|
Re: [CDO] Integrating authentication and authorization into the CDO server [message #732280 is a reply to message #732107] |
Tue, 04 October 2011 12:09 |
techteam Messages: 55 Registered: September 2010 |
Member |
|
|
Hi Warwick,
despite my limited knowledge, a few comments below
Am 04.10.2011 00:50, schrieb Warwick Burrows:
> Hi,
>
> Looking at the documentation its unclear whether https access to the CDO
> server is supported in 4.0. It doesn't say it is but in the
> cdo-server.xml from the 4.0 SR 1 deployment bundle for windows there is
> this commented out section:
>
> <!-- Examples:
> <acceptor type="ssl" listenAddr="0.0.0.0" port="2036"/>
This line should be enough, to define a ssl-acceptor inside the server
configuration file.
Additional informations you should find at
https://bugs.eclipse.org/bugs/show_bug.cgi?id=340108
> <acceptor type="http"/>
> -->
>
> Is SSL access to the server supported?
>
> Along the same lines, what's the right way to integrate authentication
> and authorization into the CDO server? We would like to reuse our
> existing authorization policy without having to sync user registry
> information between CDO and our registry.
I think, the authentication and authorization are 2 different things.
The authentication can be implemented with your own IUserManager.
If you want, I can give you a small example.
For authorization what which user can do or not with the objects inside
your repository, you have to define your own
IRepository.ReadAccessHandler and/or IRepository.WriteAccessHandler
Some more information could be found at:
https://bugs.eclipse.org/bugs/show_bug.cgi?id=277075#c8
>
> Thanks,
> Warwick
>
I hope, it helps you a bit.
Greetings
Heiko
|
|
|
|
|
Powered by
FUDForum. Page generated in 0.03296 seconds