Specifying Who Can Perform User Registration

By default, anyone who can access the Service Registry URL is permitted to perform user registration by using the User Registration Wizard. Any registered user can publish content to the Registry.

By defining the property omar.security.selfRegistration.acl in the file omar.properties, you can restrict this capability so that only specified people can perform user registration.

After you complete this task, the only people who can register by using the Wizard will be those who have the first and last names specified by the property definition. Other people who try to register will see an error message when they click the Next button after filling out the User Authentication Details form in Step 3 of the User Registration Wizard. The error message says User registration failed. After the message is a line that reports a UserNotFoundException.

If the omar.security.selfRegistration.acl property is not present in omar.properties, or if it is defined as the empty string, any registered user can publish content to the registry.

To Restrict User Registration

1. Change to the directory RegistryDomain-base/domains/registry/applications/j2ee-modules/soar/WEB-INF/classes.

2. Open the file omar.properties in a text editor.

3. Add a definition of the following property:

   omar.security.selfRegistration.acl

   You can place this property definition anywhere in the file. A logical place for the property definition is in an area where other properties with the prefix omar.security are defined.

   Define the property value as a comma-separated list of first and last names of people who are authorized to perform user registration, as in the following example:

   omar.security.selfRegistration.acl=Vijay Patel, Jane Doe,

4. Save and close the omar.properties file.

5. Follow the instructions in To Stop and Restart the Application Server Domain for the Registry.