How to bypass the authentication process of Collectory component
Hi Guys,
We did the deployment of the main ALA components (Biocache, Hubs-webapp and Collectory) and now we do some tests with local data. However, we don't have access to the administrative features of Collectory component.
We check that the ALA access control is accomplished through the CAS component (Central Authentication Service), and we will install it soon. Now we would like to bypass this authentication in order to test the administrative features without the CAS deployment/configuration.
I noticed that exist some parameters in the collectory configuration files to do this, but in our tests did not work properly.
Can we disable (bypass) the authentication process to use the collectory administrative features without the CAS deployment? How to do this?
Thanks.
Best Regards,
Thanks Daniel.
Did you use the installation script ? If so it should have CAS disabled by default.
The file:
/data/collectory/config/collectory-config.properties
should look like:
# Security bypass
security.cas.bypass=true
# disable all security
security.cas.uriFilterPattern=/dummy
Cheers
Dave Martin ALA ________________________________ From: ala-portal-bounces@lists.gbif.org [ala-portal-bounces@lists.gbif.org] on behalf of Daniel Lins [daniel.lins@gmail.com] Sent: 06 March 2014 13:53 To: ala-portal@lists.gbif.org Subject: [Ala-portal] How to bypass the authentication process of Collectory component
Hi Guys,
We did the deployment of the main ALA components (Biocache, Hubs-webapp and Collectory) and now we do some tests with local data. However, we don't have access to the administrative features of Collectory component.
We check that the ALA access control is accomplished through the CAS component (Central Authentication Service), and we will install it soon. Now we would like to bypass this authentication in order to test the administrative features without the CAS deployment/configuration.
I noticed that exist some parameters in the collectory configuration files to do this, but in our tests did not work properly.
Can we disable (bypass) the authentication process to use the collectory administrative features without the CAS deployment? How to do this?
Thanks.
Best Regards,
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.brmailto:daniellins@usp.br daniel.lins@gmail.commailto:daniel.lins@gmail.com
Thanks Dave!
We did not use the installation script. We had some issues during script execution (I'll post these issues in another email). We did a manual installation through the build of the source code files.
I believe our problem was in the line below. I'll test and send to you a feedback.
# disable all security security.cas.uriFilterPattern=/dummy
Thanks again.
Great stuff Daniel,
I'd like to update the wiki (or I can give you access to, which might be better) with a link to your installation, and details of it when its ready if that is ok? It will be highly useful for others to know what hardware you are running on, OS versions etc.
Thanks, Tim
On Mar 6, 2014, at 11:58 AM, Daniel Lins wrote:
Thanks Dave!
We did not use the installation script. We had some issues during script execution (I'll post these issues in another email). We did a manual installation through the build of the source code files.
I believe our problem was in the line below. I'll test and send to you a feedback.
# disable all security security.cas.uriFilterPattern=/dummy
Thanks again.
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
2014-03-06 0:05 GMT-03:00 David.Martin@csiro.au: Thanks Daniel.
Did you use the installation script ? If so it should have CAS disabled by default.
The file:
/data/collectory/config/collectory-config.properties
should look like:
# Security bypass
security.cas.bypass=true
# disable all security
security.cas.uriFilterPattern=/dummy
Cheers
Dave Martin ALA From: ala-portal-bounces@lists.gbif.org [ala-portal-bounces@lists.gbif.org] on behalf of Daniel Lins [daniel.lins@gmail.com] Sent: 06 March 2014 13:53 To: ala-portal@lists.gbif.org Subject: [Ala-portal] How to bypass the authentication process of Collectory component
Hi Guys,
We did the deployment of the main ALA components (Biocache, Hubs-webapp and Collectory) and now we do some tests with local data. However, we don't have access to the administrative features of Collectory component.
We check that the ALA access control is accomplished through the CAS component (Central Authentication Service), and we will install it soon. Now we would like to bypass this authentication in order to test the administrative features without the CAS deployment/configuration.
I noticed that exist some parameters in the collectory configuration files to do this, but in our tests did not work properly.
Can we disable (bypass) the authentication process to use the collectory administrative features without the CAS deployment? How to do this?
Thanks.
Best Regards,
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
Ala-portal mailing list Ala-portal@lists.gbif.org http://lists.gbif.org/mailman/listinfo/ala-portal
---------------------------------------------------------------------------------------- Tim Robertson - GBIF Head of Informatics - trobertson@gbif.org Global Biodiversity Information Facility http://www.gbif.org/ GBIF Secretariat, Universitetsparken 15, DK-2100 Copenhagen Ø, Denmark Tel: +45 3532 1487 Mob: +45 2826 1487 Fax: +45 2875 1480 ----------------------------------------------------------------------------------------
Hi Tim,
Sure. We can do this.
When our system is ready, we can update the Wiki with these informations.
Regards,
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
2014-03-06 8:03 GMT-03:00 Tim Robertson [GBIF] trobertson@gbif.org:
Great stuff Daniel,
I'd like to update the wiki (or I can give you access to, which might be better) with a link to your installation, and details of it when its ready if that is ok? It will be highly useful for others to know what hardware you are running on, OS versions etc.
Thanks, Tim
On Mar 6, 2014, at 11:58 AM, Daniel Lins wrote:
Thanks Dave!
We did not use the installation script. We had some issues during script execution (I'll post these issues in another email). We did a manual installation through the build of the source code files.
I believe our problem was in the line below. I'll test and send to you a feedback.
# disable all security security.cas.uriFilterPattern=/dummy
Thanks again.
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
2014-03-06 0:05 GMT-03:00 David.Martin@csiro.au:
Thanks Daniel.
Did you use the installation script ? If so it should have CAS disabled by default.
The file:
/data/collectory/config/collectory-config.properties
should look like:
# Security bypass
security.cas.bypass=true
# disable all security
security.cas.uriFilterPattern=/dummy
Cheers
Dave Martin ALA
*From:* ala-portal-bounces@lists.gbif.org [ ala-portal-bounces@lists.gbif.org] on behalf of Daniel Lins [ daniel.lins@gmail.com] *Sent:* 06 March 2014 13:53 *To:* ala-portal@lists.gbif.org *Subject:* [Ala-portal] How to bypass the authentication process of Collectory component
Hi Guys,
We did the deployment of the main ALA components (Biocache, Hubs-webapp and Collectory) and now we do some tests with local data. However, we don't have access to the administrative features of Collectory component.
We check that the ALA access control is accomplished through the CAS component (Central Authentication Service), and we will install it soon. Now we would like to bypass this authentication in order to test the administrative features without the CAS deployment/configuration.
I noticed that exist some parameters in the collectory configuration files to do this, but in our tests did not work properly.
Can we disable (bypass) the authentication process to use the collectoryadministrative features without the CAS deployment? How to do this?
Thanks.
Best Regards,
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
Ala-portal mailing list Ala-portal@lists.gbif.org http://lists.gbif.org/mailman/listinfo/ala-portal
Tim Robertson - GBIF Head of Informatics - trobertson@gbif.org
Global Biodiversity Information Facility http://www.gbif.org/
GBIF Secretariat, Universitetsparken 15, DK-2100 Copenhagen Ø, Denmark
Tel: +45 3532 1487 Mob: +45 2826 1487 Fax: +45 2875 1480
Ala-portal mailing list Ala-portal@lists.gbif.org http://lists.gbif.org/mailman/listinfo/ala-portal
Hi Dave,
Sorry for the late response.
The administrative features of Collectory are already accessible!
The code line "security.cas.uriFilterPattern=/dummy " did not exist in my external config file.
Thanks!!
Cheers.
Daniel Lins Em 06/03/2014 00:06, David.Martin@csiro.au escreveu:
Thanks Daniel.
Did you use the installation script ? If so it should have CAS disabled by default.
The file:
/data/collectory/config/collectory-config.properties
should look like:
# Security bypass
security.cas.bypass=true
# disable all security
security.cas.uriFilterPattern=/dummy
Cheers
Dave Martin ALA
*From:* ala-portal-bounces@lists.gbif.org [ ala-portal-bounces@lists.gbif.org] on behalf of Daniel Lins [ daniel.lins@gmail.com] *Sent:* 06 March 2014 13:53 *To:* ala-portal@lists.gbif.org *Subject:* [Ala-portal] How to bypass the authentication process of Collectory component
Hi Guys,
We did the deployment of the main ALA components (Biocache, Hubs-webapp and Collectory) and now we do some tests with local data. However, we don't have access to the administrative features of Collectory component.
We check that the ALA access control is accomplished through the CAS component (Central Authentication Service), and we will install it soon. Now we would like to bypass this authentication in order to test the administrative features without the CAS deployment/configuration.
I noticed that exist some parameters in the collectory configuration files to do this, but in our tests did not work properly.
Can we disable (bypass) the authentication process to use the collectory administrative features without the CAS deployment? How to do this?
Thanks.
Best Regards,
-- Daniel Lins da Silva (Cel) 55 11 96144-4050 Research Center on Biodiversity and Computing (Biocomp) University of Sao Paulo, Brazil daniellins@usp.br daniel.lins@gmail.com
participants (3)
-
Daniel Lins -
David.Martin@csiro.au -
Tim Robertson [GBIF]