The Jive Security Mapper Plugin component fetches the permissions of a Jive container (Group, Blog, Space), creating and returning a XML format string with the ACLs, that the Jive Connector is going to add to the job information.
The plugin reacts to an incoming HTTP GET request. This request may instruct the plugin to fetch permissions from a space, blog or group. To access this URIs it is needed a System Administrator account, otherwise the access will be rejected, except for the hi request used for testing proposes.
This plugin has three different versions each one of them for diferent versions of Jive:
- For Jive 6.0.1.1 or higher aspire-jive-security-plugin-6.0.1.1.jar
- For Jive 7.0.0.X aspire-jive-security-plugin-7.0.0.1.jar
- For Jive 7.0.X.X or higher aspire-jive-security-plugin-7.0.1.0.jar
| Jive Security Mapper | |
|---|---|
| Factory Name | com.searchtechnologies.aspire:aspire-jive-security-plugin |
| subType | none |
| Inputs | AspireObject from a content source submitter holding all the information required for a crawl |
| Outputs | Jobs from the crawl |
Difference between plugins
Jive 6
In Jive 6 the plugin uses JAXWS with Spring to create a REST Service from which the connector can retrieve the security group ACLs for each space, group and blog.
Jive 7.0.0.X
In Jive 7.0.0.X due an update from Apache the REST functionality was moved to a new library called JAXRS, which required the update of the plugin. The service code changed a bit, but the logic path and output stayed the same.
Jive 7.0.X.X
For Jive 7.0.X.X the host location of the REST Service was to be indicated. So to keep the same path as the previous versions, the REST Service is hosted in the bus rpcCxfBus. The logic, path and output remained the same.
Jive 8
For Jive 8 there is no plugin, but instead a new web Entitlements API is available.
System Administrator Only Access
In case an authorized user tries to call the plugin, it will be rejected with the following message
Message
<ns2:getSpacePermResponse xmlns:ns2="http://webservice.searchtechnologies.jivesoftware.com/">
<return>
<?xml version="1.0" encoding="UTF-8"?>
<error description="This request requires System Administrator permissions" message="Access Denied" type="Status report"/>
</return>
</ns2:getSpacePermResponse>
HTTP GET Requests
The plugin recognizes the following HTTP requests:
| Uri | Parameter | Container | Description |
|---|---|---|---|
| /rpc/rest/securityMapper/hi | Uri used to test if the web service is up. | ||
| /rpc/rest/securityMapper/space/{id} | int | Space | Fetch the permissions of the space identify by the id. |
| /rpc/rest/securityMapper/blog/{id} | int | Blog | Fetch the permissions of the blog identify by the id. |
| /rpc/rest/securityMapper/group/{id} | int | Space | Fetch the permissions of the group identify by the id. |
Plugin Output Example
Example
<ns2:getSpacePermResponse xmlns:ns2="http://webservice.searchtechnologies.jivesoftware.com/">
<return>
<?xml version="1.0" encoding="UTF-8"?>
<acls>
<acl access="allow" entity="group" name="All Registered Users" scope="global" sid="-2" sidType="4"/>
<acl access="allow" entity="group" name="All Guest Users" scope="global" sid="-3" sidType="4"/>
</acls>
</return>
</ns2:getSpacePermResponse>
Overview
Content Tools