THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
...
Code Block | ||||
---|---|---|---|---|
| ||||
<util:list id="claimHandlerList"> <ref bean="ldapClaimsHandler" /> </util:list> <bean id="contextSource" class="org.springframework.ldap.core.support.LdapContextSource"> <property name="url" value="ldap://ldap.mycompany.org:389" /> <property name="userDn" value="CN=techUser,OU=Users,DC=mycompany,DC=org" /> <property name="password" value="mypassword" /> </bean> <bean id="ldapTemplate" class="org.springframework.ldap.core.LdapTemplate"> <constructor-arg ref="contextSource" /> </bean> <util:map id="claimsToLdapAttributeMapping"> <entry key="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" value="givenName" /> <entry key="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" value="sn" /> <entry key="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" value="mail" /> <entry key="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/country" value="c" /> </util:map> <bean id="ldapClaimsHandler" class="org.apache.cxf.sts.claims.LdapClaimsHandler"> <property name="ldapTemplate" ref="ldapTemplate" /> <property name="claimsLdapAttributeMapping" ref="claimsToLdapAttributeMapping" /> <property name="userBaseDN" value="OU=Users,DC=mycompany,DC=org" /> </bean> |
You must deploy the library for the spring ldap module and its dependencies. The POM of the spring ldap module is available here.
You can add the dependency to spring ldap module to the Fediz STS POM, add the above configuration and rebuild the STS component or do the configuration in the deployed STS directly and add the following JAR files:
- lang-2.1.0.jar
- ldapbp-1.0.jar
- spring-ldap-1.2.jar
Configure CA certificates
...