Enable User Authentication in MMAP

This section describes how to configure MMAP to enable authentication.

To enable user authentication in MMAP

  1. Open the file /mmap/standalone/configuration/avalanche.properties in a text editor.
  2. Set the following properties to specify the details of your IDOL Community component:

    avalanche.vms.authentication.community.host The host name or IP address of your IDOL Community component.
    avalanche.vms.authentication.community.aciPort The ACI port of your IDOL Community component.
    avalanche.vms.authentication.community.https Specifies whether to communicate with Community over HTTPS.
    avalanche.vms.accessControl.rolePrefix Specifies the prefix to use for role names in IDOL Community. MMAP also adds this prefix to role names in the ACLs of documents that it indexes into IDOL Content.

    For example:

    # The IDOL Community server used for authenticating users
    avalanche.vms.authentication.community.host=localhost
    avalanche.vms.authentication.community.aciPort=9030
    avalanche.vms.authentication.community.https=true
    
    # A user has a role in MMAP if they have a role in Community
    # with the same name but with this prefix
    avalanche.vms.accessControl.rolePrefix=MMAP_
  3. Set the property avalanche.vms.authentication.enabled to true to enable authentication. For example:

    # Require authentication for all APIs
    avalanche.vms.authentication.enabled=true
    # Users can only stay logged in for this long
    avalanche.vms.authentication.tokenExpireTimeMinutes=1440
    

    avalanche.vms.authentication.tokenExpireTimeMinutes specifies the maximum amount of time that can pass before a user must authenticate again.

  4. Save and close the file.