Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?xml version="1.0"?>
- <beans xmlns="http://www.springframework.org/schema/beans" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.1.xsd">
- <bean id="proxyAuthenticationProcessingFilter" class="com.jaspersoft.jasperserver.api.security.EncryptionAuthenticationProcessingFilter" parent="authenticationProcessingFilter">
- <property name="authenticationManager">
- <ref local="ldapAuthenticationManager"/>
- </property>
- <property name="authenticationSuccessHandler" ref="externalAuthSuccessHandler"/>
- </bean>
- <bean id="proxyAuthenticationSoapProcessingFilter" class="com.jaspersoft.jasperserver.api.security.externalAuth.DefaultAuthenticationSoapProcessingFilter">
- <property name="authenticationManager" ref="ldapAuthenticationManager"/>
- <property name="authenticationSuccessHandler" ref="externalAuthSuccessHandler"/>
- <property name="filterProcessesUrl" value="/services"/>
- </bean>
- <bean id="proxyAuthenticationRestProcessingFilter" class="com.jaspersoft.jasperserver.api.security.externalAuth.DefaultAuthenticationRestProcessingFilter">
- <property name="authenticationManager">
- <ref local="ldapAuthenticationManager"/>
- </property>
- <property name="authenticationSuccessHandler" ref="externalAuthSuccessHandler"/>
- <property name="filterProcessesUrl" value="/rest/login"/>
- </bean>
- <bean id="proxyRequestParameterAuthenticationFilter" class="com.jaspersoft.jasperserver.war.util.ExternalRequestParameterAuthenticationFilter" parent="requestParameterAuthenticationFilter">
- <property name="authenticationManager">
- <ref local="ldapAuthenticationManager"/>
- </property>
- <property name="externalDataSynchronizer" ref="externalDataSynchronizer"/>
- </bean>
- <bean id="externalAuthSuccessHandler" class="com.jaspersoft.jasperserver.api.security.externalAuth.JrsExternalAuthenticationSuccessHandler" parent="successHandler">
- <property name="externalDataSynchronizer">
- <ref local="externalDataSynchronizer"/>
- </property>
- </bean>
- <bean id="proxyBasicProcessingFilter" class="com.jaspersoft.jasperserver.api.security.externalAuth.ExternalAuthBasicProcessingFilter" parent="basicProcessingFilter">
- <property name="authenticationManager" ref="ldapAuthenticationManager"/>
- <property name="externalDataSynchronizer" ref="externalDataSynchronizer"/>
- </bean>
- <bean id="ldapAuthenticationManager" class="com.jaspersoft.jasperserver.api.security.externalAuth.wrappers.spring.JSProviderManager">
- <property name="providers">
- <list>
- <ref local="ldapAuthenticationProvider"/>
- <ref bean="${bean.daoAuthenticationProvider}"/>
- <!--anonymousAuthenticationProvider only needed if filterInvocationInterceptor.alwaysReauthenticate is set to true
- <ref bean="anonymousAuthenticationProvider"/>-->
- </list>
- </property>
- </bean>
- <bean id="ldapAuthenticationProvider" class="com.jaspersoft.jasperserver.api.security.externalAuth.wrappers.spring.ldap.JSLdapAuthenticationProvider">
- <constructor-arg>
- <bean class="com.jaspersoft.jasperserver.api.security.externalAuth.wrappers.spring.ldap.JSBindAuthenticator">
- <constructor-arg>
- <ref local="ldapContextSource"/>
- </constructor-arg>
- <property name="userSearch" ref="userSearch"/>
- </bean>
- </constructor-arg>
- <constructor-arg>
- <bean class="com.jaspersoft.jasperserver.api.security.externalAuth.wrappers.spring.ldap.JSDefaultLdapAuthoritiesPopulator">
- <constructor-arg index="0">
- <ref local="ldapContextSource"/>
- </constructor-arg>
- <constructor-arg index="1">
- <value>OU=ACCESSGROUPS</value>
- </constructor-arg>
- <property name="groupRoleAttribute">
- <value>CN</value>
- </property>
- <property name="convertToUpperCase">
- <value>true</value>
- </property>
- <property name="rolePrefix">
- <value>ROLE_</value>
- </property>
- <property name="groupSearchFilter">
- <value>(&(member={0})(objectclass=group)(cn=JASPER_*))</value>
- </property>
- <property name="defaultRole">
- <value>ROLE_USER</value>
- </property>
- <property name="searchSubtree">
- <value>true</value>
- </property>
- </bean>
- </constructor-arg>
- </bean>
- <bean id="userSearch" class="org.springframework.security.ldap.search.FilterBasedLdapUserSearch">
- <constructor-arg index="0">
- <value>ou=WorkstationUsers</value>
- </constructor-arg>
- <constructor-arg index="1">
- <value>(&(sAMAccountName={0}))</value>
- </constructor-arg>
- <constructor-arg index="2">
- <ref local="ldapContextSource"/>
- </constructor-arg>
- <property name="searchSubtree">
- <value>true</value>
- </property>
- </bean>
- <bean id="ldapContextSource" class="com.jaspersoft.jasperserver.api.security.externalAuth.ldap.JSLdapContextSource">
- <constructor-arg value="ldap://mydomain:389/dc=my,dc=com"/>
- <!-- manager user name and password (may not be needed) -->
- <property name="userDn" value="CN=Test User,OU=ServiceAccounts,DC=my,DC=com"/>
- <property name="password" value="mypassword"/>
- <property name="referral" value="follow"/>
- </bean>
- <!-- ############ LDAP authentication ############ -->
- <!-- ############ JRS Synchronizer ############ -->
- <bean id="externalDataSynchronizer" class="com.jaspersoft.jasperserver.api.security.externalAuth.ExternalDataSynchronizerImpl">
- <property name="externalUserProcessors">
- <list>
- <ref local="externalUserSetupProcessor"/>
- <!-- Example processor for creating user folder-->
- <!--<ref local="externalUserFolderProcessor"/>-->
- </list>
- </property>
- </bean>
- <bean id="abstractExternalProcessor" class="com.jaspersoft.jasperserver.api.security.externalAuth.processors.AbstractExternalUserProcessor" abstract="true">
- <property name="repositoryService" ref="${bean.repositoryService}"/>
- <property name="userAuthorityService" ref="${bean.userAuthorityService}"/>
- <property name="tenantService" ref="${bean.tenantService}"/>
- <property name="profileAttributeService" ref="profileAttributeService"/>
- <property name="objectPermissionService" ref="objectPermissionService"/>
- </bean>
- <bean id="externalUserSetupProcessor" class="com.jaspersoft.jasperserver.api.security.externalAuth.processors.ExternalUserSetupProcessor" parent="abstractExternalProcessor">
- <property name="userAuthorityService">
- <ref bean="${bean.internalUserAuthorityService}"/>
- </property>
- <property name="defaultInternalRoles">
- <list>
- <value>ROLE_USER</value>
- </list>
- </property>
- <property name="organizationRoleMap">
- <map>
- <!-- Example of mapping customer roles to JRS roles -->
- <entry>
- <key>
- <value>ROLE_JASPER_MANAGEMENT</value>
- </key>
- <!-- JRS role that the <key> external role is mapped to-->
- <value>ROLE_ADMINISTRATOR</value>
- </entry>
- <entry>
- <key>
- <value>ROLE_JASPER_USER</value>
- </key>
- <!-- JRS role that the <key> external role is mapped to-->
- <value>ROLE_USER</value>
- </entry>
- </map>
- </property>
- </bean>
- </beans>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement