Browse to the authentication administration page, +
Configure Batch Synchronization Browse to the authentication administration page, http://yourserver/acs-admin/auth/ and choose an authority for batch sync.
Set Batch sync enabled to Yes. Set GetDocument Implementation to HTTP GET. Set ProcessDocument Implementation to IMS Enterprise 1.1. These settings will cause OpenACS to attempt to retrieve via HTTP a list of users in XML format from a location we will specify in a few steps.
Click OK.
On the next page, click Configure on the GetDocument Implementation line.
Enter either or both the IncrementalURL and SnapshotURL. These are the URLs which the external Authority will supply with XML files in IMS Enterprise 1.1 format.
Configure your Authority (RADIUS server, etc) to supply XML files to the URLs IncrementalURL and SnapshotURL. A typical set of incremental file record - looks like:
+ looks like:
<?xml version="1.0" encoding="ISO-8859-1"?> <enterprise> - <person recstatus = "1"> added person + <properties> + <datasource>FOO</datasource> + <target>dotLRN</target> + <type>DB Increment</type> + <datetime>28-oct-2003#16:06:02</datetime> + </properties> + <person recstatus = "1"> <sourcedid> - <id>[username]</id> + <source>FOO</source> + <id>karlf</id> </sourcedid> <name> - <family>[last_name]</family> - <given>[first_names]</given> + <n> + <given>Karl</given> + <family>Fritz</family> + <prefix></prefix> + </n> </name> - <email>[email]</email> - <url>[homepage_url]</url> + <email>karlf@example.net</email> </person> - <person recstatus = "2"> modified person + <person recstatus = "2"> <!--modified person--> ... </person> - <person recstatus = "3"> deleted person - <sourcedid> - <id>LL1</id> only requires username - </sourcedid> + <person recstatus = "3"> <!--deleted person--> + <sourcedid> + <id>LL1</id> <!--only requires username--> + </sourcedid> </person> -</enterprise>
A snapshot file is similar but doesn't have recstatus, - since it's not a delta but a list of valid records. -
-<enterprise> - <person> - <sourcedid> - <id>[username]</id> - </sourcedid> - <name> - <family>[last_name]</family> - <given>[first_names]</given> - </name> - <email>[email]</email> - <url>[homepage_url]</url> - </person> - ... </enterprise> -
(More information: Section�, “IMS Sync driver design”, The IMS 1.1 spec)
View comments on this page at openacs.org +A snapshot file is similar but doesn't have recstatus, + since it's not a delta but a list of valid records. See the larger example in the design document for more details. +
(More information: the section called “IMS Sync driver design”, The IMS 1.1 spec)
Table of Contents
...
Installing AOLserver LDAP support.�Forthcoming. (more information)
Install auth-ldap OpenACS service package.�Install auth-ldap and restart the server.
...
Installing AOLserver LDAP support.�Forthcoming. (more information)
Install auth-ldap OpenACS service package.�Install auth-ldap and restart the server.
OpenACS supports PAM authetication via the ns_pam module in AOLserver.
Add PAM support to AOLserver.�OpenACS supports PAM support via the PAM AOLserver +
Installing PAM support OpenACS supports PAM authetication via the ns_pam module in AOLserver.
Add PAM support to AOLserver.�OpenACS supports PAM support via the PAM AOLserver module. PAM is system of modular support, and can provide local (unix password), RADIUS, LDAP (more information), and other forms of @@ -22,11 +22,11 @@ gcc -shared -nostartfiles -o nspam.so nspam.o pam_support.o -lpam [root@yourserver nspam]# make install [root@yourserver nspam]# -
cd /usr/local/src/aolserver +cd /usr/local/src/aolserver tar xzf /tmp/ns_pam-0.1.tar.gz cd nspam make -make installSet up a PAM domain.�A PAM domain is a set of rules for granting +make install
Set up a PAM domain.�A PAM domain is a set of rules for granting privileges based on other programs. Each instance of AOLserver uses a domain; different aolserver instances can use the same domain but one AOLserver instance @@ -45,11 +45,11 @@ ld -Bshareable pam_radius_auth.o md5.o -lpam -o pam_radius_auth.so [root@yourserver pam_radius-1.3.16]# cp pam_radius_auth.so /lib/security/pam_radius_auth.so [root@yourserver pam_radius-1.3.16]# -
cd /usr/local/src/ +cd /usr/local/src/ tar xf /tmp/pam_radius-1.3.16.tar cd pam_radius-1.3.16 make -cp pam_radius_auth.so /lib/security/pam_radius_auth.soDebian users: apt-get install libpam-radius-auth
Set up the PAM domain. Recent PAM +cp pam_radius_auth.so /lib/security/pam_radius_auth.so
Debian users: apt-get install libpam-radius-auth
Set up the PAM domain. Recent PAM distributions have a different file for each domain, all in /etc/pam.d. Previous PAM setups put all domain configuration lines Index: openacs-4/packages/acs-authentication/www/doc/ims-sync-driver-design.html =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-authentication/www/doc/ims-sync-driver-design.html,v diff -u -r1.2 -r1.3 --- openacs-4/packages/acs-authentication/www/doc/ims-sync-driver-design.html 20 Oct 2003 15:44:31 -0000 1.2 +++ openacs-4/packages/acs-authentication/www/doc/ims-sync-driver-design.html 19 Feb 2004 14:59:42 -0000 1.3 @@ -1,12 +1,12 @@ -
IMS Sync driver design - by Lars Pind
+IMS Sync driver design We need examples of how the communication would be done from our clients.
The "GetDocument" communications service contract could be a generic system-wide service contract.
We might need a source/ID column in the users table to identify where they're imported from for doing updates, particularly if -importing from multiple sources (or when some users are local.)
We will parse a document in the IMS Enterprise +importing from multiple sources (or when some users are local.)
We will parse a document in the IMS Enterprise Specification format (example XML document), and translate it into calls to the batch user sync API.
The document will contain either the complete user listitemst (IMS: @@ -135,7 +135,7 @@ <photo imgtype="gif"><extref>...</extref></photo> if present: HTTP GET the photo, insert it into the system. (Do we do this, then, with all users when doing a snapshot update?) -
Consolidation before the leap; IMS Enterprise 1.1: This article says that IMS Enterprise 1.1 (current version) does not address the communication model, which is critically missing for real seamless Index: openacs-4/packages/acs-authentication/www/doc/index.html =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-authentication/www/doc/index.html,v diff -u -r1.3 -r1.4 --- openacs-4/packages/acs-authentication/www/doc/index.html 20 Oct 2003 15:44:31 -0000 1.3 +++ openacs-4/packages/acs-authentication/www/doc/index.html 19 Feb 2004 14:59:42 -0000 1.4 @@ -1 +1 @@ -
External Authentication View comments on this page at openacs.org +External Authentication View comments on this page at openacs.org Index: openacs-4/packages/acs-automated-testing/acs-automated-testing.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-automated-testing/acs-automated-testing.info,v diff -u -r1.7 -r1.8 --- openacs-4/packages/acs-automated-testing/acs-automated-testing.info 26 Jan 2004 15:39:41 -0000 1.7 +++ openacs-4/packages/acs-automated-testing/acs-automated-testing.info 19 Feb 2004 14:59:42 -0000 1.8 @@ -7,14 +7,14 @@t f -+ OpenACS The interface to the automated testing facilities within OpenACS. 2004-01-21 OpenACS Provides a UI for viewing and running automated tests provided by each package within the OpenACS system. -+ t t -+ Don Baccus Bootstraps an OpenACS installation. 2004-01-21 OpenACS This package bootstraps OpenACS. If the core packages have not yet been installed, it calls the installer which leads the user through the steps necessary to do so. It also checks that the installation meets the requirements for a successful install of OpenACS. -+ Index: openacs-4/packages/acs-core-docs/acs-core-docs.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-core-docs/acs-core-docs.info,v diff -u -r1.12 -r1.13 --- openacs-4/packages/acs-core-docs/acs-core-docs.info 26 Jan 2004 15:39:43 -0000 1.12 +++ openacs-4/packages/acs-core-docs/acs-core-docs.info 19 Feb 2004 14:59:43 -0000 1.13 @@ -7,15 +7,15 @@ t t -+ OpenACS Documentation Team Documentation for the OpenACS Core. 2004-01-21 OpenACS Static HTML documentation for the OpenACS core (includes the DocBook sources). -+ Index: openacs-4/packages/acs-lang/acs-lang.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-lang/acs-lang.info,v diff -u -r1.33 -r1.34 --- openacs-4/packages/acs-lang/acs-lang.info 26 Jan 2004 15:39:45 -0000 1.33 +++ openacs-4/packages/acs-lang/acs-lang.info 19 Feb 2004 14:59:43 -0000 1.34 @@ -7,7 +7,7 @@ t t -+ Peter Marklund OpenACS Internationalization Support. 2004-01-21 @@ -16,7 +16,7 @@ request processor hooks, templating, accessing and managing the message catalog, and locale-specific formatting functions for localizing dates, times, monetary amounts etc. -+ Index: openacs-4/packages/acs-mail/acs-mail.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-mail/acs-mail.info,v diff -u -r1.16 -r1.17 --- openacs-4/packages/acs-mail/acs-mail.info 26 Jan 2004 15:39:46 -0000 1.16 +++ openacs-4/packages/acs-mail/acs-mail.info 19 Feb 2004 14:59:43 -0000 1.17 @@ -7,7 +7,7 @@ t t -+ Vinod Kurup John Prevost General messaging system, mark II @@ -16,7 +16,7 @@Provides generic message services, with email sending. The acs-mail-lite package is the prefered interface for new packages and it's anticipated that this package will ultimately be deprecated. -+ Index: openacs-4/packages/acs-messaging/acs-messaging.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-messaging/acs-messaging.info,v diff -u -r1.12 -r1.13 --- openacs-4/packages/acs-messaging/acs-messaging.info 26 Jan 2004 15:39:46 -0000 1.12 +++ openacs-4/packages/acs-messaging/acs-messaging.info 19 Feb 2004 14:59:43 -0000 1.13 @@ -7,7 +7,7 @@ t t -+ Anukul Kapoor John Prevost Vinod Kurup @@ -17,7 +17,7 @@Provides generic message services, with email sending. acs-mail-lite and notifications are the prefered packages for delivering this functionality and it is anticipated that this package will ultimately be deprecated. -+ Index: openacs-4/packages/acs-service-contract/acs-service-contract.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-service-contract/acs-service-contract.info,v diff -u -r1.20 -r1.21 --- openacs-4/packages/acs-service-contract/acs-service-contract.info 26 Jan 2004 15:39:46 -0000 1.20 +++ openacs-4/packages/acs-service-contract/acs-service-contract.info 19 Feb 2004 14:59:44 -0000 1.21 @@ -7,7 +7,7 @@ t t -+ OpenACS API and UI for service contracts 2004-01-21 @@ -16,7 +16,7 @@ Examples are the contracts used for search which provide a means to get content on a given object and to translate an object_id to a url or the contracts used by dotlrn and new-portals to allow packages to provide portalized panes. -+ Index: openacs-4/packages/acs-subsite/acs-subsite.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-subsite/acs-subsite.info,v diff -u -r1.61 -r1.62 --- openacs-4/packages/acs-subsite/acs-subsite.info 26 Jan 2004 15:39:46 -0000 1.61 +++ openacs-4/packages/acs-subsite/acs-subsite.info 19 Feb 2004 14:59:44 -0000 1.62 @@ -7,15 +7,15 @@ t f -+ OpenACS Subsite 2004-01-21 OpenACS Provides for creating subsites within the OpenACS Community System. Aware of parties, groups, users, portraits. Can be themed via a per subsite master template. -+ Index: openacs-4/packages/acs-tcl/acs-tcl.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-tcl/acs-tcl.info,v diff -u -r1.32 -r1.33 --- openacs-4/packages/acs-tcl/acs-tcl.info 26 Jan 2004 15:39:46 -0000 1.32 +++ openacs-4/packages/acs-tcl/acs-tcl.info 19 Feb 2004 14:59:44 -0000 1.33 @@ -7,14 +7,14 @@ t t -+ OpenACS The Kernel Tcl API library. 2004-01-21 OpenACS Contains all the core Tcl API, including the request processor, security and session management, permissions, site-nodes, package management infrastructure, etc. -+ Index: openacs-4/packages/acs-templating/acs-templating.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/acs-templating/acs-templating.info,v diff -u -r1.23 -r1.24 --- openacs-4/packages/acs-templating/acs-templating.info 26 Jan 2004 15:39:46 -0000 1.23 +++ openacs-4/packages/acs-templating/acs-templating.info 19 Feb 2004 14:59:45 -0000 1.24 @@ -7,7 +7,7 @@ t t -+ OpenACS Templating library. 2004-01-21 @@ -24,7 +24,7 @@ layout of a site can be more easily administered. -+ Index: openacs-4/packages/categories/www/doc/index.html =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/categories/www/doc/index.html,v diff -u -r1.3 -r1.4 --- openacs-4/packages/categories/www/doc/index.html 18 Jan 2004 16:32:55 -0000 1.3 +++ openacs-4/packages/categories/www/doc/index.html 19 Feb 2004 14:59:45 -0000 1.4 @@ -1 +1 @@ - Categories Table of Contents
View comments on this page at openacs.org +Categories Table of Contents
View comments on this page at openacs.org Index: openacs-4/packages/categories/www/doc/install.html =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/categories/www/doc/install.html,v diff -u -r1.1 -r1.2 --- openacs-4/packages/categories/www/doc/install.html 18 Jan 2004 16:32:55 -0000 1.1 +++ openacs-4/packages/categories/www/doc/install.html 19 Feb 2004 14:59:45 -0000 1.2 @@ -1,7 +1,7 @@ -Installation +
Installation Install normally via APM. Configure via
View comments on this page at openacs.org Index: openacs-4/packages/ref-timezones/ref-timezones.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/ref-timezones/ref-timezones.info,v diff -u -r1.13 -r1.14 --- openacs-4/packages/ref-timezones/ref-timezones.info 26 Jan 2004 15:39:48 -0000 1.13 +++ openacs-4/packages/ref-timezones/ref-timezones.info 19 Feb 2004 14:59:45 -0000 1.14 @@ -7,14 +7,14 @@t t -+ Jon Griffin Timezone data for acs-reference. 2004-01-21 Mayuli Enterprises, LLC This is the timezone data for the acs-reference data package. Used by acs-lang (among others) for localized times. -+ Index: openacs-4/packages/search/search.info =================================================================== RCS file: /usr/local/cvsroot/openacs-4/packages/search/search.info,v diff -u -r1.11 -r1.12 --- openacs-4/packages/search/search.info 26 Jan 2004 15:39:48 -0000 1.11 +++ openacs-4/packages/search/search.info 19 Feb 2004 14:59:45 -0000 1.12 @@ -7,15 +7,15 @@ t f -+ OpenACS 2004-01-21 Site wide search OpenACS Site wide search implemented with service contracts, currently only supports postgres via the OpenFTS driver. -+