Configure Carte servers for JAAS

You can configure Carte to use the Java Authentication and Authorization Service (JAAS) for user authentication. Perform the following steps to configure Carte with JAAS:

Modify the following code sample for your LDAP server or properties file environment and save it as carte-ldap.jaas.conf in the openldap directory of your Carte server:

Kettle {
    org.eclipse.jetty.jaas.spi.LdapLoginModule required
    debug="true"
    contextFactory="com.sun.jndi.ldap.LdapCtxFactory"
    hostname="localhost"
    port="389"
    bindDn="cn=admin,dc=example,dc=com"
    bindPassword="admin"
    authenticationMethod="simple"
    forceBindingLogin="true"
    userBaseDn="ou=People,dc=example,dc=com"
    userRdnAttribute="uid"
    userIdAttribute="uid"
    userPasswordAttribute="userPassword"
    userObjectClass="inetOrgPerson";

   };
   
Kettle2 {
   org.eclipse.jetty.jaas.spi.PropertyFileLoginModule required
   debug="true"
   file="/installs/common/carte.users";
};

Note: You may want to set the debug parameter to false in production environments.

Add the following options (with updated path) to Spoon.bat (Windows) or spoon.sh (Linux)

-Djava.security.auth.login.config=<your install path>/openldap/carte-ldap.jaas.conf" "-Dloginmodulename=Kettle

Start Carte and visit the server's page. Verify that it does not prompt for BASIC authentication.

PreviousConfigure Carte servers for SSL NextChange Jetty Server Parameters

Last updated 24 days ago

Was this helpful?