| Author |
Message
|
| texan |
 Posted: Tue Aug 31, 2004 11:28 am Post subject: Ldap Bridge problem |
 |
|
Acolyte
Joined: 25 Feb 2004
Posts: 74
|
I am using LDAP bridge to move staff info from LDAP to WF. I am trying to set AUTHORIZED_FOR WORKITEMS_OF for all users through Bridge. In mappings file I am doing this as:
<FDLAttribute Name="Auth_WORKITEMS_OF">
<ConstantMapping Value="xxx yyyy zzzz"/>
</FDLAttribute>
Where xxx is user1, yyy is user2 etc. When am runiing bridge with the above mappings, output fdl is n't enclosing each user id in single quotes. Does any one know how to do this? I tried several diff. combinations, but none of them are working.
can somebody help me?? |
|
| Back to top |
|
 |
| Ratan |
| Posted: Tue Aug 31, 2004 1:47 pm Post subject: |
|
|
Grand Master
Joined: 18 Jul 2002
Posts: 1245
|
I have no Experience with LDAP, but am taking a shot here.
Why do you think it should enclose each user ID in a single Quote. What you are giving in the ConstantMapping is a String. If you want users enclosed in single quotes, you should probably do that.
Your mapping file should probably look more like:
<FDLAttribute Name="Auth_WORKITEMS_OF">
<ConstantMapping Value="'xxx' 'yyyy' 'zzzz'"/>
</FDLAttribute>
_________________
-Ratan |
|
| Back to top |
|
|
| texan |
| Posted: Tue Aug 31, 2004 5:26 pm Post subject: |
|
|
Acolyte
Joined: 25 Feb 2004
Posts: 74
|
When I exported a user from buildtime, it is keeping single quotes around user ids in fdls. I think that is the fdl syntax.
In the xml file If I put:
<FDLAttribute Name="Auth_WORKITEMS_OF">
<ConstantMapping Value="'xxx' 'yyyy' 'zzzz'"/>
</FDLAttribute>
It is creating fdl like '''xxx'' ''yyy'' ''zzz''". For each single quote, it is putting 2 single quotes in fdl. If I just put "xxx yyy", it generates 'xxx yyy'. I tried even escape sequence but no luck. |
|
| Back to top |
|
|
| vennela |
| Posted: Wed Sep 01, 2004 5:53 am Post subject: |
|
|
Jedi Knight
Joined: 11 Aug 2002
Posts: 4055
Location: Hyderabad, India
|
| Quote: |
| It is creating fdl like '''xxx'' ''yyy'' ''zzz''". For each single quote, it is putting 2 single quotes in fdl. If I just put "xxx yyy", it generates 'xxx yyy'. |
I think it's actually a double quote and not two single quotes. That should be OK.
AFAIK
'''xxx'' ''yyy'' ''zzz''" is same as
" 'xxx' 'yyy' 'zzz' "
Try importing the output and see if you get any errors |
|
| Back to top |
|
|
| texan |
| Posted: Wed Sep 01, 2004 12:21 pm Post subject: |
|
|
Acolyte
Joined: 25 Feb 2004
Posts: 74
|
When I tried with the abobe syntax, I got the follwoing error:
Syntax error; character in WORKITEMS_OF not valid
I solved this problem by parsing the output file with java program.
Thanks |
|
| Back to top |
|
|
| mehedi |
| Posted: Thu Sep 09, 2004 12:48 pm Post subject: LDAP - Mapping for every workflow attribute |
|
|
Centurion
Joined: 11 Nov 2001
Posts: 102
Location: PSTech
|
This mapping file maps every workflow attribue for objects
Person,Role & Org.
The bridge program uses this mapping file for its functions.
(a) Comparing LDAP info and Workflow runtime fdl of Person,Role and Objects
(b) To generate ldif file from FDL of Person,Role & Organization
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE MappingSpecs SYSTEM "LDAPMapping.dtd">
<MappingSpecs>
<FDLObjectClass Name="PERSON">
<LDAPObjectClass Name="WorkFlowOC" RdnName="cn"/>
<LDAPObjectClass Name="top"/>
<LDAPObjectClass Name="person"/>
<LDAPQuery Suffix="ou=People,ou=Dev,ou=WorkFlow,o=ibm,c=us"/>
<FDLAttribute Name="Name">
<DirectAttributeMapping>
<LDAPAttribute Name="cn"/>
<Conversion ToFDL="ToUpper" ToLDAP="ToLower"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="PHONE">
<DirectAttributeMapping>
<LDAPAttribute Name="telephoneNumber"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="LAST_NAME">
<DirectAttributeMapping>
<LDAPAttribute Name="sn"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="DESCRIPTION">
<DirectAttributeMapping>
<LDAPAttribute Name="description"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="RELATED_ORGANIZATION">
<AttributeReferenceMapping>
<LDAPAttribute Name="ou"/>
</AttributeReferenceMapping>
</FDLAttribute>
<FDLAttribute Name="PERSON_ID">
<DirectAttributeMapping>
<LDAPAttribute Name="displayName"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="GROUP">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_GROUP"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="SYSTEM">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_SYSTEM"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="FIRST_NAME">
<DirectAttributeMapping>
<LDAPAttribute Name="givenName"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="MIDDLE_NAME">
<DirectAttributeMapping>
<LDAPAttribute Name="middleName"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="SECOND_PHONE">
<DirectAttributeMapping>
<LDAPAttribute Name="homePhone"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="LEVEL">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_LEVEL"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="SUBSTITUTE">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_SUBSTITUTE"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_STAFF">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_STAFF"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_TOPOLOGY">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_TOPOLOGY"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_PROCESS_MODELING">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_PROC_MODELING"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_AUTHORIZATION">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_AUTHORIZATION"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_OPERATION">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_OPERATION"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_PROCESS_CATEGORY">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_PC"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_PROCESS_CATEGORY_Admin">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_PC_Admin"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_PROCESS_CATEGORY_ALL">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_PC_ALL"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_PROCESS_CATEGORY_ALL_Admin">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_PC_ALL_Admin"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_WORKITEMS_OF">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_WRKITEMS"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="Auth_WORKITEMS_OF_ALL">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_A_WRKITEMS_ALL"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="IS_ABSENT">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_IS_ABSENT"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="RESET_ABSENT">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_RST_ABSENT"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="ManagesOrganization">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_ManagesOrganization"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="CoordinatesRole">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_CoordinatesRole"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="SubstituteFor">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_SubstituteFor"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="ViewWorkItemsFor">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_ViewWorkItemsFor"/>
</DirectAttributeMapping>
</FDLAttribute>
</FDLObjectClass>
<FDLObjectClass Name="ROLE">
<LDAPObjectClass Name="groupOfUniqueNames" RdnName="cn"/>
<LDAPObjectClass Name="top"/>
<LDAPQuery Suffix="ou=Roles,ou=Dev,ou=WorkFlow,o=ibm,c=us"/>
<FDLAttribute Name="Name">
<DirectAttributeMapping>
<LDAPAttribute Name="cn"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="COORDINATOR">
<AttributeReferenceMapping>
<LDAPAttribute Name="owner"/>
</AttributeReferenceMapping>
</FDLAttribute>
<FDLAttribute Name="DESCRIPTION">
<DirectAttributeMapping>
<LDAPAttribute Name="description"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="RELATED_PERSON">
<AttributeReferenceMapping>
<LDAPAttribute Name="uniqueMember"/>
</AttributeReferenceMapping>
</FDLAttribute>
</FDLObjectClass>
<FDLObjectClass Name="ORGANIZATION">
<LDAPObjectClass Name="organizationalUnit" RdnName="ou"/>
<LDAPObjectClass Name="top"/>
<LDAPQuery Suffix="ou=Organizations,ou=Dev,ou=WorkFlow,o=ibm,c=us" Scope="Subtree"/>
<FDLAttribute Name="Name">
<DirectAttributeMapping>
<LDAPAttribute Name="ou"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="MANAGER">
<AttributeReferenceMapping>
<LDAPAttribute Name="l"/>
</AttributeReferenceMapping>
</FDLAttribute>
<FDLAttribute Name="ChildOrganization">
<ImmediateBelowMapping/>
</FDLAttribute>
<FDLAttribute Name="DESCRIPTION">
<DirectAttributeMapping>
<LDAPAttribute Name="description"/>
</DirectAttributeMapping>
</FDLAttribute>
<FDLAttribute Name="PARENT_ORGANIZATION">
<DirectAttributeMapping>
<LDAPAttribute Name="wf_28"/>
</DirectAttributeMapping>
</FDLAttribute>
</FDLObjectClass>
</MappingSpecs> |
|
| Back to top |
|
|
| texan |
| Posted: Fri Sep 10, 2004 5:02 am Post subject: |
|
|
Acolyte
Joined: 25 Feb 2004
Posts: 74
|
| We do n't want to map this field (Auth_WORKITEMS_OF) directly to LDAP field. This should be generated from a LDAP query. Current LDAP bridge implementation does n't support that. Thanks. |
|
| Back to top |
|
|
|
|
