[jboss-jira] [JBoss JIRA] Commented: (JBPORTAL-1266) CMS Security and User account issue

Sohil Shah (JIRA) jira-events at lists.jboss.org
Tue Apr 10 16:41:58 EDT 2007 

    [ http://jira.jboss.com/jira/browse/JBPORTAL-1266?page=comments#action_12358854 ] 
            
Sohil Shah commented on JBPORTAL-1266:
--------------------------------------

This is actually a data booting issue than a bug.

The root of the problem is that OpenDS boots in-memory with the portal. Initially, it has no identity data populated, hence

the CMS boot policy loads itself, but in the absence of role information in the OpenDS LDAP repo, does not associate the specified
permissions with the "User" role.

This is not an issue, if the LDAP repository is pre-populated with identity data.

However, OpenDS suffers from chicken and egg problem, since you have to run portal to connect to it and import the identity ldif data.


Suggested Workaround:
1) Run AS and portal just to load OpenDS data. Once portal is loaded, disregard all error messages. Import the identity ldif data into OpenDS.

2) Once OpenDS is populated in step 1, Stop portal,
blow away any portal database data (in case of hypersonic, blow away the data dir), Start portal.

> CMS Security and User account issue
> -----------------------------------
>
>                 Key: JBPORTAL-1266
>                 URL: http://jira.jboss.com/jira/browse/JBPORTAL-1266
>             Project: JBoss Portal
>          Issue Type: Bug
>      Security Level: Public(Everyone can see) 
>          Components: Portal CMS
>    Affects Versions: 2.6.Beta1, 2.6.Alpha2
>            Reporter: Sohil Shah
>         Assigned To: Sohil Shah
>            Priority: Minor
>             Fix For: 2.6.CR1
>
>
> Steps to reproduce:
> Take a fresh portal database, use the LDAP Identity Module, Login as 
> user/user
> Note: make sure the portal database is fresh, otherwise this wont reproduce

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the jboss-jira mailing list