Introduction
The central configuration of authentication and authorization for the JobScheduler Cockpit is an Apache ShiroTM .ini file.
Configuration File Structure
The authentication and authorization is configured in a shiro.ini
file.
This file is located in the JobScheduler's $SCHEDULER_HOME/joc/jetty_.../resources
folder, where $SCHEDULER_HOME
is the < CHECK
The shiro.ini
file can have up to three sections, depending on the authentication method used:
- [users]
- Contains authentication information when Shiro authentication is used.
- Is not required for other authentication methods.
- [roles]
- Contains the permissions assigned to roles.
- Required for all authentication methods.
- [main]
- Required for Shiro and database authentication. < CHECK TIMEOUT FOR LDAP
[users] Configuration
This section contains the authentication information when Shiro authentication is used. This section is only required when the Shiro authentication is used.
The default user information delivered with the JobScheduler is shown in the listing below:
administrator=password, administrator application_manager=password, application_manager it_operator=password, it_operator incident_manager=password, incident_manager business_user=password, business_user api_user=password, api_user root=password, all
Syntax
user=password, role
- where the role is specified in the [roles] section of the file
- Each entry is specified on a new line, password and role are separated by a comma.
Users can add additional user configurations.
Note
Jetty has to be restarted after changes to the shiro.ini
file.
Additional Information
Text to be added ....