TechQA.

Spring LDAP not getting all Authorities

294 views Asked by At

So I'm having issues getting all the appropriate authorities from LDAP into Spring. I am able to get SOME of the authorities, but not all of them.

My LDAP structure looks like this:

enter image description here

I'm using: Spring 4, Spring Security 4, Spring LDAP 2

My application-context-security.xml contains:

<ldap-server url="${ldap.server.url}" />

<beans:bean id="gridInetOrgUserMapper" class="com.package.of.company.commons.GridInetOrgPersonContextMapper" />

<beans:bean id="localSecurityHandler" class="com.package.of.stuff.service.impl.SecurityHandler">
    <beans:constructor-arg ref="userService" />
</beans:bean>

<authentication-manager id="authenticationManagerCas">
    <authentication-provider ref="casAuthenticationProvider" />
</authentication-manager>

<beans:bean id="casAuthenticationProvider" class="org.springframework.security.cas.authentication.CasAuthenticationProvider">
    <beans:property name="userDetailsService" ref="ldapUserService"/> 
    <beans:property name="serviceProperties" ref="serviceProperties" />
    <beans:property name="ticketValidator">
        <beans:bean class="org.jasig.cas.client.validation.Cas20ServiceTicketValidator">
            <beans:constructor-arg index="0" value="${security.cas.app.url}" />
        </beans:bean>
    </beans:property>
    <beans:property name="key" value="knowledge"/>
</beans:bean>

<ldap-user-service  
    id="ldapUserService" 
    user-search-base="ou=People" 
    user-search-filter="(uid={0})" 
    group-search-base="ou=Groups"
    group-role-attribute="cn"
    group-search-filter="(objectClass=*)"
    role-prefix="none" 
    user-context-mapper-ref="gridInetOrgUserMapper"/>

<beans:bean id="serviceProperties" class="org.springframework.security.cas.ServiceProperties">
    <beans:property name="service" value="${security.cas.postback.service.name}"/>
    <beans:property name="sendRenew" value="false"/>
</beans:bean>

<beans:bean id="casFilter" class="org.springframework.security.cas.web.CasAuthenticationFilter">
    <beans:property name="authenticationManager" ref="authenticationManagerCas"/>
    <beans:property name="authenticationSuccessHandler" ref="localSecurityHandler">
    </beans:property>
</beans:bean>

<beans:bean id="casEntryPoint" class="org.springframework.security.cas.web.CasAuthenticationEntryPoint">
    <beans:property name="loginUrl" value="${security.cas.login.url}"/>
    <beans:property name="serviceProperties" ref="serviceProperties"/>
</beans:bean>

I'm able to get out LAUNCHERADMIN and LAUNCHERUSER, but not any of the Knowledge authorities. I've been stuck on this for the past 3 days. Any help would be greatly appreciated.

java spring spring-security spring-ldap
Original Q&A
0

There are 0 answers

Related Questions in JAVA

Related Questions in SPRING

Related Questions in SPRING-SECURITY

Related Questions in SPRING-LDAP

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions