Versions Compared

Old Version 5

changes.mady.by.user Former user

Saved on

compared with

New Version 6

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

...

  1. Edit pentaho-spring-beans.xml to use a combination of LDAP and JDBC configuration files.
    Code Block
    xmlxml
    titlepentaho-spring-beans.xml
    xml
    <beans>
  <!-- some lines omitted -->
  <import resource="applicationContext-spring-security.xml" />
  <import resource="applicationContext-common-authorization.xml" />
  <import resource="applicationContext-spring-security-ldap.xml" />
  <import resource="applicationContext-pentaho-security-jdbc.xml" />
</beans>
  2. Open applicationContext-spring-security-ldap.xml. Replace the populator bean definition with the one below. xml
    Code Block
    xml
    titleapplicationContext-spring-security-ldap.xml
    xml
    <bean id="populator" class="org.springframework.security.ldap.populator.UserDetailsServiceLdapAuthoritiesPopulator">
  <constructor-arg ref="userDetailsService" />
</bean>
  3. Staying in the same file, remove the userDetailsService bean. (We're removing it to replace it later with the JDBC-based UserDetailsService implementation: JdbcDaoImpl.) xml
    Code Block
    xml
    titleapplicationContext-spring-security-ldap.xml
    xml
    <!-- removed userDetailsService bean -->
  4. Open applicationContext-pentaho-security-jdbc.xml. Add the following two bean definitions. Both of these bean definitions were copied from applicationContext-spring-security-jdbc.xml. (One is the JDBC-based UserDetailsService implementation; the other is a bean required by that implementation.) xml
    Code Block
    xml
    titleapplicationContext-pentaho-security-jdbc.xml
    xml
    <bean id="dataSource" class="org.springframework.jdbc.datasource.DriverManagerDataSource">
  <property name="driverClassName" value="org.hsqldb.jdbcDriver" />
  <property name="url" value="jdbc:hsqldb:hsql://localhost:9002/userdb" />
  <property name="username" value="sa" />
  <property name="password" value="" />
</bean>

<bean id="userDetailsService" class="org.springframework.security.userdetails.jdbc.JdbcDaoImpl">
  <property name="dataSource">
    <ref local="dataSource" />
  </property>
  <property name="authoritiesByUsernameQuery">
    <value>
      <![CDATA[SELECT username, authority FROM granted_authorities WHERE username = ?]]>
    </value>
  </property>
  <property name="usersByUsernameQuery">
    <value>
      <![CDATA[SELECT username, password, enabled FROM users WHERE username = ?]]>
    </value>
  </property>
</bean>
  5. If you followed Changing to the JDBC Security DAO and Changing to the LDAP Security DAO, the default configuration should work without any changes. If you want to change the database host, the LDAP server host, or anything else about the configuration, see Security Data Access Objects.