Liferay authentication and authorization (Siteminder and Custom Tomcat Authorization) -

-

i new liferay portal. afraid, questions being raised might simple, not aware. please clarify.

we trying build portal using liferay on tomcat. portal should authenticated netegrity siteminder , have our internal authorization mechanism built on tomcat security . have questions on 2 areas have listed below

  1. question on enabling siteminder in liferay when siteminder enabled within liferay, necessary still configure user in liferay portal have siteminder authenticated user portal page.

  2. authorizations - objective avoid configuring user , roles , associations in liferay. because portal want built should rely on tomcat security customized framework in place.

i deployed portlet has set of links available , these links should available based on user permissions. configured users , set of roles in tomcat-users.xml , defined role-mapping in liferay-portlet.xml,portlet.xml,web.xml , deployed portlet , changed realm configuration in liferay.xml below 

appname="portalrealm" userclassnames="com.liferay.portal.security.jaas.portalprincipal"  roleclassnames="com.liferay.portal.security.jaas.portalrole"  debug="99" usecontextclassloader="false"/>

i logged liferay portal user (configured both in liferay , tomcat-users.xml , added portlet on page , see links not displayed request.isuserinrole("role x") returned false. when tried configuring same role , associated user, saw link working. expected behaviour not seen.

please me on this. appreciate quick response.

thanks kalaiarasan

1) users imported external auth. tool liferay. experience based on ldap (opendj) auth. integration liferay. if users organized in groups it's possible import groups , associate imported users groups. last step give required permissions groups. end usual liferay users appropriate roles, optionally belonging appropriate groups -- coming external tomcat configuration.

2) i'd recommend importing users , roles have in tomcat liferay (and yes, can done automatically during authorization writing code imports authorized user , roles). give flexibility fine-tune permissions using liferay built-in mechanisms , interfere less override. have advancedsecuritychecker class can override custom permissions handling it's less recommended.

finally keep in mind upgrades future liferay versions. more of liferay functionality override , customize harder upgrade.


Comments

Post a Comment

Popular posts from this blog

ASP.NET/SQL find the element ID and update database -

-
basically i've got update query runs when click submit button. i have asp:repeater in page layer inside this <asp:repeater id="dgbookings" runat="server" onitemdatabound="itemdb"> <itemtemplate> <div class="bookingscontent"> <div class="bookingdetails" id="<%# databinder.eval(container.dataitem, "booking_ref") %>"> <p class="infotext"><%# databinder.eval(container.dataitem, "adults") %> <asp:linkbutton onclick="editdetails" text="edit..." runat="server"></asp:linkbutton></p> <p class="infotext"><asp:linkbutton onclick="submitdetails" text="submit..." runat="server"></asp:linkbutton></p> </div> </div> </itemtemplate> <asp:repeater> and outputs ...
Read more

jquery - appear modal windows bottom -

-
i have modal windows in application, work fine <div id="modal" class="modal hide fade" tabindex="-1" role="dialog" aria-labelledby="mymodallabel" aria-hidden="true"> but when modal appears, appear top of windows, , want appear bottom the application joomla 3.0! , using template of meet gavern any idea? i found solution i modified de css in bootstrap .modal.fade { top:-25%; -webkit-transition:opacity .3s linear, bottom .3s ease-out; -moz-transition:opacity .3s linear, bottom .3s ease-out; -ms-transition:opacity .3s linear, bottom .3s ease-out; -o-transition:opacity .3s linear, bottom .3s ease-out; transition:opacity .3s linear, bottom .3s ease-out; }
Read more

c++ - Compiling static TagLib 1.6.3 libraries for Windows -

-
i having super hard time compiling , using taglib 1.6.3 in qt project. i've tried can think of. taglib claims supported through cmake i'm not having luck. furthermore, i'm confused kinds of files need qt libs! i've built *.a files, *.lib, , *.dll. understand far... believe since i'm working in windows *.lib want. no matter do, end "undefined references" taglib functions try use when try compile qt project. have tried mingw32, msys, visual studio 2008, , cross-compiling windows on linux. turning nothing. what makes less sense me if compile same taglib source qt on mac (g++ think?) works fine! somewhere in windows compilation procedures have going wrong. have been smacking face on desk 30 (on , off) hours trying figure out. since qt uses mingw must compile taglib same compiler? if compile *.lib's visual studio not compatible? are *.a libraries usable in windows? (assuming mingw) i'm still trying handle on c++ stuff, after reading coun...
Read more