Helical Insight Application and LDAP Integration

Introduction: This document describes the steps of authenticating Helical Insight application using Lightweight Directory Access Protocol (LDAP).

Prerequisite :

  • Java version 1.7 or higher
  • Helical Insight Application Version 2.0 +

Download the files required for integration of LDAP with Helical Insight application from below link.
Download the files from here

Below are the steps :

  1. Configurations needs to do on LDAP client and server :
  1. Download and install OpenLDAP server and OpenLDAP client. Once installation is done add some users and it’s related information to OpenLDAP. For reference you can use the below links :

 

  1. Configurations for Helical Insight application server :
  1. Download and add JAR files in lib folder ( lib folder is located at “WEB-INF/lib/”), in order to add the spring and spring-security related dependencies for LDAP.

Below is the list of JAR files which needs to be download and add inside lib folder.

1. spring-security-ldap-3.1.3.RELEASE.jar

2. spring-ldap-core-1.3.0.RELEASE.jar

  1. Create “externalauth” folder inside “WEB-INF/classes/com/helicalinsight” folder.
  2. Create “ldap” folder inside “WEB-INF/classes/com/helicalinsight/externalauth” folder.
  3. Add any one of the “HiLdapAuthentication.class” file (either with default role as ROLE_USER or with default role as ROLE_ADMIN) provided in the zip package (LDAP Integration Files) with this blog inside “WEB-INF/classes/com/helicalinsight/externalauth/ldap” folder.
  1. Open “spring-security.xml” file in a text editor. ( “spring-security.xml” file will be located at “WEB-INF/classes/” folder).
  2. Add the reference of “authentication-provider” for LDAP in “authentication-manager” tags of “spring-security.xml” file as shown below:
<authentication-manager alias="authenticationManager" erase-credentials="false">

     <authentication-provider user-service-ref="userDetailsService"/>

     <authentication-provider ref="casAuthenticationProvider"/>

     <authentication-provider ref="internalAuthenticationProvider"/>

     <authentication-provider ref="ldapAuthProvider" />

</authentication-manager>
  1. Add the properties and configurations of LDAP in “spring-security.xml” file as shown below:

Note : Configure the server details, userDn, password as per your own server details.

<beans:bean id="contextSource" class="org.springframework.security.ldap.DefaultSpringSecurityContextSource">

           <beans:constructor-arg value="ldap://192.168.2.82:389/dc=maxcrc,dc=com"/>

           <beans:property name="userDn" value="cn=Manager,dc=maxcrc,dc=com"/>

           <beans:property name="password" value="secret"/>

</beans:bean>

 

<beans:bean id="ldapAuthProvider" class="com.helicalinsight.externalauth.ldap.HiLdapAuthentication">

     <beans:constructor-arg>

         <beans:bean class="org.springframework.security.ldap.authentication.BindAuthenticator">

          <beans:constructor-arg ref="contextSource"/>

          <beans:property name="userDnPatterns">

             <beans:list><beans:value>uid={0},ou=people</beans:value></beans:list>

          </beans:property>

        </beans:bean>

     </beans:constructor-arg>

     <beans:constructor-arg>

         <beans:bean class="org.springframework.security.ldap.userdetails.DefaultLdapAuthoritiesPopulator">

           <beans:constructor-arg ref="contextSource"/>

           <beans:constructor-arg value="ou=people"/>

           <beans:property name="groupRoleAttribute" value="ou"/>

         </beans:bean>

     </beans:constructor-arg>

</beans:bean>
  1. Once this configurations are done, save the “spring-security.xml” file and close it.
  2. Restart the Helical Insight application server.
  3. Once application is restarted, try to access the application using application url.

Example : “http://localhost:8085/hi-ee/”

  1. Now provide the credentials to login into the application.
    1. Keep the Organization Name field as blank.
    2. Provide uid (of LDAP user) in Username field of HI application.
    3. Provide the userpassword (of LDAP user) in Password field of HI application.

Note : This will create the session for LDAP user inside Helical Insight application with default role as “ROLE_ADMIN” or “ROLE_USER” (based on the class file which you have used) and default organization as “null”. We can enhance this process to modify and sync roles, profiles, organization details according to requirement.

You May Also Like

Helical Insight’s self-service capabilities is one to reckon with. It allows you to simply drag and drop columns, add filters, apply aggregate functions if required, and create reports and dashboards on the fly. For advanced users, the self-service component has ability to add javascript, HTML, HTML5, CSS, CSS3 and AJAX. These customizations allow you to create dynamic reports and dashboards. You can also add new charts inside the self-service component, add new kind of aggregate functions and customize it using our APIs.
Helical Insight’s self-service capabilities is one to reckon with. It allows you to simply drag and drop columns, add filters, apply aggregate functions if required, and create reports and dashboards on the fly. For advanced users, the self-service component has ability to add javascript, HTML, HTML5, CSS, CSS3 and AJAX. These customizations allow you to create dynamic reports and dashboards. You can also add new charts inside the self-service component, add new kind of aggregate functions and customize it using our APIs.
Helical Insight, via simple browser based interface of Canned Reporting module, also allows to create pixel perfect printer friendly document kind of reports also like Invoice, P&L Statement, Balance sheet etc.
Helical Insight, via simple browser based interface of Canned Reporting module, also allows to create pixel perfect printer friendly document kind of reports also like Invoice, P&L Statement, Balance sheet etc.
If you have a product, built on any platform like Dot Net or Java or PHP or Ruby, you can easily embed Helical Insight within it using iFrames or webservices, for quick value add through instant visualization of data.
If you have a product, built on any platform like Dot Net or Java or PHP or Ruby, you can easily embed Helical Insight within it using iFrames or webservices, for quick value add through instant visualization of data.
Being a 100% browser-based BI tool, you can connect with your database and analyse across any location and device. There is no need to download or install heavy memory-consuming developer tools – All you need is a Browser application! We are battle-tested on most of the commonly used browsers.
Being a 100% browser-based BI tool, you can connect with your database and analyse across any location and device. There is no need to download or install heavy memory-consuming developer tools – All you need is a Browser application! We are battle-tested on most of the commonly used browsers.
We have organization level security where the Superadmin can create, delete and modify roles. Dashboards and reports can be added to that organization. This ensures multitenancy.
We have organization level security where the Superadmin can create, delete and modify roles. Dashboards and reports can be added to that organization. This ensures multitenancy.
We have organization level security where the Superadmin can create, delete and modify roles. Dashboards and reports can be added to that organization. This ensures multitenancy.
We have organization level security where the Superadmin can create, delete and modify roles. Dashboards and reports can be added to that organization. This ensures multitenancy.
A first-of-its-kind Open-Source BI framework, Helical Insight is completely API-driven. This allows you to add functionalities, including but not limited to adding a new exporting type, new datasource type, core functionality expansion, new charting in adhoc etc., at any place whenever you wish, using your own in-house developers.
A first-of-its-kind Open-Source BI framework, Helical Insight is completely API-driven. This allows you to add functionalities, including but not limited to adding a new exporting type, new datasource type, core functionality expansion, new charting in adhoc etc., at any place whenever you wish, using your own in-house developers.
It handles huge volumes of data effectively. Caching, Pagination, Load-Balancing and In-Memory not only provides you with amazing experience, but also and does not burden the database server more than required. Further effective use of computing power gives best performance and complex calculations even on the big data even with smaller machines for your personal use. Filtering, Sorting, Cube Analysis, Inter Panel Communication on the dashboards all at lightning speed. Thereby, making best open-source Business Intelligence solution in the market.
It handles huge volumes of data effectively. Caching, Pagination, Load-Balancing and In-Memory not only provides you with amazing experience, but also and does not burden the database server more than required. Further effective use of computing power gives best performance and complex calculations even on the big data even with smaller machines for your personal use. Filtering, Sorting, Cube Analysis, Inter Panel Communication on the dashboards all at lightning speed. Thereby, making best open-source Business Intelligence solution in the market.
With advance NLP algorithm, business users simply ask questions like, “show me sales of last quarter”, “average monthly sales of my products”. Let the application give the power to users without knowledge of query language or underlying data architecture
With advance NLP algorithm, business users simply ask questions like, “show me sales of last quarter”, “average monthly sales of my products”. Let the application give the power to users without knowledge of query language or underlying data architecture
Our application is compatible with almost all databases, be it RDBMS, or columnar database, or even flat files like spreadsheets or csv files. You can even connect to your own custom database via JDBC connection. Further, our database connection can be switched dynamically based on logged in users or its organization or other parameters. So, all your clients can use the same reports and dashboards without worrying about any data security breech.
Our application is compatible with almost all databases, be it RDBMS, or columnar database, or even flat files like spreadsheets or csv files. You can even connect to your own custom database via JDBC connection. Further, our database connection can be switched dynamically based on logged in users or its organization or other parameters. So, all your clients can use the same reports and dashboards without worrying about any data security breech.
Our application can be installed on an in-house server where you have full control of your data and its security. Or on cloud where it is accessible to larger audience without overheads and maintenance of the servers. One solution that works for all.
Our application can be installed on an in-house server where you have full control of your data and its security. Or on cloud where it is accessible to larger audience without overheads and maintenance of the servers. One solution that works for all.
Different companies have different business processes that the existing BI tools do not encompass. Helical Insight permits you to design your own workflows and specify what functional module of BI gets triggered
Different companies have different business processes that the existing BI tools do not encompass. Helical Insight permits you to design your own workflows and specify what functional module of BI gets triggered