Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Override LDAPUserRegistry Failed

smilehahohi
Champ in-the-making
Champ in-the-making

‎05-08-2012 11:03 AM

Hi All,

I was trying to co-operate alfresco with LDAP-AD to implement the authentication and authorization.
Currently I successfully use ldap-ad to implement the authentication, the ldap user can login, but I can't synchronize the user and group into the alfresco system, the reason is that our LDAP-AD server doesn't support "queryBatchSize" feature, so I set the "queryBatchSize=0", as a result the server always return 3000 result when the synchronization is triggered, finally the synchronization failed.

Actually I wish the synchronization only happened when user login, and only export the current user from LDAP, but I found that there is no way to put a placeholder into the property "ldap.synchronization.personQuery", and use the user login name to replace the placeholder at the running time.

I have looked into the java class "org.alfresco.repo.security.sync.ldap.LDAPUserRegistry", then I decided to override the function 
public void setPersonQuery(String personQuery)
    {
        this.personQuery = personQuery;
    }

   
    public void setPersonDifferentialQuery(String personDifferentialQuery)
    {
        this.personDifferentialQuery = personDifferentialQuery;
    }

to make the "personQuery" like "(&(objectclass\=user)(uid\=currentUser))".

I have create a custom java class in package "org.xxx.custom.ldap" as below:

public class LDAPUserRegistryCustom extends LDAPUserRegistry {
       public void setPersonQuery(String personQuery)
    {
        //custom code
    }

   
    public void setPersonDifferentialQuery(String personDifferentialQuery)
    {
        //custom code 
    }
}

Then I package this class into a jar, and put it into the [TOMCAT_HOME]/shared/lib.

I also create a custom-context.xml file under the path "[TOMCAT_HOME]/shared/classes/alfresco/extension/subsystems/Authentication/ldap-ad/ldap1/custom-context.xml", the content is as below:

<beans>
<bean id="userRegistry" class="org.xxx.custom.ldap.LDAPUserRegistryCustom">
        <property name="active">
            <value>${ldap.synchronization.active}</value>
        </property>

        <!–
        If positive, this property indicates that RFC 2696 paged results should be
        used to split q
        …………..
</bean>
</beans>

After I re-start the server, I got the "org.alfresco.repo.security.sync.ldap.LDAPUserRegistry" class not found error, it seems like the alfresco class is not loaded into the child application context after I have overrided the spring bean file.

Could somebody tell me how should I override this java class in the subsystem?  I also tried to package this class into a AMP, and deploy it into the alfresco.war, still failed… :cry:
Labels:
0 Kudos
1 REPLY 1

archimadhu86
Champ in-the-making
Champ in-the-making

‎05-04-2016 01:59 AM

I have similar issue.

Tried overriding/extending LDAPUserRegistry.java but with no success.

Can any one give example how to override LDAPUserRegistry.java?

I tried putting context file in <extension>/subsystems/Authentication/common-ldap-context.xml and <extension>/subsystems/Authentication/ldap-ad/ldap1/common-ldap-context.xml with following content with no luck


 <bean id="userRegistry" class="au.com.xyz.alfresco.security.sync.ldap.LDAPUserRegistry">
        <property name="active">
            <value>${ldap.synchronization.active}</value>
        </property>

        <!–
        If positive, this property indicates that RFC 2696 paged results should be
        used to split query results i






0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC