Code de grouper, sur lequel se basent tous les autres modules
Configuration base de données
Définition de la base de Grouper
- conf/grouper.hibernate.properties
hibernate.connection.url = jdbc:mysql://mysql.mon-univ.fr:3306/grouper hibernate.connection.username = dev_grouper hibernate.connection.password =
Configuration générale
- conf/grouper.properties
Label utilisé dans les logs
grouper.env.name = grouper-mon-univ
Droits par défaut des utilisateurs
groups.create.grant.all.admin = false groups.create.grant.all.optin = false groups.create.grant.all.optout = false groups.create.grant.all.read = yes groups.create.grant.all.update = false groups.create.grant.all.view = yes stems.create.grant.all.create = false stems.create.grant.all.stem = false attributeDefs.create.grant.all.attrAdmin = false attributeDefs.create.grant.all.attrOptin = false attributeDefs.create.grant.all.attrOptout = false attributeDefs.create.grant.all.attrRead = yes attributeDefs.create.grant.all.attrUpdate = false attributeDefs.create.grant.all.attrView = yes
Possibilité de s'identifier en tant qu'administrateur dans l'interface grouper-ui
groups.wheel.use = true
Groupe des administrateurs de Grouper (voir exemples de grouper Shell pour création initiale des groupes)
groups.wheel.group = groupes:admin:grouper
Configuration des sources de données
Grouper utilise ces sources de données pour gérer les membres de ses groupes et vérifier leur existence
Source de données Ldap Supann :
<source adapterClass="edu.internet2.middleware.grouper.subj.GrouperJndiSourceAdapter"> <id>mon-univ:ldap</id> <name>Ldap Mon univ</name> <type>person</type> <init-param> <param-name>INITIAL_CONTEXT_FACTORY</param-name> <param-value>com.sun.jndi.ldap.LdapCtxFactory</param-value> </init-param> <init-param> <param-name>PROVIDER_URL</param-name> <param-value>ldap://ldap.mon-univ.fr:389</param-value> </init-param> <init-param> <param-name>SECURITY_AUTHENTICATION</param-name> <param-value>anonymous</param-value> </init-param> <init-param> <param-name>SECURITY_PRINCIPAL</param-name> <param-value>cn=Manager,dc=mon-univ,dc=fr</param-value> </init-param> <init-param> <param-name>SECURITY_CREDENTIALS</param-name> <param-value>secret</param-value> </init-param> <init-param> <param-name>SubjectID_AttributeType</param-name> <param-value>uid</param-value> </init-param> <init-param> <param-name>Name_AttributeType</param-name> <param-value>cn</param-value> </init-param> <init-param> <param-name>Description_AttributeType</param-name> <param-value>displayName</param-value> </init-param> /// Scope Values can be: OBJECT_SCOPE, ONELEVEL_SCOPE, SUBTREE_SCOPE /// For filter use <search> <searchType>searchSubject</searchType> <param> <param-name>filter</param-name> <param-value> (& (uid=%TERM%) (objectclass=supannPerson)) </param-value> </param> <param> <param-name>scope</param-name> <param-value> ONELEVEL_SCOPE </param-value> </param> <param> <param-name>base</param-name> <param-value> ou=people,dc=mon-univ,dc=fr </param-value> </param> </search> <search> <searchType>searchSubjectByIdentifier</searchType> <param> <param-name>filter</param-name> <param-value> (& (uid=%TERM%) (objectclass=supannPerson)) </param-value> </param> <param> <param-name>scope</param-name> <param-value> ONELEVEL_SCOPE </param-value> </param> <param> <param-name>base</param-name> <param-value> ou=people,dc=mon-univ,dc=fr </param-value> </param> </search> <search> <searchType>search</searchType> <param> <param-name>filter</param-name> <param-value> (& (|(uid=%TERM%)(cn=*%TERM%*))(objectclass=supannPerson)) </param-value> </param> <param> <param-name>scope</param-name> <param-value> SUBTREE_SCOPE </param-value> </param> <param> <param-name>base</param-name> <param-value> ou=people,dc=mon-univ,dc=fr </param-value> </param> </search> ///Attributes you would like to display when doing a search <attribute>displayName</attribute> <attribute>mail</attribute> </source>