[ome-users] Sharing with OMERO.web

Woodbridge, Mark R m.woodbridge at imperial.ac.uk
Thu Feb 4 11:21:38 GMT 2010 

Thanks Aleksandra. We have our own authentication code in JdbcPasswordProvider.java that checks for the user in Active Directory (via LDAP) and falls back to local password if they're not in LDAP. This is necessary to deal with off-campus users. It would be good if alternative authentication schemes were supported natively by OMERO but I think each institution will have its own particular requirements. For example, we're experimenting with giving regular usernames to university users but using email addresses as usernames for external users so that we don't get username clashes (and we don't needlessly check LDAP).

Mark.
________________________________________
From: Aleksandra Tarkowska [aleksandrat at lifesci.dundee.ac.uk]
Sent: 04 February 2010 11:04
To: Woodbridge, Mark R
Cc: ome-users at lists.openmicroscopy.org.uk list
Subject: Re: [ome-users] Sharing with OMERO.web

Hi Mark

At that moment you cannot change the account from LDAP to OMERO in Webadmin. You can only do it by hand on the database level

sql: "update password set dn = null where experimenter_id = 55;"
you can get Experimenter id from the link in Webadmin while you edit: http://localhost:8000/webadmin/experimenter/edit/55/

Then log in to the Webadmin as "root" and change the user password.

I added that functionality to the 4.2 release http://trac.openmicroscopy.org.uk/omero/ticket/1772

Thank you very much for all your comments.

Thanks
Ola

On 3 Feb 2010, at 21:08, Woodbridge, Mark R wrote:

Thanks Josh. Sharing the user's password with other users isn't possible at the moment (because we authenticate against the university's directory service) but it would be ok once he has left because we can change his account to make it local to OMERO.

I guess this is a use case that will be covered by your redesign of the sharing capabilities - in this case read-only access to a deactivated user's images, including the project/dataset hierarchy and any annotations. The other functionality that might be good is the ability to reassign (or copy) images to a new user so that they become the owner, with read-write access. Finally, it would be great if a user could download a dump of their (raw) images so they could write them to a DVD when they leave. This relates to my previous message about access to full datasets at some point after archival (e.g. Leica projects).

Mark.

More information about the ome-users mailing list