The Jive Security Mapper Plugin component fetches the permissions of a Jive container (Group, Blog, Space), creating and returning a XML format string with the ACLs, that the Jive Connector is going to add to the job information.

The plugin reacts to an incoming HTTP GET request. This request may instruct the plugin to fetch permissions from a space, blog or group. To access this URIs it is needed a System Administrator account, otherwise the access will be rejected, except for the hi request used for testing proposes.

This plugin has three different versions each one of them for diferent versions of Jive:

JIVE Security Mapper Plugin (Aspire 2)
Factory Name com.searchtechnologies.aspire:jive-security-plugin
subType none
Inputs HTTP GET Resquest from a Jive Scanner
Outputs XML format string with the ACLs of a Jive Container

Difference between plugins

Jive 6

In Jive 6 the pluging uses JAXWS with Spring to create a REST Service from which the connector can retrieve the security group ACLs for each space, group and blog.

Jive 7.0.0.X

In Jive 7.0.0.X due an update from Apache the REST functionality was moved to a new library called JAXRS, which required the update of the plugin. The service code changed a bit, but the logic path and output stayed the same.

Jive 7.0.X.X

For Jive 7.0.X.X the host location of the REST Service was to be indicated. So to keep the same path as the previous versions, the REST Service is hosted in the bus rpcCxfBus. The logic, path and output remained the same.


Only System Administrator Access

In case an authorized user tries to call the plugin, it will be rejected with the following message

<ns2:getSpacePermResponse xmlns:ns2="http://webservice.searchtechnologies.jivesoftware.com/">
    <return>
        <?xml version="1.0" encoding="UTF-8"?>
        <error description="This request requires System Administrator permissions" message="Access Denied" type="Status report"/>
    </return>
</ns2:getSpacePermResponse>



HTTP GET Requests

The plugin recognizes the following HTTP requests:

UriParameterContainerDescription
/rpc/rest/securityMapper/hi

Uri used to test if the web service is up.
/rpc/rest/securityMapper/space/{id}intSpaceFetch the permissions of the space identify by the id.
/rpc/rest/securityMapper/blog/{id}intBlogFetch the permissions of the blog identify by the id.
/rpc/rest/securityMapper/group/{id}intSpaceFetch the permissions of the group identify by the id.


Plugin Output example

<ns2:getSpacePermResponse xmlns:ns2="http://webservice.searchtechnologies.jivesoftware.com/">
    <return>
        <?xml version="1.0" encoding="UTF-8"?>
        <acls>
            <acl access="allow" entity="group" name="All Registered Users" scope="global" sid="-2" sidType="4"/>
            <acl access="allow" entity="group" name="All Guest Users" scope="global" sid="-3" sidType="4"/>
        </acls>
    </return>
</ns2:getSpacePermResponse>


  • No labels