Changes for page org.clazzes.login.sql

Last modified by christoph_lechleitner@iteg_at on 2013-07-15 01.30:42

Manage
- Copy
Actions
- Export
- Print Preview
Viewers
- Source
- Children
- Content
- Comments
- Attachments
- History
- Information

From 5.1 to 6.1

From version 6.1

edited by christoph_lechleitner@iteg_at
on 2013-02-02 06.01:11

Change comment: Usable now, not pure WIP

To version 10.1

edited by christoph_lechleitner@iteg_at
on 2013-07-15 01.30:42

Change comment: There is no comment for this version

Raw
Rendered

Summary

Page properties (1 modified, 0 added, 0 removed)
Objects (1 modified, 0 added, 0 removed)
- Confluence.Code.ConfluencePageClass[0]

Details

Page properties

Content

@@ -1,5 +1,7 @@
--The jaas-login-service is provided as an OSGi bundle, which may be activated by
++= {{id name="org.clazzes.login.sql-Introduction"/}}Introduction =
++The {{code language="none"}}sql-login-service{{/code}} is provided as an OSGi bundle, which may be activated by
++
  (% class="code" %)
  (((
  obr:addurl http:~/~/maven.clazzes.org/repository.xml
@@ -14,125 +14,18 @@
  <artifactId>sql-login-service</artifactId>
  )))
--=== {{id name="org.clazzes.login.sql-Functionality"/}}Functionality ===
++= {{id name="org.clazzes.login.sql-Functionality"/}}Functionality =
  The SQL login service authenticates against users in a SQL database, using configurable SQL queries.
  There are no plans to support authentication domains, because typical standalone login systems do not care for domains.
--=== {{id name="org.clazzes.login.sql-Configuration"/}}Configuration ===
++= {{id name="org.clazzes.login.sql-Configuration"/}}Configuration =
--The SQL login service may be configured using the OSGi configuration PID {{code language="none"}}org.clazzes.login.sql{{/code}} using these configuration values:
++With version 1.2 we introducted a new feature (support for multiple authentication domains covered by distinct databases) and switched to [[JDBC-Provider>>doc:UTIL.Multi-DataSource pooling with JDBC-Provider.WebHome]] as DataSource pool.
--(% class="wiki-content" %)
--(((
--
++Therefor the configuration depends on the version of {{code language="none"}}sql-login-service{{/code}} used:
--|=(((
--(% class="tablesorter-header-inner" %)
--(((
--Key
--)))
--)))|=(((
--(% class="tablesorter-header-inner" %)
--(((
--Description
--)))
--)))
--|(((
--{{code language="none"}}
--deactivateUserStatement
--{{/code}}
--)))|(((
--Not implemented yet. Optional. Required for //deactivateUser// feature.
--
--SQL template for a prepared statement to deactivate a user.
--
--Example:
--{{code language="none"}}UPDATE users SET encryptedPassword='{disabled}' WHERE userId=?{{/code}}
--)))
--|(((
--{{code language="none"}}
--defaultDomain
--{{/code}}
--)))|(((
--Optional. Defaults to an empty string.
--
--If set to an empty string, the domain parameter of request queries does not get checked but is filled in in returned principals.
--
--If set to a non-empty string, requests for other domains are refused.
--
--Support for databases maintaining multiple authentication domains might be added in the future, but I do not believe multi-domain setups even exist outside the LDAP/ADS world.
--)))
--|(((
--{{code language="none"}}
--groupsByUserIdQuery
--{{/code}}
--)))|(((
--Optional. Required for //getGroups// feature.
--
--SQL template for a prepared statement to query the group IDs and group names of the groups of which the user specified by a userId is a member.
--
--Example:
--{{code language="none"}}SELECT g.groupId, g.groupName FROM groups AS g, users AS u, memberships AS mgroupName
-- WHERE u.userId=?
--AND m.userId = u.id
-- AND g.id = m.groupId
-- ORDER BY g.groupId {{/code}}
--)))
--|(((
--{{code language="none"}}
--defaultPasswordAlgorithm
--{{/code}}
--)))|(((
--Optional. Defaults to {{code language="none"}}crypt{{/code}}
--
--Values supported so far: {{code language="none"}}crypt{{/code}}, {{code language="none"}}ssha1{{/code}}, {{code language="none"}}plain{{/code}}.
--
--Password fields may contain:
--
--* the password encrypted using the default password algorithm, or
--* a LDAP style algorithm prefix and the password encrypted with the algorithm specified in the prefix. Example: {{code language="none"}}{PLAIN}badPassword{{/code}}
--)))
--|(((
--{{code language="none"}}
--setUserPasswordStatement
--{{/code}}
--)))|(((
--Optional. Required for //changePassword// feature.
--
--SQL template for a prepared statement to set a new password for the user.
--
--Example:
--{{code language="none"}}UPDATE users SET encryptedPassword=? WHERE userId=?{{/code}}
--)))
--|(((
--{{code language="none"}}
--userByUserIdQuery
--{{/code}}
--)))|(((
--SQL template for a prepared statement to query userId, encrypted password, pretty name and e-mail address of a user specified by a userId.
--If the pretty name is not part of the database, reuse the userId field.
--If the e-mail address is not part of the database, use a constant like '' or null.
--
--Example:
--{{code language="none"}}SELECT userId, encryptedPassword, userName, mailAdr FROM users WHERE userId=?{{/code}}
--)))
--|(((
--{{code language="none"}}
--usersByGroupIdQuery
--{{/code}}
--)))|(((
--Optional. Required for //getGroupMembers// feature.
--
--SQL template for a prepared statement to query the user IDs, user names and e-mail-addresses of the members of the group specified by a groupId.
--
--Example:
--{{code language="none"}}SELECT u.userId, u.userName, u.mailAdr
-- FROM groups AS g, users AS u, memberships AS mgroupName
-- WHERE g.groupId=?
--AND m.groupId = g.id
-- AND u.id = m.userId
-- ORDER BY g.userId {{/code}}
--)))
--)))
++(% style="list-style-type: square;" %)
++* [[doc:LOGIN.DomainPasswordLoginService implementations and backends.org\.clazzes\.login\.sql.Configuring org\.clazzes\.login\.sql 1\.0 to 1\.1.WebHome]]
++* [[doc:LOGIN.DomainPasswordLoginService implementations and backends.org\.clazzes\.login\.sql.Configuring org\.clazzes\.login\.sql 1\.2+.WebHome]]

Confluence.Code.ConfluencePageClass[0]

Id

@@ -1,1 +1,1 @@
--688821
++688660

URL

@@ -1,1 +1,1 @@
--https://clazzes.atlassian.net/wiki/spaces/LOGIN/pages/688821/org.clazzes.login.sql
++https://clazzes.atlassian.net/wiki/spaces/LOGIN/pages/688660/org.clazzes.login.sql

Changes for page org.clazzes.login.sql

Summary

Details

Applications

Need help?