Skip to Content.
Sympa Menu

grouper-users - Re: [grouper-users] Grouper PSP and sources.xml

Subject: Grouper Users - Open Discussion List

List archive

Re: [grouper-users] Grouper PSP and sources.xml


Chronological Thread 
  • From: Scott Koranda <>
  • To: Chris Hyzer <>
  • Cc: Gagné Sébastien <>, grouper-users <>
  • Subject: Re: [grouper-users] Grouper PSP and sources.xml
  • Date: Fri, 30 Mar 2012 10:59:26 -0500

Hi,

> Are you talking about the source id of "ldap". If you are
> upgrading, you might want to keep the same id, since you
> will have to change the registry which stores that in
> grouper_members, and WS clients could be using that as well,
> and UI configs, and not sure what else... :)

Yes, I do plan on keeping 'ligo' as the source ID but thanks
to Sébastien I know that I have to make a few extra edits for the
PSP configuration files in order to avoid pestering the list
and Tom when it doesn't work. ;-)

Cheers,

Scott

>
> Chris ________________________________________ From:
>
> []
> on behalf of Scott
> Koranda
> []
> Sent: Friday, March 30, 2012
> 11:46 AM To: Gagné Sébastien Cc: grouper-users Subject: Re:
> [grouper-users] Grouper PSP and sources.xml
>
> Hi,
>
> > Yes, here we copy the psp configuration in the grouper api
> > conf folder before doing any configuration since the PSP
> > examples will overwrite the sources.xml file.
> >
> > API, UI, WS and PSP will use the same sources.xml file
> > with the ldap.property file. All the initial parameters
> > (e.g. PROVIDER_URL, SECURITY_AUTHENTICATION,
> > SECURITY_PRINCIPAL) will be in ldap.properties file.
> > Grouper can still support the "old" parameters in the
> > sources.xml, but I find it cleaner in the file (since you
> > already need it)
>
> Excellent. Thanks much.
>
> >
> > One important thing : you should use the <id>ldap</id>
> > instead of ligo. If you need/want to use something other
> > than ldap you will have to change it in multiple location
> > in multiple files, see :
> > https://spaces.internet2.edu/display/Grouper/Grouper+Provisioning#GrouperProvisioning-ConfigureLDAPSubjectSourceIDOtherThan%22ldap%22
>
> Aha. Good to know.
>
> Cheers,
>
> Scott
>
> >
> >
> > -----Message d'origine----- De :
> >
> > [mailto:]
> > De la part de
> > Scott Koranda Envoyé : 30 mars 2012 11:27 À :
> > grouper-users Objet : [grouper-users] Grouper PSP and
> > sources.xml
> >
> > Hi,
> >
> > I deployed Grouper 2.1.0 API, UI, and WS following my
> > usual deployment instructions. As part of that I edited
> > sources.xml to find subject in my LDAP:
> >
> > <source
> >
> > adapterClass="edu.internet2.middleware.grouper.subj.GrouperJndiSourceAdapter">
> > <id>ligo</id> <name>LIGO VO Members</name>
> > <type>person</type> <init-param>
> > <param-name>INITIAL_CONTEXT_FACTORY</param-name>
> > <param-value>com.sun.jndi.ldap.LdapCtxFactory</param-value>
> > </init-param> <init-param>
> > <param-name>PROVIDER_URL</param-name>
> > <param-value>ldaps://some.server.edu:636</param-value>
> > </init-param> <init-param>
> > <param-name>SECURITY_AUTHENTICATION</param-name>
> > <param-value>simple</param-value> </init-param>
> > <init-param> <param-name>SECURITY_PRINCIPAL</param-name>
> > <param-value>uid=grouper,ou=system,dc=ligo,dc=org</param-value>
> > </init-param> <init-param>
> > <param-name>SECURITY_CREDENTIALS</param-name>
> > <param-value>XXXXXXXX</param-value> </init-param>
> > <init-param>
> > <param-name>SubjectID_formatToLowerCase</param-name>
> > <param-value>false</param-value> </init-param>
> >
> > <snip>
> >
> > The instructions and example for the PSP at
> >
> > https://spaces.internet2.edu/display/Grouper/Grouper+Provisioning
> >
> > uses a different adapterClass and
> >
> > <init-param> <param-name>ldapProperties_file</param-name>
> > <param-value>ldap.properties</param-value> </init-param>
> >
> > along with the ldap.properties file.
> >
> > Am I supposed to replace the sources.xml file I use for
> > the API, UI, and WS with the one I configure for the PSP
> > so that they all use the same sources.xml or is the PSP
> > supposed to have a unique sources.xml file?
> >
> > Does the PSP need to use ldap.properties?
> >
> > Thanks,
> >
> > Scott
> >
> >
> >
> >
> >



Archive powered by MHonArc 2.6.16.

Top of Page