How to integrate LDAP with KIE Workbench?

833 Views Asked by At

I have setup KIE Workbench on Wildfly Server. I need to integrate existing LDAP authentication into KIE Workbench. How to do so?

2

There are 2 best solutions below

0
On

As described here, changes required in 3 places :

  1. standalone.xml
  2. jbpm.user.info.properties
  3. jbpm.usergroup.callback.properties

process is described in this video, source code can be found here

0
On
  • Create security-domain like as in standalone.xml file

    <security-domain name="brms" cache-type="default">
    <authentication>
        <login-module code="org.jboss.security.auth.spi.LdapExtLoginModule" flag="required">
            <module-option name="java.naming.provider.url" value="ldap://10.10.10.10:389"/>
            <module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/>
            <module-option name="java.naming.security.authentication" value="simple"/>
            <module-option name="bindDN" value="cn=orgname,cn=Users,dc=SPNEGO,dc=com"/>
            <module-option name="bindCredential" value="test"/>
            <module-option name="baseCtxDN" value="dc=SPNEGO,dc=com"/>
            <module-option name="baseFilter" value="(sAMAccountName={0})"/>
            <module-option name="rolesCtxDN" value="cn=Users,dc=SPNEGO,dc=com"/>
            <module-option name="roleFilter" value="(member={1})"/>
            <module-option name="roleAttributeID" value="memberOf"/>
            <module-option name="roleNameAttributeID" value="cn"/>
            <module-option name="roleRecursion" value="0"/>
            <module-option name="roleAttributeIsDN" value="true"/>
            <module-option name="java.naming.referral" value="follow"/>
            <module-option name="searchScope" value="SUBTREE_SCOPE"/>
        </login-module>
    </authentication>
    

  • Define same security domain name in jboss-web.xml file in security-domain tag.