Member Manager database repository configuration
The following is a sample Member Manager database repository configuration in wmm.xml.
<repositories> <databaseRepository name="wmmDB" UUID="DB1" supportTransactions="true" wmmGenerateExtId="true" adapterClassName="com.ibm.ws.wmm.db.DatabaseRepository" supportDynamicAttributes="true" supportGetPersonByAccountName="false" dbMemberRetrievalLimit="200" profileRepositoryForGroups="DB1" dataSourceName="jdbc/wpsdbDS" databaseType="db2" dataAccessManagerClassName="com.ibm.ws.wmm.db.dao.db2.WMMDB2Dao" saltLength="12" dbEncryptionKey="rZ15ws0ely9yHk3zCs3sTMv/ho8fY17s"> <readMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </readMemberType> <createMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </createMemberType> <updateMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </updateMemberType> <deleteMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </deleteMemberType> <renameMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </renameMemberType> <moveMemberType> <memberType name="Person" /> <memberType name="Group" /> <memberType name="Organization" /> <memberType name="OrganizationalUnit" /> </moveMemberType> <nodeMaps> <nodeMap" pluginNode="o=Default Organization" /> </nodeMaps> </databaseRepository> </repositories>Following are detail description of all attributes in the Member Manager database repository:
Member Manager Database Repository configuration attributes
name
The name of the repository. For the Member Manager Database repository, the default name is wmmDB.
UUID
The universal unique identifier of the repository. We can use any name as long as it is unique in wmm.xml.
supportTransactions
Whether or not the repository supports transactions. Should be set to "true" for Member Manager database repository.
wmmGenerateExtId
Whether or not the repository needs Member Manager to generate external identifiers. Should be set to "true" for Member Manager database repository.
adapterClassName
The implementation class name of the repository adapter. For the Member Manager database repository, you should use "com.ibm.ws.wmm.db.DatabaseRepository".
supportDynamicAttributes
Whether or not support dynamic attributes. "true" means the repository adapter allows programmatically defining new attributes through the createAttributeDefinition API. For the Member Manager database repository, we can set this to "true".
supportGetPersonByAccountName
Whether or not the getPersonByAccountName API is supported.
dbMemberRetrievalLimit
The number of members to retrieval in one JDBC SQL statement when querying multiple members, such as: getMembers, getGroupMembers. Because there is a limited length for SQL statement in database. This is an optional parameter. If not set, by default it is set to 200.
profileRepositoryForGroups
Lists the UUIDs of the repositories that can contain groups whose members are from this repository. Usually, this attribute should include this repository's UUID. Multiple UUIDs should be separated by semi colon ";". For Member Manager database repository, this attribute should be only set to the UUID of itself.
dataSourceName
The JNDI name of the data source which points to the Member Manager database. The default is "jdbc/wpsdbDS". If you are using a different name, then we need to update this attribute.
databaseType
The database type of the Member Manager database. The default setting is "db2". Other possible values are listed in the following table:
Database Type databaseType dataAccessManagerClassName DB2 db2 com.ibm.ws.wmm.db.dao.db2.WMMDB2Dao Cloudscape cloudscape com.ibm.ws.wmm.db.dao.cloudscape.WMMCloudscapeDao Oracle oracle com.ibm.ws.wmm.db.dao.oracle.WMMOracleDao Microsoft SQL Server 2000 sqlserver com.ibm.ws.wmm.db.dao.sqlserver.WMMSQLServerDao DB2 on ZOS db2_zos com.ibm.ws.wmm.db.dao.db2zos.WMMDB2ZOSDao DB2 on iSeries db2_iseries com.ibm.ws.wmm.db.dao.db2iseries.WMMDB2iSeriesDao
dataAccessManagerClassName
The implementation class name of the data access manager which is a component inside the Member Manager database repository adapter provided by Member Manager. The default settings is "com.ibm.ws.wmm.db.dao.db2.WMMDB2Dao". Other values are listed in the above table.
saltLength
The length of the salt which is used when hashing passwords stored in the Member Manager database repository. Default value is 12.
dbEncryptionKey
The encryption key used to encrypt password. The encryption key should contain exactly 16 characters. Although clear text encryption key is accepted, it is highly recommended that the encryption key should be encrypted for security reason.
To encrypt the key, the Customization Dialog created the job EJPSENCR in the target control data set. Submit the job EJPSENCR. Upon completion, examine the job output. Success is indicated with "rc=0" in the job output.
By default, Member Manager uses the following encrypted encryption key: rZ15ws0ely9yHk3zCs3sTMv/ho8fY17s.
readMemberType
Defines the member types supported in the read operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for read. If a caller tries to get a member whose member type is not supported for read by the Member Manager database repository, an exception will be thrown.
createMemberType
Defines the member types supported in the create operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for create. If a caller tries to create a member whose member type is not supported for create by the Member Manager database repository, an exception will be thrown.
updateMemberType
Defines the member types supported in the update operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for update. If a caller tries to update a member whose member type is not supported for update by the Member Manager database repository, an exception will be thrown.
deleteMemberType
Defines the member types supported in the delete operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for delete. If a caller tries to delete a member whose member type is not supported for delete by the Member Manager database repository, an exception will be thrown.
renameMemberType
Defines the member types supported in the rename operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for rename. If a caller tries to rename a member whose member type is not supported for rename by the Member Manager database repository, an exception will be thrown.
moveMemberType
Defines the member types supported in the move operation by the repository. By default, all four built-in member types are supported by the Member Manager database repository for move. If a caller tries to move a member whose member type is not supported for move by the Member Manager database repository, an exception will be thrown.
nodeMaps
Defines the maps between member nodes and repository nodes.
nodeMap
Defines a map between a member node and repository node. For Member Manager database repository, the member node and repository node are always the same. There is a default node map which maps Member Manager node "o=Default Organization" to Member Manager Database repository node "o=Default Organization".
Parent Topic
Using multiple realms and user registries