[jcifs] Windows User Groups

eglass1 at comcast.net eglass1 at comcast.net
Tue Jun 15 14:35:18 GMT 2004 

The "jcifs-rap" distribution has this functionality (listing the domain groups in which
a user has membership); if you're using the HTTP filter, this will show up through
the request.isUserInRole().  I'm currently revisiting a lot of the RAP stuff (looking
at next week sometime to put out an update, along with some other interesting
items).  Note that these are domain groups (on a real domain controller), and not
local machine groups (enumerating those requires RPC).

If you want to "scope" the users authenticated through the filter, you can set the
"jcifs.smb.client.logonShare" to a specific share name (i.e., "PROTECTED"); then
apply windows-side permission restrictions to that share on the server.  This will
effectively allow authentication only for users with access to the given share.


Eric


> Does anyone know whether it is possible to obtain a user group for a user
> once signed into jcif.  
> 
> Failing this can user's be authenticated against a domain and user group?
> 
> Thanks, Ross.
> 
> --------------------------
> Ross Everitt
> Ross.Everitt at gistworld.com
> Gist Integration Team
> Faversham
> +44 (0)1795-594-344
> --------------------------
> 
> ***********************************************************************
> This email is confidential and intended solely for the use of the individual to 
> whom it is addressed. Any views or opinions presented are solely those of the 
> author and do not necessarily represent those of the BOC Group plc or any of its 
> affiliates. If you are not the intended recipient, be advised that you have 
> received this email in error and that any use, dissemination, forwarding, 
> printing, or copying of this email is strictly prohibited. If you have received 
> this email in error please return the message to the sender by replying to it 
> and then delete the message from your computer. 
> 
> This footnote also confirms that this email message has been checked by 
> anti-virus software for the presence of computer viruses. However, the BOC Group 
> plc or any of its affiliates accepts no responsibility for any virus or defect 
> that might arise from opening this e-mail or attachments.

More information about the jcifs mailing list