grouper-dev - secure the editing of types or attributes
Subject: Grouper Developers Forum
List archive
- From: Chris Hyzer <>
- To: Grouper Dev <>
- Subject: secure the editing of types or attributes
- Date: Tue, 11 Nov 2008 02:34:48 -0500
- Accept-language: en-US
- Acceptlanguage: en-US
|
This is done for 1.4. https://bugs.internet2.edu/jira/browse/GRP-186 To use this, merge your grouper.properties with the
grouper.example.properties, and note the security section. If you dont want
these hooks in at all, remove all settings. If you want to secure a type or
attributes by wheel/root only, then add a wheel-only entry. e.g. for the type
"exportToLdap", add the setting: security.types.exportToLdap.wheelOnly = true If you want to secure by a certain group (in addition to
root/wheel), then use this setting instead, e.g. for exportToLdap: security.types.exportToLdap.allowOnlyGroup =
etc:exportToLdapGroup Note, if you change your grouper.properties while grouper is
running, you will need to bounce it... ################################### ## security settings ################################### #by default, anyone with admin rights on a group can edit
the types or attributes #specify types (and related attributes) which are wheel
only, or restricted to a certain group #security.types.typeName.wheelOnly = true security.types.grouperLoader.wheelOnly = true #security.types.typeName.allowOnlyGroup = etc:someAdminGroup Chris |
- secure the editing of types or attributes, Chris Hyzer, 11/11/2008
Archive powered by MHonArc 2.6.16.