Hi good people
I am using OpenLDAP for the first time and am trying to create user access levels in Admin, but when I try to set a User group to access only Tasklist, they are still able to access Admin and Cockpit. Iām assuming that this is something that I should be setting in Admin even though I am using LDAP?
@EnableWebSecurity
@Configuration
public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
@Override
protected void configure(HttpSecurity http) throws Exception {
http.csrf().disable();
http.authorizeRequests().antMatchers("/").permitAll();
http.headers().frameOptions().disable();
}
@Bean
public static AdministratorAuthorizationPlugin administratorAuthorizationPlugin() {
AdministratorAuthorizationPlugin plugin = new AdministratorAuthorizationPlugin();
plugin.setAdministratorUserName("demo");
return plugin;
}
@Bean
public static LdapIdentityProviderPlugin ldapIdentityProviderPlugin() {
LdapIdentityProviderPlugin plugin = new LdapIdentityProviderPlugin();
plugin.setServerUrl("ldap://localhost:389");
plugin.setManagerPassword("demo");
plugin.setSecurityAuthentication("simple");
plugin.setBaseDn("dc=maxcrc,dc=com");
plugin.setManagerDn("cn=Manager,dc=maxcrc,dc=com");
plugin.setGroupIdAttribute("cn");
plugin.setGroupNameAttribute("cn");
plugin.setGroupMemberAttribute("member");
plugin.setAuthorizationCheckEnabled(true);
return plugin;
My application.yaml
spring:
datasource:
platform: mysql
url: jdbc:mysql://127.0.0.1:3306/CamundaDB?createDatabaseIfNotExist=true
username: root
password: root
driver-class-name: com.mysql.cj.jdbc.Driver
jpa:
hibernate:
# To be updated in real production usage!
ddl-auto: create-drop
server:
port: 8080
Setting in Admin