...
Add tierApiAuthz.server.properties:
| Code Block |
|---|
# Server type in the service meta. e.g. Grouper WS 2.1.23
tierApiAuthzServer.serverType = Grouper WS 2.2.2
tierApiAuthzServer.servletUrl = http://localhost:8089/grouperWs/tierApiAuthz
# groups member logic, implement edu.internet2.middleware.tierApiAuthzServer.interfaces.AsasApiGroupsMemberInterface
tierApiAuthzServer.interface.groupsMember = edu.internet2.middleware.grouperTierApiAuth.interfaces.GtaasGroupsMemberInterfaceImpl
########################################
## Client configuration
########################################
# dir where dirs can hold client configs. Files could be in this dir or in a subdir
tierApiAuthzServer.clientConfigDir = /opt/tomcats/tomcat_i/clients
|
Add grouperTierApiAuthz.server.properties which is blank
Add this to the web.xml
| Code Block |
|---|
<filter>
<filter-name>TIER API authz server filter</filter-name>
<filter-class>edu.internet2.middleware.tierApiAuthzServer.j2ee.TaasFilterJ2ee</filter-class>
</filter>
<!-- Map the filter to a Servlet or URL -->
<filter-mapping>
<filter-name>TIER API authz server filter</filter-name>
<url-pattern>/tierApiAuthz/*</url-pattern>
</filter-mapping>
<servlet>
<servlet-name>TierApiAuthzServlet</servlet-name>
<display-name>TIER API authz Servlet</display-name>
<servlet-class>edu.internet2.middleware.tierApiAuthzServer.j2ee.TaasRestServlet</servlet-class>
<load-on-startup>1</load-on-startup>
</servlet>
<servlet-mapping>
<servlet-name>TierApiAuthzServlet</servlet-name>
<url-pattern>/tierApiAuthz/*</url-pattern>
</servlet-mapping>
<!-- optional if you need this, configure appropriately -->
<security-constraint>
<web-resource-collection>
<web-resource-name>Web services</web-resource-name>
<url-pattern>/tierApiAuthz/*</url-pattern>
</web-resource-collection>
<auth-constraint>
<role-name>grouper_user</role-name>
</auth-constraint>
</security-constraint>
|
...