jsr375-experts@javaee-security-spec.java.net

[jsr375-experts] Re: Working example app demonstrating identity store usage

From: Werner Keil <werner.keil_at_gmail.com>
Date: Mon, 14 Dec 2015 00:25:36 +0100

Yes, I did not modify it, but for a live demo Glassfish should be fine.
There won`t be time to demonstrate multiply servers at this point.
Maybe I'll try that later.

I just created a PR.

Also applied the license plugin to pretty much every module of
jsr375-proposals.

Kind Regards,
Werner

On Mon, Dec 14, 2015 at 12:17 AM, arjan tijms <arjan.tijms_at_gmail.com> wrote:

> Hi,
>
> On Mon, Dec 14, 2015 at 12:04 AM, Werner Keil <werner.keil_at_gmail.com>
> wrote:
>
>> Thanks, I forked it since there was a (accidential I guess) typo in the
>> POM. Will raise PR, happy to use the latest demo if I can in Tel Aviv on
>> Wed.
>>
>> It works well in Glassfish 4, Wildfly 10 did not, but one server will be
>> enough.
>>
>
> I tested it mainly in WildFly 10 (rc4) actually. Did you use a stock
> WildFly 10 (without modified standalone.xml)?
>
> Kind regards,
> Arjan Tijms
>
>
>
>
>>
>> Kind Regards,
>> Werner
>>
>> On Sun, Dec 13, 2015 at 11:58 PM, arjan tijms <arjan.tijms_at_gmail.com>
>> wrote:
>>
>>> Hi,
>>>
>>> I added another identity store implementation and example; the
>>> LdapIdentityStore.
>>>
>>> In the simplest case it's used as follows (the attribute names are all
>>> defaulted here):
>>>
>>> @LdapIdentityStoreDefinition(
>>> url = "ldap://localhost:33389/",
>>> callerBaseDn = "ou=caller,dc=jsr375,dc=net",
>>> groupBaseDn = "ou=group,dc=jsr375,dc=net"
>>> )
>>>
>>> See
>>> https://github.com/arjantijms/mechanism-to-store-x/blob/master/app-ldap/src/main/java/test/Servlet.java#L19
>>>
>>> It's backed by a still simple identity store implementation. It now
>>> supports what I think is a fairly standard modelling of users and roles in
>>> LDAP, but I readily admit I'm not the biggest LDAP expert and I realise
>>> that a more practically usable LDAP identity store needs a few more
>>> options. The amount of possible modelings of users/roles in LDAP is truly
>>> bewildering, so we may need some discussion of what to support here.
>>>
>>>
>>> See
>>> https://github.com/arjantijms/mechanism-to-store-x/blob/master/jsr375/src/main/java/org/glassfish/jsr375/identitystores/LDapIdentityStore.java
>>>
>>> The example application uses an embedded in-memmory LDAP server, I
>>> choose the one from Unboundid. Naturally, this embedded server is only used
>>> for the example application, not for the JSR 375 implementation or API.
>>>
>>> See
>>> https://github.com/arjantijms/mechanism-to-store-x/blob/master/app-ldap/src/main/java/test/LdapSetup.java
>>>
>>> Kind regards,
>>> Arjan Tijms
>>>
>>>
>>
>
© Oracle | By contributing to this project, you are agreeing to the terms of use described here.