Fandom

Documentation

AcegiOid

133pages on
this wiki
Add New Page
Talk0 Share

Acegi Security and Oracle Internet Directory 10g Edit

Used versions:

  • Spring Framework 1.2.8
  • Acegi Security 1.0.3

The DN of a group is like cn=APPNAME_ROLE,cn=GROUPS,dc=company,dc=com. rolePrefix is unneccessary in this context. You can refine the groupSearchFilter e.g.

(&(objectclass=groupOfUniqueNames)(uniqueMember={0}))
   <bean id="initialDirContextFactory"
      class="org.acegisecurity.ldap.DefaultInitialDirContextFactory">
      <constructor-arg
         value="ldap://ldap.myserver.com:389/dc=myserver,dc=com" />
   </bean>

   <bean id="authenticationProvider"
      class="org.acegisecurity.providers.ldap.LdapAuthenticationProvider">
      <constructor-arg>
         <ref local="bindAuthenticator" />
      </constructor-arg>
      <constructor-arg>
         <ref local="defaultLdapAuthoritiesPopulator" />
      </constructor-arg>
   </bean>

   <bean id="bindAuthenticator"
      class="org.acegisecurity.providers.ldap.authenticator.BindAuthenticator">
      <constructor-arg>
         <ref local="initialDirContextFactory" />
      </constructor-arg>
      <property name="userDnPatterns">
         <list>
            <value>cn={0},cn=Users</value>
         </list>
      </property>
   </bean>

   <bean id="defaultLdapAuthoritiesPopulator"
      class="org.acegisecurity.providers.ldap.populator.DefaultLdapAuthoritiesPopulator">
      <constructor-arg>
         <ref local="initialDirContextFactory" />
      </constructor-arg>
      <constructor-arg>
         <value>cn=groups</value>
      </constructor-arg>
      <property name="convertToUpperCase">
         <value>true</value>
      </property>
      <property name="groupSearchFilter">
         <value>(uniquemember={0})</value>
      </property>
      <property name="groupRoleAttribute">
         <value>cn</value>
      </property>
      <property name="rolePrefix">
         <value></value>
      </property>
   </bean>

Ad blocker interference detected!


Wikia is a free-to-use site that makes money from advertising. We have a modified experience for viewers using ad blockers

Wikia is not accessible if you’ve made further modifications. Remove the custom ad blocker rule(s) and the page will load as expected.