Changes for page org.clazzes.login.sql

Last modified by christoph_lechleitner@iteg_at on 2013-07-15 01.30:42

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Children
- Content
- Comments
- Attachments
- History
- Information

From 3.1 to 4.1

From version 1.1

edited by christoph_lechleitner@iteg_at
on 2013-01-18 02.49:21

Change comment: There is no comment for this version

To version 3.1

edited by christoph_lechleitner@iteg_at
on 2013-01-18 05.27:29

Change comment: Added deactivateUserStatement, renamted and extended group members query

Raw
Rendered

Summary

Page properties (1 modified, 0 added, 0 removed)
Objects (1 modified, 0 added, 0 removed)
- Confluence.Code.ConfluencePageClass[0]

Details

Page properties

Content

@@ -16,8 +16,10 @@
  === {{id name="org.clazzes.login.sql-Functionality"/}}Functionality ===
--The SQL login service authenticates against users in a SQL database.
++The SQL login service authenticates against users in a SQL database, using configurable SQL queries.
++There are no plans to support authentication domains, because typical standalone login systems do not care for domains.
++
  === {{id name="org.clazzes.login.sql-Configuration"/}}Configuration ===
  The SQL login service may be configured using the OSGi configuration PID {{code language="none"}}org.clazzes.login.sql{{/code}} using these configuration values:
@@ -24,6 +24,8 @@
  (% class="wiki-content" %)
  (((
++
++
  |=(((
  (% class="tablesorter-header-inner" %)
  (((
@@ -32,22 +32,99 @@
  )))|=(((
  (% class="tablesorter-header-inner" %)
  (((
--Default Value
--)))
--)))|=(((
--(% class="tablesorter-header-inner" %)
--(((
  Description
  )))
  )))
  |(((
  {{code language="none"}}
++deactivateUserStatement
++{{/code}}
++)))|(((
++Not implemented yet. Optional. Required for //deactivateUser// feature.
++
++SQL template for a prepared statement to deactivate a user.
++
++Example:
++{{code language="none"}}UPDATE users SET encryptedPassword='{disabled}' WHERE userId=?{{/code}}
++)))
++|(((
++{{code language="none"}}
  defaultDomain
  {{/code}}
  )))|(((
--(% style="font-family: monospace;" %)-
++Optional. Defaults to an empty string.
++
++The login domain to use for principals when the request did not contain a domain.
++)))
++|(((
++{{code language="none"}}
++groupsByUserIdQuery
++{{/code}}
  )))|(((
--The login domain to use for principals, which do not contain a domain.
--May be left null for domain-less databases
++Optional. Required for //getGroups// feature.
++
++SQL template for a prepared statement to query the group IDs and group names of the groups of which the user specified by a userId is a member.
++
++Example:
++{{code language="none"}}SELECT g.groupId, g.groupName FROM groups AS g, users AS u, memberships AS mgroupName
++ WHERE u.userId=?
++AND m.userId = u.id
++ AND g.id = m.groupId
++ ORDER BY g.groupId {{/code}}
  )))
++|(((
++{{code language="none"}}
++defaultPasswordAlgorithm
++{{/code}}
++)))|(((
++Optional. Defaults to {{code language="none"}}crypt{{/code}}
++
++Values supported so far: {{code language="none"}}crypt{{/code}}, {{code language="none"}}ssha1{{/code}}, {{code language="none"}}plain{{/code}}.
++
++Password fields may contain:
++
++* the password encrypted using the default password algorithm, or
++* a LDAP style algorithm prefix and the password encrypted with the algorithm specified in the prefix. Example: {{code language="none"}}{PLAIN}badPassword{{/code}}
  )))
++|(((
++{{code language="none"}}
++setUserPasswordStatement
++{{/code}}
++)))|(((
++Optional. Required for //changePassword// feature.
++
++SQL template for a prepared statement to set a new password for the user.
++
++Example:
++{{code language="none"}}UPDATE users SET encryptedPassword=? WHERE userId=?{{/code}}
++)))
++|(((
++{{code language="none"}}
++userByUserIdQuery
++{{/code}}
++)))|(((
++SQL template for a prepared statement to query userId, encrypted password, pretty name and e-mail address of a user specified by a userId.
++If the pretty name is not part of the database, reuse the userId field.
++If the e-mail address is not part of the database, use a constant like '' or null.
++
++Example:
++{{code language="none"}}SELECT userId, encryptedPassword, userName, mailAdr FROM users WHERE userId=?{{/code}}
++)))
++|(((
++{{code language="none"}}
++usersByGroupIdQuery
++{{/code}}
++)))|(((
++Optional. Required for //getGroupMembers// feature.
++
++SQL template for a prepared statement to query the user IDs, user names and e-mail-addresses of the members of the group specified by a groupId.
++
++Example:
++{{code language="none"}}SELECT u.userId, u.userName, u.mailAdr
++ FROM groups AS g, users AS u, memberships AS mgroupName
++ WHERE g.groupId=?
++AND m.groupId = g.id
++ AND u.id = m.userId
++ ORDER BY g.userId {{/code}}
++)))
++)))

Confluence.Code.ConfluencePageClass[0]

Id

@@ -1,1 +1,1 @@
--688785
++688787

URL

@@ -1,1 +1,1 @@
--https://clazzes.atlassian.net/wiki/spaces/LOGIN/pages/688785/org.clazzes.login.sql (work in progress)
++https://clazzes.atlassian.net/wiki/spaces/LOGIN/pages/688787/org.clazzes.login.sql (work in progress)

Changes for page org.clazzes.login.sql

Summary

Details

Applications

Need help?