Ignore:
Timestamp:
Oct 21, 2010, 5:28:04 PM (12 years ago)
Author:
robert@…
Message:

Authentication and authorization for studies is added, according to ticket 118

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/grails-app/conf/Config.groovy

    r936 r976  
    157157
    158158// Needed for the Spring Security Core plugin:
    159 grails.plugins.springsecurity.userLookup.userDomainClassName = 'org.nmcdsp.plugins.aaaa.SecUser'
    160 grails.plugins.springsecurity.userLookup.authorityJoinClassName = 'org.nmcdsp.plugins.aaaa.SecUserSecRole'
    161 grails.plugins.springsecurity.authority.className = 'org.nmcdsp.plugins.aaaa.SecRole'
     159grails.plugins.springsecurity.userLookup.userDomainClassName = 'dbnp.authentication.SecUser'
     160grails.plugins.springsecurity.userLookup.authorityJoinClassName = 'dbnp.authentication.SecUserSecRole'
     161grails.plugins.springsecurity.authority.className = 'dbnp.authentication.SecRole'
     162grails.plugins.springsecurity.password.algorithm = 'SHA-256'
     163grails.plugins.springsecurity.password.encodeHashAsBase64 = true
     164grails.plugins.springsecurity.dao.reflectionSaltSourceProperty = 'username' // Use the persons username as salt for encryption
     165grails.plugins.springsecurity.securityConfigType = grails.plugins.springsecurity.SecurityConfigType.Annotation
     166
     167// Make sure the different controllers provided by springsecurity.ui are only accessible by administrators
     168// NB: the RegisterController is used for forgotten passwords. It should be accessible by anyone
     169grails.plugins.springsecurity.controllerAnnotations.staticRules = [
     170    '/user/**': ['ROLE_ADMIN'],
     171    '/role/**': ['ROLE_ADMIN'],
     172    '/aclclass/**': ['ROLE_ADMIN'],
     173    '/aclentry/**': ['ROLE_ADMIN'],
     174    '/aclobjectidentity/**': ['ROLE_ADMIN'],
     175    '/aclsid/**': ['ROLE_ADMIN'],
     176    '/persistentlogin/**': ['ROLE_ADMIN'],
     177    '/registrationcode/**': ['ROLE_ADMIN'],
     178    '/requestmap/**': ['ROLE_ADMIN'],
     179    '/securityinfo/**': ['ROLE_ADMIN']
     180]
     181
     182
     183// Needed for sending emails
     184grails {
     185    mail {
     186        host = "smtp.gmail.com"
     187        port = 465
     188        username = "gscfproject@gmail.com"
     189        password = "gscf2010"
     190        props = [
     191            "mail.smtp.auth":"true",
     192            "mail.smtp.socketFactory.port": '465',
     193            "mail.smtp.socketFactory.class": "javax.net.ssl.SSLSocketFactory",
     194            "mail.smtp.socketFactory.fallback": "false"
     195        ]
     196    }
     197}
    162198
    163199// The OAuth consumer key and secret variables are currently replaced by Jeroen's Continuous Integration script.
     
    173209        }
    174210}
     211
Note: See TracChangeset for help on using the changeset viewer.