X-Git-Url: http://git.argeo.org/?a=blobdiff_plain;f=org.argeo.cms%2Fsrc%2Forg%2Fargeo%2Fcms%2FKernelHeader.java;h=2e4049192790da63e0bf06fe1e9d7acc4b5fa768;hb=2b3904582518de706357fd2a8216a47ca77dfc39;hp=620699abfac7a944cf08ab8f81ad83974bdfd0ac;hpb=93a457cf047cebb0170abd0f37a9b4291a2ae3e9;p=lgpl%2Fargeo-commons.git diff --git a/org.argeo.cms/src/org/argeo/cms/KernelHeader.java b/org.argeo.cms/src/org/argeo/cms/KernelHeader.java index 620699abf..2e4049192 100644 --- a/org.argeo.cms/src/org/argeo/cms/KernelHeader.java +++ b/org.argeo.cms/src/org/argeo/cms/KernelHeader.java @@ -2,20 +2,28 @@ package org.argeo.cms; /** Public properties of the CMS Kernel */ public interface KernelHeader { + final static String SECURITY_PROVIDER = "BC";// Bouncy Castle + // LOGIN CONTEXTS final static String LOGIN_CONTEXT_USER = "USER"; final static String LOGIN_CONTEXT_ANONYMOUS = "ANONYMOUS"; final static String LOGIN_CONTEXT_SYSTEM = "SYSTEM"; final static String LOGIN_CONTEXT_SINGLE_USER = "SINGLE_USER"; + // HTTP + final static String ACCESS_CONTROL_CONTEXT = "org.argeo.node.accessControlContext"; + // RESERVED ROLES - public final static String ROLE_ADMIN = "cn=admin,ou=system,ou=node"; - public final static String ROLE_GROUP_ADMIN = "cn=groupAdmin,ou=system,ou=node"; - public final static String ROLE_USER_ADMIN = "cn=userAdmin,ou=system,ou=node"; + public final static String ROLE_KERNEL = "OU=node"; + public final static String ROLES_BASEDN = "ou=roles,ou=node"; + public final static String ROLE_ADMIN = "cn=admin," + ROLES_BASEDN; + public final static String ROLE_GROUP_ADMIN = "cn=groupAdmin," + + ROLES_BASEDN; + public final static String ROLE_USER_ADMIN = "cn=userAdmin," + ROLES_BASEDN; // Special system groups that cannot be edited: // user U anonymous = everyone - public final static String ROLE_USER = "cn=user,ou=system,ou=node"; - public final static String ROLE_ANONYMOUS = "cn=anonymous,ou=system,ou=node"; + public final static String ROLE_USER = "cn=user," + ROLES_BASEDN; + public final static String ROLE_ANONYMOUS = "cn=anonymous," + ROLES_BASEDN; // RESERVED USERNAMES public final static String USERNAME_ADMIN = "root";