Re: [rundeck] Usage of Atlassian Crowd as the Authentication/Authorisation engine
646 views
Skip to first unread message
Greg Schueler
Jun 27, 2012, 3:41:54 PM6/27/12
to rundeck...@googlegroups.com
Hi Bruno,
Currently Rundeck relies on the application container to do
authentication. The authentication we use with the default Jetty
container is JAAS authentication, which is implemented with a the
LoginModule interface. Here is some documentation on implementing a
JAAS LoginModule:
http://docs.oracle.com/javase/6/docs/technotes/guides/security/jaas/JAASLMDevGuide.html
For other containers, like Tomcat, you can use JAAS authentication as
well, or a custom Tomcat-specific Realm implementation. Here is the
link for Tomcat JAASRealm information:
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JAASRealm
So you may need to implement authentication to the Atlassian
athentication server if there is not a JAAS login module for it
already available
On Sun, Jun 24, 2012 at 3:39 AM, Bruno Blaise <blai...@gmail.com> wrote:
> Hi,
>
> I'm investigating the usage of RunDeck to implement a Continuous Deployment
> System. I found information and example to use it, to integrate it with
> bamboo and nexus. I'm already using RunDeck to start/stop/... the services.
>
> Our development platform is based on the Atlassian eco-system (Crowd,
> Confluence, Jira, Bamboo, FishEye) and Svn,Nexus for the code+artifacts. All
> those services are using Crowd as the authentication engine.
>
> Atlassian provides a Crowd REST API
> (https://developer.atlassian.com/display/CROWDDEV/Crowd+REST+APIs) and a
> java client
> https://developer.atlassian.com/display/CROWDDEV/Java+Integration+Libraries
>
> How would you implement the usage of Crowd with RunDeck ?
>
> Is-it a good approach to implement the abstract class
> com.dtolabs.rundeck.jetty.jaas.AbstractLoginModule ?
>
> or do you see a better way to integrate both of them ?
>
> Thanks in advance for your help,
> Bruno
Currently Rundeck relies on the application container to do
authentication. The authentication we use with the default Jetty
container is JAAS authentication, which is implemented with a the
LoginModule interface. Here is some documentation on implementing a
JAAS LoginModule:
http://docs.oracle.com/javase/6/docs/technotes/guides/security/jaas/JAASLMDevGuide.html
For other containers, like Tomcat, you can use JAAS authentication as
well, or a custom Tomcat-specific Realm implementation. Here is the
link for Tomcat JAASRealm information:
http://tomcat.apache.org/tomcat-6.0-doc/realm-howto.html#JAASRealm
So you may need to implement authentication to the Atlassian
athentication server if there is not a JAAS login module for it
already available
On Sun, Jun 24, 2012 at 3:39 AM, Bruno Blaise <blai...@gmail.com> wrote:
> Hi,
>
> I'm investigating the usage of RunDeck to implement a Continuous Deployment
> System. I found information and example to use it, to integrate it with
> bamboo and nexus. I'm already using RunDeck to start/stop/... the services.
>
> Our development platform is based on the Atlassian eco-system (Crowd,
> Confluence, Jira, Bamboo, FishEye) and Svn,Nexus for the code+artifacts. All
> those services are using Crowd as the authentication engine.
>
> Atlassian provides a Crowd REST API
> (https://developer.atlassian.com/display/CROWDDEV/Crowd+REST+APIs) and a
> java client
> https://developer.atlassian.com/display/CROWDDEV/Java+Integration+Libraries
>
> How would you implement the usage of Crowd with RunDeck ?
>
> Is-it a good approach to implement the abstract class
> com.dtolabs.rundeck.jetty.jaas.AbstractLoginModule ?
>
> or do you see a better way to integrate both of them ?
>
> Thanks in advance for your help,
> Bruno
Greg Schueler
Jun 27, 2012, 3:53:37 PM6/27/12
to rundeck...@googlegroups.com
fyi I just found this link
https://studio.plugins.atlassian.com/wiki/display/JAAS/Crowd+JAAS+Login+Module
https://studio.plugins.atlassian.com/wiki/display/JAAS/Crowd+JAAS+Login+Module
chengkai liang
Jun 27, 2012, 4:04:56 PM6/27/12
to rundeck...@googlegroups.com
Ignore the previous email. I found the button ...
chengkai liang
Jun 27, 2012, 4:07:45 PM6/27/12
to rundeck...@googlegroups.com
Run Deck
Admin
Greg Schueler
Jun 27, 2012, 4:14:09 PM6/27/12
to rundeck...@googlegroups.com
Hi Chengkai, in your logs there are numerous errors about the Mysql database.
If you are using Mysql or another relational database instead of the file-based default, make sure that your rundeck-config.properties has the "rdbsupport" set to true, as described here: http://rundeck.org/docs/administration/relational-database.html#enable-rdbsupport
chengkai liang
Jun 27, 2012, 4:37:34 PM6/27/12
to rundeck...@googlegroups.com
rundeck.v14.rdbsupport=true
This has been set to true in 1.4.3.
Reply all
Reply to author
Forward
0 new messages