users@glassfish.java.net

[gf-users] Re: Multiple auth realms for DAS

From: Liedy, Jonathan <jliedy_at_fsu.edu>
Date: Tue, 14 Apr 2015 18:25:59 +0000

Welp, I'll break it to the devs. Thanks for the quick answers!

Jonathan Liedy
Middleware Administrator
The Florida State University
2035 East Paul Dirac Drive
Sliger, Suite 113
Tallahassee, FL 32310
jliedy_at_fsu.edu
Voice: (850) 270-7368
________________________________
From: Jason Lee [jason_at_steeplesoft.com]
Sent: Tuesday, April 14, 2015 2:16 PM
To: users_at_glassfish.java.net
Subject: [gf-users] Re: Multiple auth realms for DAS

On 4/14/15 11:14 AM, Liedy, Jonathan wrote:
Hey all,

I’m working on upgrading our environment from GF2 to GF4. I’m also trying to add a little bit more visibility into the DAS for the developers. I’ve got the admin-realm configured and working with LDAP. Is there a role or something I can configure to give a group read-only access to the asadmin GUI? Giving them R/W access is kind of a no-go as we’re trying to reduce the monkey in the monkey factor.
The admin console does not support RBAC, unfortunately. It's been on the to do list, but time has never been allotted to it. :|

Also, is there a way to use both file-based and LDAP-based auths for the admin-realm?
My guess is that would require a custom realm. 

--
Jason Lee
http://cubtracker.com
http://blogs.steeplesoft.com
http://twitter.com/jasondlee
http://blogs.steeplesoft.com/+
http://blogs.steeplesoft.com/in
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.