grouper-users - Re: [grouper-users] Grouper access control
Subject: Grouper Users - Open Discussion List
List archive
- From: Baron Fujimoto <>
- To: "Doppala, Karthik" <>
- Cc:
- Subject: Re: [grouper-users] Grouper access control
- Date: Thu, 12 Jun 2014 10:14:04 -1000
On Thu, Jun 12, 2014 at 05:50:01PM +0000, Doppala, Karthik wrote:
>Hi,
>I was wondering if there is a way to restrict view access in grouper, with
>our current grouper instance any one with single sign on access can sign
>into grouper and view the groups and memberships. I understand we can manage
>access control through Shib but is there another way to restrict this?
>
>Thanks,
>Karthik
We handle this in the UI with the following:
########################################################################
# ./dist/grouper/WEB-INF/classes/grouper.properties
########################################################################
configuration.autocreate.group.name.1 = etc:uiUsers
########################################################################
# ./dist/grouper/WEB-INF/classes/resources/grouper/media.properties
########################################################################
require.group.for.logins=etc:uiUsers
It's documented at
<https://spaces.internet2.edu/display/Grouper/Media+Properties>
(and perhaps elsewhere in the Adminstration Guides, but a search didn't
turn up a better example). There are also discussions to be found in the
list archives.
There similar settings for the WS in grouper-ws.properties:
ws.client.user.group.name = etc:webServiceUsers
--
Baron Fujimoto
<>
:: UH Information Technology Services
minutas cantorum, minutas balorum, minutas carboratum desendus pantorum
- [grouper-users] Grouper access control, Doppala, Karthik, 06/12/2014
- Re: [grouper-users] Grouper access control, Baron Fujimoto, 06/12/2014
Archive powered by MHonArc 2.6.16.