Ticket #881 (new enhancement)

Opened 2 years ago

Last modified 22 months ago

Add support for anonymous login to OpenAnzo

Reported by: jordi Owned by: jasonjho
Priority: major Milestone: 3.1.0
Component: openanzo-server Version: 3.1.0
Keywords: Cc:

Description

Sometimes, people want to build applications that can be accessed without a username/password. One way to do that is to just use a hard-coded username and password. But that causes difficulties with managing appropriate access control when you want some things private and some things accessible anonymously.

We want to add some built-in support to help application developers for this. The support includes:

  • a built-in anzo_anonymous user which will login with any password.
  • a configuration option org.openanzo.security.ldap.anonymousAccessEnabled in the org.openanzo.security.ldap.LdapAuthentication service to turn anonymous access on and off. It's off by default.
  • protections in the update server to prevent anonymous users from creating/updating/deleting data.

Change History

Changed 2 years ago by jordi

(In [5229]) refs #881. Add support for anonymous access to the server.

Changed 2 years ago by jordi

(In [5230]) refs #881. Fix classpath to make test compile in Eclipse.

Changed 2 years ago by jordi

(In [5236]) refs #881. Reuse a constant that already existed and allow playback as anonymous.

Changed 2 years ago by jordi

(In [5246]) refs #881. Add support for anonymous access to the server. This foreports changes from [5229],[5230],[5236].

Changed 22 months ago by jordi

  • owner changed from jordi to jasonjho

Jason, please review.

Note: See TracTickets for help on using tickets.