Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-663

LDAP referrals does not work - dir-context.referral-mode is always ignored

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Blocker
    • None
    • None
    • None
    • None

    Description

      Elytron dir-context is not able to follow/throw referrals in LDAP search. Value set in Elytron dir-context.referral-mode is ignored by Elytron.

      InitialLdapContext java.naming.referral parameter is internally always set to value ignore. It is caused by ignoring ReferralMode parameter in obtainDirContext of org.wildfly.security.auth.realm.ldap.SimpleDirContextFactoryBuilder$SimpleDirContextFactory [1].

      We request blocker flag since this issue causes that referrals cannot be used for LDAP search with Elytron.

      [1] https://github.com/wildfly-security/wildfly-elytron/blob/cb57f2f0ffcdb1470e3135007603c97679b9434f/src/main/java/org/wildfly/security/auth/realm/ldap/SimpleDirContextFactoryBuilder.java#L222

      Attachments

        Issue Links

          blocks

          Bug - A problem that impairs or prevents the functions of the product. WFLY-7322 LDAP referrals does not work in Elytron ldap-realm

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed
          clones

          Bug - A problem that impairs or prevents the functions of the product. JBEAP-6438 LDAP referrals does not work - dir-context.referral-mode is always ignored

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Verified
          is cloned by

          Bug - A problem that impairs or prevents the functions of the product. WFLY-7320 LDAP referrals does not work - need to set custom filter

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed

          Activity

            People

              jkalina@redhat.com Jan Kalina (Inactive)
              olukas Ondrej Lukas (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: