Uploaded image for project: 'JOC - JobScheduler Operations Center'
  1. JOC - JobScheduler Operations Center
  2. JOC-439

New option for shiro.ini roleAssignmentFromIni

    XMLWordPrintable

Details

    • Fix
    • Status: Released (View Workflow)
    • Minor
    • Resolution: Fixed
    • 1.12
    • 1.12.4
    • None

    Description

      Current Situation

      • When a user is authenticated from an LDAP directory service then the roles for this user are used from the shiro.ini fiel with the entry <username> in the section [users].
      • With this approach the roles can be defined in the shiro.ini file instead of using the roles defined from an LDAP groupes/roles mapping.

      Desired Behavior

      • It may be neccessary to avoid reading the roles from the shiro.ini file, e.g. in a mulit-realm environment with the $iniRealm and some LDAP realms. To switch the role assignment from the shiro.ini file a new option is introduced: myLdapRealm.roleAssignmentFromIni=false (default=true)

      Attachments

        Activity

          People

            ur Uwe Risse
            ur Uwe Risse
            Alan Amos Alan Amos
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: