IBM - Using the WPS Group Segment Handler  

Implementing the profile selection handler WPS Group Segment Handler on IBM^® WebSphere^® Portal 6.0.1 or higher

The WPS Group Segment Handler associates the request with the WebSphere Group to which the user belongs, and returns the profile associated with that group.


Note: If the user belongs to more than one segment, the profile selection handler returns the most-derived (least-privileged) profile.


The sample demonstrates how to implement the Portlet Factory's profile selection handler WPS Group Segment Handler on an IBM WebSphere Portal 6.0.1 or higher. The full article contains steps on how the profile set is configured using hierarchical profiles, configuring the WebSphere Portal's Resource Permissions, and running the sample.


Read the full article here: WPS+Group+Segment+Handler+Sample.pdf

Download

Download the sample from here:

wps_group_segment_handler_sample.zip

Configuring WebSphere Portal's Resource Permissions

If you use the WPS Group Segment Handler on WebSphere Portal version 6.0.1 or higher, you will need to give portal users resource permissions to any of those portal groups to which they belong. You can use the Portal Resource Permissions administration portlet to set the Group resource permission. You can do this by either adding an individual user or group to the group "User" resource permission role membership.


You must be on WebSphere Portal 6.0 and above to use the WPS Group Segment Handler in JSR-168 portlets.

Use the Portal's Resource Permissions administration portlet to set the group's resource permissions. You do this by either adding an individual user or group to the group's "User" resource permission role membership.

1. From the Administration tool, expand Access and select "Resource Permissions"

2. Select the Resource Type of "User Groups"

3. Select "Search by: All available" and press the "Search" button. You should then see a list of all the groups.

4. Find the group(s) that you are using to control profile selection and press the "Assign Access" button next to the group name in the list.

5. Click on the "Edit Role" button for the "User" role. From here you will add the individual user or groups to the Resource Permission of this Groups "User" Role.

In this example I added "All Authenticated Portal Users", but you can add whatever user/group is appropriate for your security requirements. You can achieve the proper right by assigning the group itself as a role of the User permissions.

Note: This does not add the user as a member of the group; it just adds it as a resource of the group. This allows the user/group to read information related to the group.

6. Repeat for the remaining groups.