uPortal IRC Logs-2012-11-21

Owned by Apereo Infrastructure
Last updated: Nov 21, 2012
3 min read

[10:52:35 CST(-0600)] <EricDalquist> nice looks like uportal still works on tomcat 6 even after tc 7 supports

[10:53:27 CST(-0600)] <EricDalquist> hrm

[10:53:29 CST(-0600)] <EricDalquist> maybe not

[11:50:34 CST(-0600)] <EricDalquist> woot!

[11:50:35 CST(-0600)] <EricDalquist> https://github.com/Jasig/spring-portlet-contrib/blob/master/ContribTestPortlet/src/main/java/org/jasig/portlet/spring/portlet/test/SecurityTestController.java

[11:50:39 CST(-0600)] <EricDalquist> that works (big grin)

[11:50:44 CST(-0600)] <athena> yay!

[11:50:57 CST(-0600)] <athena> this the spring-sec stuff?

[11:50:59 CST(-0600)] <EricDalquist> yeah

[11:51:14 CST(-0600)] <EricDalquist> automatically translates all portlet security roles into spring security roles

[11:51:24 CST(-0600)] <EricDalquist> and uses the remoteUser for pre-auth

[11:51:34 CST(-0600)] <EricDalquist> https://github.com/Jasig/spring-portlet-contrib/blob/master/ContribTestPortlet/src/main/webapp/WEB-INF/portletApplicationContext.xml

[11:51:37 CST(-0600)] <EricDalquist> the config is a bit gross still

[11:51:43 CST(-0600)] <EricDalquist> so I'm going to clean that up eventually

[11:51:57 CST(-0600)] <EricDalquist> but next step is open sourcing our people soft portlets

[11:52:00 CST(-0600)] <EricDalquist> using this stuff

[11:52:05 CST(-0600)] <EricDalquist> so I'll use that as a test case

[11:52:06 CST(-0600)] <athena> sweet!

[11:52:21 CST(-0600)] <EricDalquist> this also adds the portlet application level context file

[11:52:28 CST(-0600)] <EricDalquist> and some more advanced portlet filter support

[11:52:41 CST(-0600)] <EricDalquist> I'm also going to see if I can add a @RenderHeader annotation

[11:54:00 CST(-0600)] <athena> neat!

[11:54:04 CST(-0600)] <athena> that all sounds pretty exciting

[11:54:06 CST(-0600)] <EricDalquist> yeah

[11:54:24 CST(-0600)] <EricDalquist> luckily the portlet side uses for spring security are much simpler

[11:54:31 CST(-0600)] <EricDalquist> and for most portlets it will be a one liner

[11:54:38 CST(-0600)] <EricDalquist> to use remote_user and the built in roles

[11:54:47 CST(-0600)] <EricDalquist> but I think it should support custom role sources

[11:54:52 CST(-0600)] <EricDalquist> not sure about custom auth details sources

[11:55:05 CST(-0600)] <EricDalquist> I don't know when that would ever make sense in a portlet

[11:59:33 CST(-0600)] <athena> hmm.

[11:59:36 CST(-0600)] <athena> yeah, not sure

[11:59:59 CST(-0600)] <athena> maybe roles that query uportal via a service/lib rather than isUserInRole?

[12:00:06 CST(-0600)] <EricDalquist> right

[12:00:15 CST(-0600)] <EricDalquist> so roles will definetly be pluggable

[12:00:19 CST(-0600)] <EricDalquist> our PS portlets use a WS for roles

[12:00:25 CST(-0600)] <EricDalquist> but for authentication

[12:00:35 CST(-0600)] <EricDalquist> I think it is always just going to use pre-auth

[12:00:50 CST(-0600)] <EricDalquist> since I don't really see portlets ever deal with actual auth/username stuff

[12:05:40 CST(-0600)] <athena> yeah

[12:05:42 CST(-0600)] <athena> that makes sense

[12:57:56 CST(-0600)] <skreech__> Hello quickquestion. Can I restict the number of tabs that logged in user can open?

[12:58:09 CST(-0600)] <EricDalquist> not sure I understand

[13:13:28 CST(-0600)] <Daskreech> When someone clicks an internal link it opens up almost as tab in the interface?

[13:14:46 CST(-0600)] <Daskreech> EricDalquist: is there a limit to how many can be opened?

[13:15:04 CST(-0600)] <EricDalquist> hrm

[13:15:10 CST(-0600)] <EricDalquist> I still don't think I understand

[13:15:45 CST(-0600)] <Daskreech> hmm

[13:15:56 CST(-0600)] <Daskreech> Uportal has a concept of tabbed information right?

[13:16:02 CST(-0600)] <EricDalquist> yes

[13:16:24 CST(-0600)] <Daskreech> User controlled?

[13:16:34 CST(-0600)] <EricDalquist> https://up41-nightly.jasig.org/Login?userName=admin&amp;password=admin

[13:16:35 CST(-0600)] <Daskreech> as in they canopen a new tab if they wish

[13:16:45 CST(-0600)] <EricDalquist> you mean add a new tab to their layout?

[13:16:59 CST(-0600)] <Daskreech> Yes

[13:17:02 CST(-0600)] <EricDalquist> ah

[13:17:03 CST(-0600)] <EricDalquist> right

[13:17:13 CST(-0600)] <EricDalquist> so yes users can add new tabs to their layout

[13:18:00 CST(-0600)] <Daskreech> ok is there a way to limit the number of tabs a user can open. Set an upper limit on that?

[13:18:20 CST(-0600)] <EricDalquist> nothing really built in that I can think of

[13:18:39 CST(-0600)] <EricDalquist> but you could tweak the theme XSL and just hide the Add Tab button when the # of tabs is greater than X

[13:18:53 CST(-0600)] <Daskreech> EricDalquist: ah that covers the second question (smile)

[13:23:55 CST(-0600)] <EricDalquist> oh neat ... athena I have it working so if you hit the portlet first the exposed spring-security data is available to servlets in the same webapp (big grin)

[13:24:05 CST(-0600)] <EricDalquist> I mean resource urls should handle most cases

[13:24:13 CST(-0600)] <EricDalquist> but nice to see it working like that

[13:25:26 CST(-0600)] <EricDalquist> and it handles accessing the servlet first (get anon data) then accessing the portlet, then accessing the servlet again and getting the right data