Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This module allows users to create their own accounts for use with the system. Two main modes of operation are

  • Create confirmed entries in an ldap directory
  • Keep entries in a database and mark them when confirmed

Unconfirmed entries cannot be used for authentication.

Use:

  • User goes to /selfreg/index.html and receives a form
  • Fills in the form receives an email.
  • Follows the link to confirm.

Configuration

Selfreg requires a database to hold data about users. If ldap authentication is desired the ldap parameters need to be set in the configuration. In both cases ensure an appropriate database has been created and there is a datasource present. There are sample data sources in the bedework/config/datasources directory. The datasource is used both by the selfreg module and by the DatabaseServerLoginModule if db authentication is desired.

Create the schema in the usual manner via the jmx console:

  • set export true - apply changes
  • start schema operation.

DatabaseServerLoginModule

This is the standard jboss module. For jboss 5 add the following to the login-config.xml file

  
  <application-policy name="bwselfreg">
      <authentication>
          <login-module code="org.jboss.security.auth.spi.DatabaseServerLoginModule" flag="required">
              <module-option name="dsJndiName">java:/selfregDS</module-option>
              <module-option name="principalsQuery">select bw_pw from bw_accounts where bw_account=? and bw_enabled='T'</module-option>
              <module-option name="rolesQuery">select bw_role, 'Roles' from bw_roles where bw_account=?</module-option>
              <module-option name="hashAlgorithm">SHA</module-option>
              <module-option name="hashEncoding">base64</module-option>
          </login-module>
      </authentication>
  </application-policy>