I have a couple of applications including JIRA, GreenHopper, Fisheye and Crucible, as well as a source control server system.
I believe I can use CROWD to wrap 2-3 LDAP AD domains pulling some (but not all) users from each domain for authentication for the atlassian applications.
- Can the users who can access each product be controlled in CROWD?
- Can CROWD also provide LDAP or CAS server to the other non atlassian applications so that I have one app providing users to all my SDLC tools? (the user base is essentially the same and it would be nice to control access in one location)
Crowd does authentication, not so much authorisation. By that I mean, you can control which applications are allowed to use crowd, in order to authenticate users, but that is just the first step. Basically Crowd is telling the application that, yes, this user is authenticated.
But then it is up to each individual application to control their own authorisation aspects based on groups/users etc.. to their respective permissions.
Crowd can be used by non Atlassian apps if the applications are able to be 'crowdified'. There are various third party extensions available. e.g. Alfresco to Crowd, Hudson to Crowd etc.. Also, any spring security web stack can have crowd functionality fairly easily added.
This approach requires you to have the JIRA administrative rights. The main aim of this article is to help you achieve an organized, easy-to-maintain workflows in your JIRA instance thereby, reducin...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs