mirror of
https://github.com/Alfresco/alfresco-community-repo.git
synced 2025-07-31 17:39:05 +00:00
9963da3d51
20794: Merged DEV/V3.3-BUG-FIX to V3.3
20792: Fix for unit test failures introduced by check in 20771
20791: ALF-3568: Include axiom jars in WAS shared library to solve Quickr connector issues
20785: Merged DEV/BELARUS/V3.3-BUG-FIX-2010_06_14 to DEV/V3.3-BUG-FIX
20644: Function for the browser window closing was implemented. For IE browser the trick with window opener was used. Fixes ALF-1004: After closing Details Space, user doesn't return to his previous location
20784: Fix for ALF-3516: Enterprise 3.X / Impossible to Create a Blog with Special Characters in the Title (?/!)
20783: Fix for ALF-1087: Documents checked-out from Share do not have "Upload new version" action in Alfresco Explorer
20782: Added multiday timed event handling to week view
20775: Merged V3.3 to DEV/V3.3-BUG-FIX
20670: Fix for ALF-3260: XSS attack is made in Wiki tab if First/Last user name contain xss. Also fixed double encoding errors found during regression testing.
20772: Update to node browser to show namespace of attributes.
20771: ALF-3591 - transferring rules.
- also extends the behaviour filter.
20770: ALF-3186 - action parameter values are not fully transferred - need to handle d:any
20768: AVM - ALF-3611 (OrphanReaper + PurgeTestP + additional NPE fixes)
20765: (RECORD ONLY) Merged BRANCHES/V3.3 to BRANCHES/DEV/V3.3-BUG-FIX:
20708: DB2 build - add create/drop db ant targets (use DB2 cmdline - since not possible via JDBC/SQL)
20722: DB2 build - run db2cmd in same window (follow-on to r20708)
20764: Fix unreported JSON encoding issue with links components
20762: Fix ALF-2599: Share - Cannot search for user currently logged on
20759: DB2: fix FullNodeServiceTest.testLongMLTextValues (ALF-497)
- TODO: fix create script when merging to HEAD
20756: DB2: fix JBPMEngine*Test.* (ALF-3640) - follow-on (upgrade patch)
20746: DB2: fix WebProjectServiceImplTest.testCreateWebProject (ALF-2300)
20744: DB2: fix JBPMEngine*Test.* (ALF-3640) - missed file
20743: DB2: fix JBPMEngine*Test.* (ALF-3640)
20729: AVM - fix purge store so that root nodes are actually orphaned (ALF-3627)
- also prelim for ALF-3611
20720: (RECORD ONLY) ALF-3594: Merged HEAD to V3.3-BUGFIX
20616: ALF-2265: Share 'Uber Filter' part 2
- WebScriptNTLMAuthenticationFilter detached from its superclass and renamed to WebScriptSSOAuthenticationFilter
- Now the filter simply chains to the downstream authentication filter rather than call its superclass
- This means the same filter can be used for Kerberos-protected webscripts as well as NTLM
- Wired globalAuthenticationFilter behind webscriptAuthenticationFilter in the filter chain in web.xml
- Configured webscriptAuthenticationFilter for Kerberos subsystem
20719: Merged DEV/TEMPORARY to V3.3-BUGFIX
20696: ALF-3180: when using NTLM SSO, a user needs to log in first into the web UI before being able to mount alfresco using CIFS
The absence of the missing person creation logic in “the org.alfresco.filesys.auth.cifs.PassthruCifsAuthenticator.authenticateUser()” method was fixed.
20718: Merged DEV/TEMPORARY to V3.3-BUGFIX
20659: ALF-3216: Incomplete settings for Lotus Quickr
The protocol,host,port and context are removed from properties and a dependency on the org.alfresco.repo.admin.SysAdminParams interface is introduced.
20711: Latest SpringSurf libs - fix for ALF-3557
20710: Merged HEAD to BRANCHES/DEV/V3.3-BUG-FIX:
20705: Fix ALF-3585: AtomPub summary can render first part of binary content resulting in invalid XML
20691: Merged DEV/TEMPORARY to V3.3-BUGFIX
19404: ALF-220: Editor can't rename files and folders via WebDav
The Rename method of FileFolderService was used in case of file renaming instead of move method in WebDAV MOVE command.
20663: ALF-3208 RenderingEngine actions should no longer appear in the list of available actions that can be fired using rules.
20656: ALF-2645: LDAP sync now logs 'dangling references' for debugging purposes
20651: ALF-485: FTP passthru authenticator logs authentication failures at debug level to avoid noise in the logs
20646: Merge V2.2 To V3.3
14301 : RECORD ONLY - ETWOTWO-1227 - fix to serialize FSR deployments.
14618 : RECORD ONLY - Merge HEAD to 2.2 13944 : After rename project deploy option disappears.
20637: ALF-3123: Avoid NPE on Oracle when loading empty string values persisted through JMX and the attribute service
20633: ALF-2057: LDAP synchronization lock now persists for a maximum of two minutes (instead of 24 hours!)
- The exclusive lock gained for LDAP sync from the JobLockService is now refreshed at 1 minute intervals and never persists for more than 2 minutes
20628: ALF-1905: Allow use of anonymous bind for LDAP synchronization (NOT authentication)
- Previously synchronization AND authentication shared the same setting for java.naming.security.authentication, meaning that if you tried to use anonymous bind for the synchronization side, the authentication side would complain.
- Now there are two independent environments declared for the 'default' synchronization connection and the authentication connection
- A new property ldap.synchronization.java.naming.security.authentication declares the authentication type used by synchronization. Set to "none" for anonymous bind.
20623: Fix for ALF-3188 : Access Denied when updating doc via CIFS
20620: Merge DEV to V3.3-BUG-FIX
20456 - ALF-1824 : Setting alfresco.rmi.services.host on linux does not use specified host/IP
20617: Merged DEV/BELARUS/V3.3-2010_06_08 to V3.3-BUG-FIX (with corrections)
20606: ALF-651: Web Services client ContentUtils.convertToByteArray is broken
- org.alfresco.webservice.util.ContentUtils.convertToByteArray() method has been updated to cover large Input Streams conversion.
- org.alfresco.webservice.test.ContentUtilsTest is a test for the new functionality implemented in the ContentUtils class.
- org.alfresco.webservice.test.resources.big-content.pdf is a large content for the ContentUtilsTest.testInputStreamToByteArrayConversion() test.
20613: Fixed ALF-1746: Metadata extractors are unable to remove ALL aspect-related properties
- putRawValue keeps hold of 'null' values
- All policies keep hold of 'null' values
- Only affects 'carryAspectProperties=false'
20609: Merged HEAD to V3.3-BUG-FIX
20578: ALF-3178 - Transfer Service - to transfer rule (ie. ruleFolder with it's children) the PathHelper should allow "-" (dash character)
20608: ALF-3178 - fix r20578 (mis-applied patch)
20594: WebDAV BitKinex compatibility fix - Let the XML Parser work out the body encoding if it is not declared in the Content-Type header
20588: (RECORD ONLY) Merged V3.3 to V3.3-BUG-FIX
- Merged across all differences from V3.3
20778: Added revision to version label.
20777: Fix for ALF-2451 - installer correctly configure Share port
20722: DB2 build - run db2cmd in same window (follow-on to r20712)
20721: DB2 build - fix create target and add "/c" to exit "db2cmd"
- TODO: add wait/timeout target, ideally checking for created DB
git-svn-id: https://svn.alfresco.com/repos/alfresco-enterprise/alfresco/HEAD/root@20796 c4b6b30b-aa2e-2d43-bbcb-ca4b014f7261
126 lines
6.0 KiB
Properties
126 lines
6.0 KiB
Properties
# This flag enables use of this LDAP subsystem for authentication. It may be
|
|
# that this subsytem should only be used for synchronization, in which case
|
|
# this flag should be set to false.
|
|
ldap.authentication.active=true
|
|
|
|
#
|
|
# This properties file brings together the common options for LDAP authentication rather than editing the bean definitions
|
|
#
|
|
ldap.authentication.allowGuestLogin=true
|
|
# How to map the user id entered by the user to that passed through to LDAP
|
|
# - simple
|
|
# - this must be a DN and would be something like
|
|
# uid=%s,ou=People,dc=company,dc=com
|
|
# - digest
|
|
# - usually pass through what is entered
|
|
# %s
|
|
# If not set, an LDAP query involving ldap.synchronization.personQuery and ldap.synchronization.userIdAttributeName will
|
|
# be performed to resolve the DN dynamically. This allows directories to be structured and doesn't require the user ID to
|
|
# appear in the DN.
|
|
ldap.authentication.userNameFormat=
|
|
|
|
# The LDAP context factory to use
|
|
ldap.authentication.java.naming.factory.initial=com.sun.jndi.ldap.LdapCtxFactory
|
|
|
|
# The URL to connect to the LDAP server
|
|
ldap.authentication.java.naming.provider.url=ldap://openldap.domain.com:389
|
|
|
|
# The authentication mechanism to use for password validation
|
|
ldap.authentication.java.naming.security.authentication=simple
|
|
|
|
# Escape commas entered by the user at bind time
|
|
# Useful when using simple authentication and the CN is part of the DN and contains commas
|
|
ldap.authentication.escapeCommasInBind=false
|
|
|
|
# Escape commas entered by the user when setting the authenticated user
|
|
# Useful when using simple authentication and the CN is part of the DN and contains commas, and the escaped \, is
|
|
# pulled in as part of an LDAP sync
|
|
# If this option is set to true it will break the default home folder provider as space names can not contain \
|
|
ldap.authentication.escapeCommasInUid=false
|
|
|
|
# Comma separated list of user names who should be considered administrators by default
|
|
ldap.authentication.defaultAdministratorUserNames=
|
|
|
|
# This flag enables use of this LDAP subsystem for user and group
|
|
# synchronization. It may be that this subsytem should only be used for
|
|
# authentication, in which case this flag should be set to false.
|
|
ldap.synchronization.active=true
|
|
|
|
# The authentication mechanism to use for synchronization
|
|
ldap.synchronization.java.naming.security.authentication=simple
|
|
|
|
# The default principal to use (only used for LDAP sync)
|
|
ldap.synchronization.java.naming.security.principal=cn\=Manager,dc\=company,dc\=com
|
|
|
|
# The password for the default principal (only used for LDAP sync)
|
|
ldap.synchronization.java.naming.security.credentials=secret
|
|
|
|
# If positive, this property indicates that RFC 2696 paged results should be
|
|
# used to split query results into batches of the specified size. This
|
|
# overcomes any size limits imposed by the LDAP server.
|
|
ldap.synchronization.queryBatchSize=0
|
|
|
|
# If positive, this property indicates that range retrieval should be used to fetch
|
|
# multi-valued attributes (such as member) in batches of the specified size.
|
|
# Overcomes any size limits imposed by Active Directory.
|
|
ldap.synchronization.attributeBatchSize=0
|
|
|
|
# The query to select all objects that represent the groups to import.
|
|
ldap.synchronization.groupQuery=(objectclass\=groupOfNames)
|
|
|
|
# The query to select objects that represent the groups to import that have changed since a certain time.
|
|
ldap.synchronization.groupDifferentialQuery=(&(objectclass\=groupOfNames)(!(modifyTimestamp<\={0})))
|
|
|
|
# The query to select all objects that represent the users to import.
|
|
ldap.synchronization.personQuery=(objectclass\=inetOrgPerson)
|
|
|
|
# The query to select objects that represent the users to import that have changed since a certain time.
|
|
ldap.synchronization.personDifferentialQuery=(&(objectclass\=inetOrgPerson)(!(modifyTimestamp<\={0})))
|
|
|
|
# The group search base restricts the LDAP group query to a sub section of tree on the LDAP server.
|
|
ldap.synchronization.groupSearchBase=ou\=Groups,dc\=company,dc\=com
|
|
|
|
# The user search base restricts the LDAP user query to a sub section of tree on the LDAP server.
|
|
ldap.synchronization.userSearchBase=ou\=People,dc\=company,dc\=com
|
|
|
|
# The name of the operational attribute recording the last update time for a group or user.
|
|
ldap.synchronization.modifyTimestampAttributeName=modifyTimestamp
|
|
|
|
# The timestamp format. Unfortunately, this varies between directory servers.
|
|
ldap.synchronization.timestampFormat=yyyyMMddHHmmss'Z'
|
|
|
|
# The attribute name on people objects found in LDAP to use as the uid in Alfresco
|
|
ldap.synchronization.userIdAttributeName=uid
|
|
|
|
# The attribute on person objects in LDAP to map to the first name property in Alfresco
|
|
ldap.synchronization.userFirstNameAttributeName=givenName
|
|
|
|
# The attribute on person objects in LDAP to map to the last name property in Alfresco
|
|
ldap.synchronization.userLastNameAttributeName=sn
|
|
|
|
# The attribute on person objects in LDAP to map to the email property in Alfresco
|
|
ldap.synchronization.userEmailAttributeName=mail
|
|
|
|
# The attribute on person objects in LDAP to map to the organizational id property in Alfresco
|
|
ldap.synchronization.userOrganizationalIdAttributeName=o
|
|
|
|
# The default home folder provider to use for people created via LDAP import
|
|
ldap.synchronization.defaultHomeFolderProvider=userHomesHomeFolderProvider
|
|
|
|
# The attribute on LDAP group objects to map to the authority name property in Alfresco
|
|
ldap.synchronization.groupIdAttributeName=cn
|
|
|
|
# The attribute on LDAP group objects to map to the authority display name property in Alfresco
|
|
ldap.synchronization.groupDisplayNameAttributeName=description
|
|
|
|
# The group type in LDAP
|
|
ldap.synchronization.groupType=groupOfNames
|
|
|
|
# The person type in LDAP
|
|
ldap.synchronization.personType=inetOrgPerson
|
|
|
|
# The attribute in LDAP on group objects that defines the DN for its members
|
|
ldap.synchronization.groupMemberAttributeName=member
|
|
|
|
# If true progress estimation is enabled. When enabled, the user query has to be run twice in order to count entries.
|
|
ldap.synchronization.enableProgressEstimation=true |