Changeset 4257

Timestamp:

01/13/14 15:32:38 (10 years ago)

Author:

olhsha

Message:

the e-mails now are saved in "lower-case" in the db and compared to the lower-cased e-mails. Two profiles are made: shibbolized and non-shibbolized

Location:

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend

Files:

• CHANGES.txt (modified) (1 diff)
• INSTALL.txt (modified) (1 diff)
• UPDATE.txt (modified) (1 diff)
• nb-configuration.xml (modified) (1 diff)
• pom.xml (modified) (3 diffs)
• src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcUserDao.java (modified) (3 diffs)
• src/main/webapp/WEB-INF/shhaa.xml (modified) (1 diff)
• src/main/webapp/WEB-INF/web.xml (modified) (2 diffs)
• src/main/webapp/WEB-INF/web_shaa.xml (added)

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/CHANGES.txt

@@ -4 +4 @@
 deployment tar-ball which is from now on is generated using maven assembly 
 plug-in.
+
+January 9-10, 2014. The spring-security settings (authentication and authorisation) 
+are removed. Shibboleth sshaa.xml is added,  and web.xml is adapted. The boolean  column admin_rights 
+is added to the table "principal" in the DB. Adding, updating and deleting a user 
+in the DB (only by admin) is debugged and tested.

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/INSTALL.txt

@@ -68 +68 @@
 <server uri>/ds/webannotator
 
-Note that the path "ds/webannotator" is the same as mentioned in  ds#webannotator.xml above.
+Note that the path "ds/webannotator" is the same as mentioned in  ds#webannotator.xml 
+above.
 
 On this web-page there is a number of test GET requests there which you can send if you want 
-to check if it works. For this you will need a login and a password. Ask the dasish backend's 
-responsible developer (Olha). 
+to check if it works. If you are not in the DB yet, any request will end up with the Server 
+error message "the logged-in-user". Ask Olha to add you providing with your shibboleth 
+remote ID. If you are in the DB you should be able to perform any request, except may be
+getting annotation. If you have read access to the test annotation, you will get it.
+
+
 
 If you want to test POST, PUT and DELETE requests use e.g.

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/UPDATE.txt

@@ -1 @@
-Take the tar-ball of the new  version XXX, and follow the standard MPI deployment procedure
-Consult the instructions from INSTALL.txt about placing war file. 
+1. Placing tarball: as always, take the tar-ball of the new  version 1.1, and follow the 
+standard MPI deployment procedure.  Consult the instructions from INSTALL.txt 
+about placing war file if you haveforgotte.
 
-For testing consult "Testing" section of INSTALL.txt. 
+2. Adjusting shhaa.xml:  you need to set "sso action" and "slo action". E.g.
+for lux16 they look as follows:
+<sso action="lI">https://lux16.mpi.nl/Shibboleth.sso/Login</sso> 
+<slo action="lO">https://lux16.mpi.nl/Shibboleth.sso/Logout</slo> 
+For the other servers the sysadmins should know.
+
+3. This time the dasish database on lux17 is changed because we removed spring-security 
+related tables. You have 2 options. Option A: remove the databse and copy the database from lux16
+to lux17. Option B: remove the tables "users" and "authorities" from the databse, and add
+a boolean column "admin_rights" to the table "principal", with the default values "false";
+and set Olha's admin_rights to "true".
+
+4. If the application is succesfully deployed, you will get the jsp page after requesting
+
+<server uri>/ds/webannotator
+
+On this web-page there is a number of test GET requests there which you can send if you want 
+to check if it works. If you are not in the DB yet, any request
+will end up with the Server  error message "the logged-in-user". Ask Olha to add you 
+providing with your shibboleth  remote ID. If you are in the DB you should be able to perform any request, except may be
+getting annotation. If you have read access to the test annotation, 
+you will get it. Ask Olha to test POST, PUT, DELETE or do it youself consulting "Testing" 
+section in INSTAL.txt.
 
 
+

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/nb-configuration.xml

@@ -19 +19 @@
     <spring-data xmlns="http://www.netbeans.org/ns/spring-data/1">
         <config-files>
-            <config-file>src/main/resources/spring-config/applicationContext-security.xml</config-file>
-            <config-file>src/main/resources/spring-config/bCryptPasswordEncoder.xml</config-file>
+            <config-file>src/main/webapp/WEB-INF/web-shaa.xml</config-file>
         </config-files>
         <config-file-groups/>

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/pom.xml

@@ -247 +247 @@
             <version>8.4-702.jdbc4</version>
         </dependency>
-       <!-- <dependency>
+        <!-- <dependency>
             <groupId>org.springframework.security</groupId>
             <artifactId>spring-security-core</artifactId>
@@ -284 +284 @@
         </dependency>
     </dependencies>
+    
+    <profiles>
+        <profile>
+            <id>lux16</id>
+            <properties>
+                <serviceRootUrl>http://lux16.mpi.nl/ds/webannotator/</serviceRootUrl>
+                <!-- Will be inserted in context.xml -->
+                <shibLI>http://lux16.mpi.nl/Shibboleth.sso/Login</shibLI>
+                <!-- Shibboleth login URI for SHHAA -->
+                <shibLO>http://lux16.mpi.nl/Shibboleth.sso/Logout</shibLO>
+                <!-- Shibboleth logout URI for SHHAA -->
+                <webXmlPath>src/main/webapp/WEB-INF/web-shib.xml</webXmlPath>
+                <!-- web.xml for shibboleth authentication -->
+            </properties>
+        </profile>
+        
+        <profile>
+            <id>lux17</id>
+            <properties>
+                <serviceRootUrl>http://lux17.mpi.nl/ds/webannotator/</serviceRootUrl>
+                <!-- Will be inserted in context.xml -->
+                <shibLI>http://lux17.mpi.nl/Shibboleth.sso/Login</shibLI>
+                <!-- Shibboleth login URI for SHHAA -->
+                <shibLO>http://lux17.mpi.nl/Shibboleth.sso/Logout</shibLO>
+                <!-- Shibboleth logout URI for SHHAA -->
+                <webXmlPath>src/main/webapp/WEB-INF/web-shib.xml</webXmlPath>
+                <!-- web.xml for shibboleth authentication -->
+            </properties>
+        </profile>
+        
+        <profile>
+            <id>localhost</id>
+            <activation>
+                <activeByDefault>true</activeByDefault>
+            </activation>
+            <properties>
+                <serviceRootUrl>localhost:8080/annotator-backend/api/</serviceRootUrl>
+                <webXmlPath>src/main/webapp/WEB-INF/web.xml</webXmlPath>
+            </properties>
+        </profile>
+    </profiles>
+        
     <properties>
         <jersey.version>1.17.1</jersey.version>
@@ -294 +336 @@
         <project.version>1.1</project.version>
     </properties>
+    
+    
 </project>

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/java/eu/dasish/annotation/backend/dao/impl/JdbcUserDao.java

@@ -97 +97 @@
     @Override 
     public boolean userExists(User user){
-        String emailCriterion = user.getEMail();
+        String emailCriterion = user.getEMail().toLowerCase();
         StringBuilder sqlTargets  = new StringBuilder("SELECT ");
         sqlTargets.append(principal_id).append(" FROM ").append(principalTableName).append(" WHERE ").append(e_mail).append("= ? LIMIT 1");
@@ -152 +152 @@
         params.put("externalId", newExternalIdentifier);
         params.put("principalName", user.getDisplayName());
-        params.put("email", user.getEMail());
+        params.put("email", user.getEMail().toLowerCase());
         params.put("remoteID", remoteID);
         StringBuilder sql = new StringBuilder("INSERT INTO ");
@@ -166 +166 @@
         StringBuilder sql = new StringBuilder("UPDATE ");
         sql.append(principalTableName).append(" SET ").
-                append(e_mail).append("= '").append(user.getEMail()).append("',").
+                append(e_mail).append("= '").append(user.getEMail().toLowerCase()).append("',").
                 append(principal_name).append("= '").append(user.getDisplayName()).append("' ").
                 append(" WHERE ").append(principal_id).append("= ?");

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/webapp/WEB-INF/shhaa.xml

@@ -22 +22 @@
     <shhaa>
 
-        <authentication>
-            <shibheader>
-                <username>oid:eduPersonPrincipalName</username>
-                <username>mace:eduPersonPrincipalName</username>
-                <username>eduPersonPrincipalName</username>
+        <authentication>
+            <shibheader>
+                <username>oid:eduPersonPrincipalName</username>
+                <username>mace:eduPersonPrincipalName</username>
+                <username>eduPersonPrincipalName</username>
                 
-                <username>oid:eduPersonTargetedID</username>
-                <username>mace:eduPersonTargetedID</username>
-                <username>eduPersonTargetedID</username>
+                <username>oid:eduPersonTargetedID</username>
+                <username>mace:eduPersonTargetedID</username>
+                <username>eduPersonTargetedID</username>
 
-                <session>Shib-Session-ID</session>
-                <idp>Shib-Identity-Provider</idp>
-                <timestamp>Shib-Authentication-Instant</timestamp>
-            </shibheader>
-            <fallback>
-                <username>anonymous</username>
-            </fallback>
-            <sso action="lI">https://lux16.mpi.nl/Shibboleth.sso/Login</sso> 
-            <slo action="lO">https://lux16.mpi.nl/Shibboleth.sso/Logout</slo> 
-        </authentication>
+                <session>Shib-Session-ID</session>
+                <idp>Shib-Identity-Provider</idp>
+                <timestamp>Shib-Authentication-Instant</timestamp>
+            </shibheader>
+            <fallback>
+                <username>anonymous</username>
+            </fallback>
+            <sso action="lI">${shibLI}</sso> 
+            <slo action="lO">${shibLO}</slo>   
+        </authentication>
         
         
-        <!-- <composition action="rF">
-            <shibheader>
-                <attribute>displayName</attribute>
-                <attribute>commonName</attribute>
-            </shibheader>
-        </composition> -->
+        <!-- <composition action="rF">
+            <shibheader>
+                        <attribute>displayName</attribute>
+                        <attribute>commonName</attribute>
+            </shibheader>
+        </composition> -->
 
         
-        <authorization>
-            <!-- lux16, 17, corpus1 -->
+        <authorization>
             <location  target="/*" />
-            <!-- localhost -->
-            <location  target="/dummy/*" />
-        </authorization>
+        </authorization>
         
         

DASISH/t5.6/backend/annotator-backend/trunk/annotator-backend/src/main/webapp/WEB-INF/web.xml

@@ -65 +65 @@
     </servlet-mapping>
     
-    <!-- lux16, 17, corpus 1 (shibbolized) -->
-   <!--  <filter>
-        <filter-name>AAIFilter</filter-name>
-        <filter-class>de.mpg.aai.shhaa.AuthFilter</filter-class>
-    </filter>
-    <filter-mapping>
-        <filter-name>AAIFilter</filter-name>
-        <url-pattern>/*</url-pattern>
-    </filter-mapping> -->
-    
-    
-    <!-- localhost auth  -->
-    
     <security-constraint>
         <display-name>Backend localhost</display-name>
@@ -101 +88 @@
         <role-name>tomcat</role-name>
     </security-role> 
-    
 </web-app>