I have successfully install openkm-dev integrated with MS AD using example3 ,
but I have a problem when I am login with okmadmin I can not see administration TAB
I have create two roles in AD , ROLE_ADMIN and ROLE_USER and I put okmAdmin as a member of ROLE_ADMIN but still the administration tab is not working
I don't whan to assign admins to all users:
<beans:property name="defaultRole" value="ROLE_ADMIN" />
I want only okmAdmin to be administrator
- I Am using default profile and administration is enabled
I am hiding the ip and domain (XXXX)
please help me to trace out the issue
Saleem
but I have a problem when I am login with okmadmin I can not see administration TAB
I have create two roles in AD , ROLE_ADMIN and ROLE_USER and I put okmAdmin as a member of ROLE_ADMIN but still the administration tab is not working
I don't whan to assign admins to all users:
<beans:property name="defaultRole" value="ROLE_ADMIN" />
I want only okmAdmin to be administrator
- I Am using default profile and administration is enabled
I am hiding the ip and domain (XXXX)
please help me to trace out the issue
Code: Select all
Thanks<?xml version="1.0" encoding="UTF-8"?>
<beans:beans xmlns:beans="http://www.springframework.org/schema/beans"
xmlns:security="http://www.springframework.org/schema/security"
xmlns:task="http://www.springframework.org/schema/task"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:amq="http://activemq.apache.org/schema/core"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans.xsd
http://www.springframework.org/schema/security
http://www.springframework.org/schema/security/spring-security.xsd
http://www.springframework.org/schema/task
http://www.springframework.org/schema/task/spring-task.xsd">
<!-- Security configuration -->
<security:authentication-manager alias="authenticationManager">
<security:authentication-provider ref="ldapAuthProvider" />
</security:authentication-manager>
<beans:bean id="contextSource" class="org.springframework.security.ldap.DefaultSpringSecurityContextSource">
<beans:constructor-arg value="ldap://172.XX.XXXXX:389/dc=XXXX,dc=com,dc=om"/>
<beans:property name="userDn" value="CN=XXXXXX,OU=Users,OU=IT,OU=Departments,DC=XXXXXX,DC=com,DC=om"/>
<beans:property name="password" value="XXXXXXX"/>
<beans:property name="baseEnvironmentProperties">
<beans:map>
<beans:entry>
<beans:key>
<beans:value>java.naming.referral</beans:value>
</beans:key>
<beans:value>follow</beans:value>
</beans:entry>
</beans:map>
</beans:property>
</beans:bean>
<beans:bean id="ldapAuthProvider" class="org.springframework.security.ldap.authentication.LdapAuthenticationProvider">
<beans:constructor-arg>
<beans:bean class="org.springframework.security.ldap.authentication.BindAuthenticator">
<beans:constructor-arg ref="contextSource"/>
<beans:property name="userSearch" ref="userSearch"/>
</beans:bean>
</beans:constructor-arg>
<beans:constructor-arg>
<beans:bean class="org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator">
<beans:constructor-arg ref="contextSource"/>
<beans:constructor-arg value=""/>
<beans:property name="groupSearchFilter" value="memberOf={1}"/>
<beans:property name="groupRoleAttribute" value="cn"/>
<beans:property name="searchSubtree" value="true" />
<beans:property name="convertToUpperCase" value="false" />
<beans:property name="rolePrefix" value="" />
<!--<beans:property name="defaultRole" value="ROLE_ADMIN" />-->
</beans:bean>
</beans:constructor-arg>
</beans:bean>
<beans:bean id="userSearch" class="org.springframework.security.ldap.search.FilterBasedLdapUserSearch">
<beans:constructor-arg index="0" value="" />
<beans:constructor-arg index="1" value="(&(sAMAccountName={0})(|(memberOf=CN=ROLE_ADMIN,OU=OPENKM,DC=XXXX,DC=com,dc=om)(memberOf=CN=ROLE_USER,OU=OPENKM,DC=XXXX,DC=com,dc=om)))" />
<beans:constructor-arg index="2" ref="contextSource" />
<beans:property name="searchSubtree" value="true" />
</beans:bean>
</beans:beans>
Saleem