Archive for 'October 2010'

Posted by Greg Klebus OCT 31, 2010

Posted in documentation and ignite Comment 1



Customers Helping us Improve LDAP Authentication on docs.day.com

During the Q&A session with Roy Fielding and product management at Ignite Chicago, nicely written-up by CMS Wire's Irina Guseva, I have received a couple of questions related to user/group/permission management in CQ5/CRX instances configured for LDAP authentication. While all the requested functionality is in the product, and the respective configuration and UI options are described in the LDAP documentation, I realized that we were missing a more generic overview of what the LDAP integration shipped with our products can actually do.

I asked our documentation team to have a look at this, and they quickly provided an extended introduction and overview of LDAP integration. Please have a look at LDAP Authentication on docs.day.com, and leave comments there if you are still missing some information.

Some of the questions hopefully answered by the new introduction include:


• Q: (How) can I synchronize users/groups sourced from LDAP / Active directory with my CQ5 / CRX instance? A: Users and their groups (including configurable filtering and metadata matching) are automatically synchronized to your repository upon user's login. Additionally, you have the ability to manually synchronize user profiles (without forcing users to authenticate).
• Q: How can I assign CMS permissions to the users coming from LDAP? A: We usually recommend assigning LDAP groups to CMS-managed groups (in CQ5), and then managing permissions for the CQ5 groups. LDAP groups usually reflect organizational structure, whereas CQ5 groups usually reflect CMS usage structure.
• Q: Is it possible to do group matching from an AD group to the same group in CQ? A: As explained above, LDAP-sourced groups in CQ5 usually reflect the orgchart, and the CQ5-managed groups (like author, contributor, etc) reflect the CMS usage. You can have LDAP-sourced users belong to CQ5 CMS groups by assigning their LDAP groups to be members of the CQ5 groups.
• Q: How can I assign permissions - the way you describe above - without forcing my users to log in to the system (what I call the "bootstraping problem"). A: use a few LDAP user names to manually synchronize their profiles. This will pull the necessary LDAP groups to CQ5, and will allow for assigning them to respective CQ5 "CMS" groups, which will give the LDAP users their CMS-side rights.

Thanks to Hal Danziger, (@halwebguy) CTO at New York Media  for asking the questions. I also received a similar question from someone from University of Cincinnati, but could not find the person's name afterwards, sorry.


Posted by Kas Thomas OCT 27, 2010

Posted in communique, conferences, day and screencast Comment 1



CQ5 takes center stage at AdobeMAX



What do you get when you combine Martha Stewart, Day CTO David Nuescheler, Google TV Senior Product Manager Rishi Chandra, Research in Motion CEO Mike Lazaridis, and an array of some of the most powerful handheld devices not yet released to the public, all on one stage? You get one of the most amazing high-tech keynote presentations ever given in front of a live audience, which may be an understatement for the Monday keynote given by Adobe CTO Kevin Lynch at the Adobe MAX 2010 show in Los Angeles.

Lynch wowed an audience of thousands with a succession of jawdropping demos and impromptu interviews with some of today's biggest players in the Web content world. The riveting presentation lasted an astonishing 2 hours and 8 minutes. You can watch the whole thing, or individual segments of it, here.

Day CQ 5.4 was highlighted in a six-and-a-half-minute long demo with David Nuescheler at center stage, showing the AdobeMAX audience how easy it is to customize content for a variety of delivery media using CQ 5. You can watch David's segment here.

Way to go, David! And: Way to go, Adobe!

Posted by Michael Marth OCT 20, 2010

Posted in cq gems Comments 5



[CQ5 Gems] Localized URLs

CQ5 makes it easy to manage web sites in multiple languages. A common setup is that you create the content trees for different languages in parallel to each other (such that it is easy to evolve the trees independently), but have the paths in the content repository to be identical for pages that are translations of each other. For example you might have pages at paths like

/content/mysite/en/mypath1/mypage (English page)
/content/mysite/de/mypath1/mypage (corresponding German page)

That setup enables you to easily create translation workflows or language switches in the HTML output that are aware of the available translations of a page.

One apparent drawback of this approach is that the publicly visible URLs of the said two pages would be:

http://mydomain.com/en/mypath1/mypage.html and
http://mydomain.com/de/mypath1/mypage.html

The latter - being a German page - is often not desirable. Instead one would want a localized URL like

http://mydomain.com/de/meinpfad1/meineseite.html

for either SEO reasons or simply as a convenience for site visitors. This is where the page property "alias" comes in. Set it in the page property dialog with a localized name for each page and you'll have each page available under the localized URL.




Posted by Kas Thomas OCT 19, 2010

Posted in beer, conferences, fun and ignite Add comment



Day Ignite Chicago: an Event to Remember

If you weren't in Chicago last week, suffice it to say you missed a truly unique experience (but fear not, Berlin is coming up soon!): The Day Ignite conference brought together well over 300 Day customers, partners, and staff, for one of the most educational and entertaining confabs of its kind. Some 320 new iPads were given away to attendees, who used them to monitor conference goings-on, connect with each other, and (not coincidentally) Tweet like crazy during the half dozen keynotes and 24 breakout sessions that occurred over a two-day event that culminated in a rousing musical event Thursday night at the House of Blues.

Presentations from the conference are already available via iPad to those who attended; the same presentations are available online now at Slideshare.

Meanwhile, we'd like to thank all who took time to participate, including (especially) our sponsors: SapientNitro, Acquity Group, Nolte & Lauth, Valtech, Crown Partners, DemandBase, Endeca, EPAM Systems, Headstand Media, Macquarium, Translations.com, CityTech Inc., Earthbound Media Group, LBi, Siteworx, and Virtusa. We look forward to seeing you all again next year in San Francisco. And if you haven't signed up for Day Ignite Berlin, there's still time to sign up if you go to http://www.day.com/ignite/berlin.html now!