AcegiLotusDomino

From Documentation

[edit] Acegi Security and Lotus Domino 6.5

Used versions:

• Spring Framework 1.2.8
• Acegi Security 1.0.3

The groups have the form APPNAME_ROLE/Groups

where APPNAME is the name off the application (obviously) and ROLE is something like ADMIN, EDITOR or READER. This makes rolePrefix unneccessary.

Web user names are NOT hierarchical (Flat names unlike Notes names.) but it'd be easy to add something like /USERS in userDnPatterns.

   <bean id="initialDirContextFactory"
      class="org.acegisecurity.ldap.DefaultInitialDirContextFactory">
      <constructor-arg value="ldap://ldap.myserver.com:389" />
   </bean>

   <bean id="authenticationProvider"
      class="org.acegisecurity.providers.ldap.LdapAuthenticationProvider">
      <constructor-arg>
         <ref local="bindAuthenticator" />
      </constructor-arg>
      <constructor-arg>
         <ref local="defaultLdapAuthoritiesPopulator" />
      </constructor-arg>
   </bean>

   <bean id="defaultLdapAuthoritiesPopulator"
      class="org.acegisecurity.providers.ldap.populator.DefaultLdapAuthoritiesPopulator">
      <constructor-arg>
         <ref local="initialDirContextFactory" />
      </constructor-arg>
      <constructor-arg>
         <value>o=groups</value>
      </constructor-arg>
      <property name="convertToUpperCase">
         <value>true</value>
      </property>
      <property name="rolePrefix">
         <value></value>
      </property>
   </bean>

   <bean id="bindAuthenticator"
      class="org.acegisecurity.providers.ldap.authenticator.BindAuthenticator">
      <constructor-arg>
         <ref local="initialDirContextFactory" />
      </constructor-arg>
      <property name="userDnPatterns">
         <list>
            <value>cn={0}</value>
         </list>
      </property>
   </bean>