with my user > >> database (I don't want to store the users in a sql db, they are already > >> in ldap...) > >> > >> 1 : http://redback.codehaus.org/configuration.html and > >> http://redback.codehaus.org/integration/ldap.html > >> > >> > >> Thx, > >> > >> Le mercredi 06 août 2008 à 11:14 +0800, Maria Odea Ching a écrit : > >> > I think you might be missing this property? > >> > user.manager.impl=ldap > >> > > >> > Thanks, > >> > Deng > >> > > >> > On Wed, Aug 6, 2008 at 2:38 AM, Chris Brentano < > >> > chris.brent...@jivesoftware.com> wrote: > >> > > >> > > Thanks everyone for your assistance! > >> > > > >> > > Just LDAP, no SSL at the moment. > >> > > > >> > > I configured my conf/security.properties file like so: > >> > > > >> > > ldap.user.store.enabled=true > >> > > ldap.bind.authenticator.enabled=true > >> > > ldap.config.hostname=dc02.jiveville.com > >> > > ldap.config.port=389 > >> > > ldap.config.base.dn=ou=JiveUsers,ou=jiveville,ou=com > >> > > ldap.config.context.factory=com.sun.jndi.ldap.LdapCtxFactory > >> > > ldap > >> > > .config > >> > > .bind > >> > > .dn=cn=ldapUser,ou=ResourceAccounts,ou=JiveUsers,ou=jiveville,ou=com > >> > > ldap.config.password=******** > >> > > > >> > > But cannot log in with any LDAP accounts. But I do have a couple > >> questions: > >> > > > >> > > - Is there any way to test that Archiva is able to successfully talk > >> to the > >> > > LDAP server? > >> > > - Are there any options above that I may be missing or which are > >> incorrect? > >> > > - When LDAP authentication is working, do all accounts that fall under > >> the > >> > > base dn OU have access? If so, what level? > >> > > - Do I need to do anything in User Administrator to grant specific > >> LDAP > >> > > accounts access privileges? > >> > > > >> > > Thanks again! > >> > > > >> > > - Chris > >> > > > >> > > > >> > > > >> > > On 5 Aug, 2008, at 8:38 AM, Emmanuel Venisse wrote: > >> > > > >> > > I'm not sure ldap docs on redback site are up-to-date > >> > >> > >> > >> Chris, do you use LDAP or LDAPS? > >> > >> LDAPS isn't supported for the moment > >> > >> > >> > >> Emmanuel > >> > >> > >> > >> On Tue, Aug 5, 2008 at 5:08 AM, Maria Odea Ching <och...@apache.org> > >> > >> wrote: > >> > >> > >> > >> Hi Chris, > >> > >>> > >> > >>> You just need to put the LDAP config in your security.properties > >> file, > >> > >>> you > >> > >>> no longer need to edit the application.xml as specified here: > >> > >>> http://redback.codehaus.org/integration/ldap.html (just copy & > >> paste the > >> > >>> config specifed in the security.properties section) > >> > >>> > >> > >>> And you might also need to add the LDAP specific configuration > >> specified > >> > >>> in > >> > >>> the LDAP Settings section in this document: > >> > >>> http://redback.codehaus.org/configuration.html > >> > >>> > >> > >>> HTH, > >> > >>> Deng > >> > >>> > >> > >>> On Tue, Aug 5, 2008 at 8:16 AM, Chris Brentano < > >> > >>> chris.brent...@jivesoftware.com> wrote: > >> > >>> > >> > >>> Hi all, > >> > >>>> > >> > >>>> I'd like to configure Archiva to do LDAP authentication to Active > >> > >>>> Directory. It appears that Redback has LDAP support, and I've seen > >> some > >> > >>>> various bits here and there about configuring the > >> security.properties or > >> > >>>> application.xml file to utilize LDAP, but I can't find a concise > >> guide. > >> > >>>> > >> > >>> Can > >> > >>> > >> > >>>> anyone provide some basic instructions and are there any gotchas I > >> > >>>> should > >> > >>>> > >> > >>> be > >> > >>> > >> > >>>> aware of? Thanks! > >> > >>>> > >> > >>>> - Chris > >> > >>>> > >> > >>>> > >> > >>> > >> > > > >> -- > >> Julien Graglia > >> NetCeler > >> > >> > > -- Julien Graglia - jgrag...@netceler.com NetCeler Les Peyrons 05400 Veynes Tel : +33 4 92 57 12 12 Fax : +33 4 92 57 12 62