[ome-users] Sharing with OMERO.web

Josh Moore josh at glencoesoftware.com
Thu Feb 4 12:07:49 GMT 2010 

Mark,

if you get a chance, do you think you could destill what you would
like to see in an LDAP plugin on the forum thread:

   http://openmicroscopy.org/community/viewtopic.php?f=5&t=14

or possibly even post your modifications. This is something that will
also be improved for 4.2, and the more input, the better.

~J.

Woodbridge, Mark R writes:
 > Thanks Aleksandra. We have our own authentication code in
 > JdbcPasswordProvider.java that checks for the user in Active
 > Directory (via LDAP) and falls back to local password if they're
 > not in LDAP. This is necessary to deal with off-campus users. It
 > would be good if alternative authentication schemes were supported
 > natively by OMERO but I think each institution will have its own
 > particular requirements. For example, we're experimenting with
 > giving regular usernames to university users but using email
 > addresses as usernames for external users so that we don't get
 > username clashes (and we don't needlessly check LDAP).
 > 
 > Mark.
 > ________________________________________
 > From: Aleksandra Tarkowska [aleksandrat at lifesci.dundee.ac.uk]
 > Sent: 04 February 2010 11:04
 > To: Woodbridge, Mark R
 > Cc: ome-users at lists.openmicroscopy.org.uk list
 > Subject: Re: [ome-users] Sharing with OMERO.web
 > 
 > Hi Mark
 > 
 > At that moment you cannot change the account from LDAP to OMERO in Webadmin. You can only do it by hand on the database level
 > 
 > sql: "update password set dn = null where experimenter_id = 55;"
 > you can get Experimenter id from the link in Webadmin while you
 > edit: http://localhost:8000/webadmin/experimenter/edit/55/
 > 
 > Then log in to the Webadmin as "root" and change the user password.
 > 
 > I added that functionality to the 4.2 release http://trac.openmicroscopy.org.uk/omero/ticket/1772
 > 
 > Thank you very much for all your comments.
 > 
 > Thanks
 > Ola
 > 
 > On 3 Feb 2010, at 21:08, Woodbridge, Mark R wrote:
 > 
 > Thanks Josh. Sharing the user's password with other users isn't
 > possible at the moment (because we authenticate against the
 > university's directory service) but it would be ok once he has left
 > because we can change his account to make it local to OMERO.
 > 
 > I guess this is a use case that will be covered by your redesign of
 > the sharing capabilities - in this case read-only access to a
 > deactivated user's images, including the project/dataset hierarchy
 > and any annotations. The other functionality that might be good is
 > the ability to reassign (or copy) images to a new user so that they
 > become the owner, with read-write access. Finally, it would be
 > great if a user could download a dump of their (raw) images so they
 > could write them to a DVD when they leave. This relates to my
 > previous message about access to full datasets at some point after
 > archival (e.g. Leica projects).
 > 
 > Mark.

More information about the ome-users mailing list