From 93987748f55c669f911a28a4a58a6a5d547fc75e Mon Sep 17 00:00:00 2001
From: Mark Craig <mark.craig@forgerock.com>
Date: Mon, 06 Jun 2016 12:08:19 +0000
Subject: [PATCH] OPENDJ-3049 Document REST2LDAP OAuth 2.0 capabilities

---
 opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json |    7 +++++--
 1 files changed, 5 insertions(+), 2 deletions(-)

diff --git a/opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json b/opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json
index dc79d68..8528222 100644
--- a/opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json
+++ b/opendj-rest2ldap-servlet/src/main/webapp/WEB-INF/classes/opendj-rest2ldap-config.json
@@ -55,12 +55,15 @@
 
         // Authenticated connections which will be used for searches during
         // authentication and proxied operations (if enabled). This factory
-        // will re-use the server "default" configuration.
+        // will re-use the server "bind" configuration.
         "root" : {
             "inheritFrom"    : "bind",
 
             // Defines how authentication should be performed. Only "simple"
             // authentication is supported at the moment.
+            // If the OAuth 2.0 authorization policy is configured below,
+            // then the directory service must be configured
+            // to allow the user configured here to perform proxied authorization.
             "authentication" : {
                 "simple" : {
                     "bindDN"       : "cn=directory manager",
@@ -77,7 +80,7 @@
         // Perform all operations using a pre-authorization connection. 
         "anonymous": {
             // Specify the connection factory to use to perform LDAP operations.
-            // If missing, "root" factory will be used.
+            // If missing, the "root" factory will be used.
             "ldapConnectionFactory": "root"
         },
 

--
Gitblit v1.10.0