DocumentSpace構成定義ファイルの記述例を,次に示します。
(1) 前提条件
定義例は次の前提条件に従っていることとします。
図4-1 DITの例
表4-8 エントリに対応するディレクトリ情報の例
エントリ | 各エントリに対応するディレクトリ情報 |
---|---|
o: hitachi,c=jp | dn: o=hitachi,c=jp objectclass: top objectclass: organization o: hitachi,c=jp |
ou=people | dn:ou=people,o=hitachi,c=jp objectclass: top objectclass: person objectclass: organizationalperson objectclass: inetOrgPerson sn: person cn: personal |
uid: s891711 | dn: uid=s891711,ou=people,o=hitachi,c=jp objectclass: top objectclass: person objectclass: organizationalperson objectclass: inetOrgPerson cn: Taro Hitachi cn;lang-ja: 日立太郎 uid: s891711 sn: hitachi ou: unit1 ou: unit userpassword: s891711 |
uid: k972251 | dn: uid=k972251,ou=people,o=hitachi,c=jp objectclass: top objectclass: person objectclass: organizationalperson objectclass: inetOrgPerson cn: Ichiro Yamada cn;lang-ja: 山田 一郎 uid: k972251 sn: yamada ou: unit2 ou: unit userpassword: k972251 |
uid:k881891 | dn: uid=k881891,ou=people,o=hitachi,c=jp objectclass: top objectclass: person objectclass: organizationalperson objectclass: inetOrgPerson cn: Jiro Suzuki cn;lang-ja: 鈴木 二郎 uid: k881891 sn: suzuki ou: unit2 ou: unit userpassword: k881891 |
ou: unit | dn: ou=unit,o=hitachi,c=jp objectclass: top objectclass: organizationalUnit ou: unit ou;lang-ja: ユニット |
ou: unit1 | dn: ou=unit1,ou=unit,o=hitachi,c=jp objectclass: top objectclass: organizationalUnit ou: unit1 ou;lang-ja: ユニット1 |
ou: unit2 | dn: ou=unit2,ou=unit,o=hitachi,c=jp objectclass: top objectclass: organizationalUnit ou: unit2 ou;lang-ja: ユニット2 |
ou: group | dn: ou=group,o=hitachi,c=jp objectclass: top objectclass: groupOfUniqueNames objectclass: hdsgroupofuniquenames ou: group ou;lang-ja: グループ cn:grp0 groupOfUniqueNamesId: g0 |
ou: group1 | dn: ou=group1,ou=group,o=hitachi,c=jp objectclass: top objectclass: groupOfUniqueNames objectclass: hdsgroupofuniquenames cn: grp1 ou: group1 ou;lang-ja: グループ1 groupOfUniqueNamesId: g1 uniqueMember: uid=s891711,ou=people,o=hitachi,c=jp |
ou: group2 | dn: ou=group2,ou=group,o=hitachi,c=jp objectclass: top objectclass: groupOfUniqueNames objectclass: hdsgroupofuniquenames cn:grp2 ou: group2 ou;lang-ja: グループ2 groupOfUniqueNamesId: g2 uniqueMember:uid=k972251,ou=people,o=hitachi,c=jp uniqueMember:uid=k881891,ou=people,o=hitachi,c=jp |
(2) 定義例
前提条件に基づいたDocumentSpace構成定義ファイルの定義例を次に示します。
[DocSpace]
Count = 1
[Entry0001]
Process = 1
SerialId = 673d2be0-d1fd-11d0-ab59-08002be29e1d
DbType = HIRDB
PdHost = d_ks5g
PdNamePort = 20570
PdUser = "hirdb"/"hirdb"
XdkShmemManage = NORMAL
SessionMax = 32
SessionTimeOut = 15
ACLogUse = No
ACLogLevel = Error
ErrChkFlagOfObjectOperation = 0x0000017f
EnbFncFlagOfObjectOperation = 0x0000007f
UserAuthentication = LDAPEX
LdapHost = 123.45.67.78
LdapPort = 389
LdapUserRoot = o = hitachi,c = jp
LdapGroup = Yes
LdapGroupFromUserAttr = Yes
LdapUserScope = Subtree
LdapUserTimeout = 60
LdapGroupTimeout = 60
LdapUserClass = inetOrgPerson
LdapUserId = uid
LdapUserFilterLeft = (
LdapUserFilterRight = )
LdapUserCase = Default
LdapGroupFromUserDn = Yes
LdapGroupClass = hdsgroupOfUniqueNames
LdapGroupId = groupOfUniqueNamesId
LdapGroupRoot = o = hitachi,c = jp
LdapGroupFilterLeft = (
LdapGroupFilterRight = )
LdapGroupIdFromUserAttr = ou
LdapGroupIsDnFromUserAttr = No
LdapGroupIdAttrFromUserAttr = ou
LdapGroupIdFromUserDn = ou
LdapGroupCase = Default
LdapBindUserDN = uid=Tanaka,ou=People,o=hitachi,c=jp
LdapBindPassword = password
(3) 認証,ユーザ情報の取得例
ここでは,例で示したDocumentSpace構成定義ファイルを使用した場合のユーザ認証とユーザ情報の取得について説明します。なお,説明ではログイン名は「s891711」であると仮定します。