[greenstone-users] Authentication

From Katherine Don
DateMon Aug 17 14:12:24 2009
Subject [greenstone-users] Authentication
In-Reply-To (00b501c9fe40$418ef620$c4ace260$-gov-ar)
Hi Ed

Just another comment about the global file - each user has a separate
user name and password, and can belong to different groups. So one user
can be an administrator, but the next one isn't.

For authenticating a collection, you specify which group can access the
collection in the collection's collect.cfg. Then in your user
management, you add that group to any users that can access that collection.

This way, you only set up each user once. but you can change which
collections they have access to.

I hope that is a bit clearer. I am not sure after reading this back
whether it is or not :-(

Cheers,
Katherine

Diego Spano wrote:
> Ed,
>
> You can find Db2txt in Windows too. Look at c:your_gs_homebinwindows and
> there you will find db2txt.exe.
>
> The database format is GDBM, an standard database manager for linux (used in
> Windows too). You can□t open it with notepad ot notebook because it is not a
> text file but a binary one.
>
> You have only one user file that affect your whole system. You can□t set a
> different user file for each collection.
>
> Account status refers to the way you can enable or disable a user. You can
> create a user but set to disabled until you want to let him login.
>
> Groups are a way to organize the users. Instead of having single users you
> can join them into groups, ie: Sales, IT, Librarians, etc.
>
> Then for each user you only set the group/s that it belongs to and in
> collect.cfg you write:
>
> authenticate document
> auth_groups <groupname> [<groupname> ...]
>
> There are predefined groups as you can see in admin page. If you want that
> user Joe to be also a GS administrator, assign him to administrator group.
> The other 3 predefined groups are related to remote GLI.
>
>
> Hope this helps you.
>
> Diego Spano
>
>
>
> -----Mensaje original-----
> De: greenstone-users-bounces@list.scms.waikato.ac.nz
> [mailto:greenstone-users-bounces@list.scms.waikato.ac.nz] En nombre de E
> Robinson
> Enviado el: Viernes, 03 de Julio de 2009 07:26 a.m.
> Para: greenstone-users@list.scms.waikato.ac.nz
> Asunto: [greenstone-users] Authentication
>
> I have been going in circles a bit trying to get password protection for
> my collection - it will have quite a few people authorised, so I need a
> way to add users in bulk, and amend user details easily. The method
> suggested by Diego of converting the file users.gdb to text and back
> again, and editing the text file may be the way to go, except I think
> db2txt may be a Unix programme, and I am using Windows.
>
> I have found a programmer who may be able to help, but I'd like to know
> a bit more about the user file and how it works before I talk it through
> with him.
>
> 1. I looked up the file extension ".gdb" and it seems it may be related
> to Gnu debugger, or a Gnu Database, or various types of other database
> (ACT! Group, ArcView, Firebird, or Borland Interbase) Is the file type
> related to another programme or is it just part of the Greenstone
> programme?
>
> 2. The file users.gdb appears in the directory Greenstone/etc, (I'm now
> using 2.82) rather than being a file in the etc directory for the
> collection. Does the one user file affect all collections using
> authentication, or am I looking at the wrong file? I'll only have one
> collection on a website, but I would have expected the file to be in the
> relevant collect directory
>
> 3. I don't understand what a "account status" means, or what a group
> means? When are these used? I am not wanting anyone else to be able to
> do anything other than access the collection, conduct searches etc and
> read / download files from it. What is the purpose of the comment field?
>
> 4. I guess because I was not able to convert the file to text (I looked
> at it using Wordpad or Notebook) the format was not particularly
> obvious. If someone has the file format would you be able to send it to
> me (or if short describe it in an reply to this email?)
>
> Thanks for the help I have already received, I hope that the answers
> tot eh above will help me talk someone into setting up a process to edit
> the user file so taht I don;t have to type every one in individually -
> and that I can periodically replace the user.gdb file as additional
> people are authorised or drop out.
>
> Ed Robinson
> Wellington, New Zealand
>
>
> _______________________________________________
> greenstone-users mailing list
> greenstone-users@list.scms.waikato.ac.nz
> https://list.scms.waikato.ac.nz/mailman/listinfo/greenstone-users
>
>
> _______________________________________________
> greenstone-users mailing list
> greenstone-users@list.scms.waikato.ac.nz
> https://list.scms.waikato.ac.nz/mailman/listinfo/greenstone-users
>
>