Uploaded image for project: 'Application Server 3 4 5 and 6'
  1. Application Server 3 4 5 and 6
  2. JBAS-1525

Generalize the LdapLoginModule user and roles search mechanism

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Done
    • Icon: Major Major
    • JBossAS-4.0.3 Final
    • JBossPOJOServer-1.0 Final, JBossAS-3.2.7 Final, JBossAS-4.0.1 Final, JBossAS-4.0.1 SP1, JBossAS-5.0.0.Beta1
    • Security
    • None

      There are 3 areas where the LdapLoginModule can be generalized to improve its utility across ldap schemas:

      1. Allow the context for the user to be a search criteria that can be a function of the username rather than a specific context DN.

      2. Allow the context for the roles to be a search criteria that can be a function of the username rather than a specific context DN.

      3. Allow for a mapping from the ldap group to a role name so that the ldap server does not need to know application specific roles.

        1. AdvancedLdapLoginModule.java
          43 kB
        2. LdapExtLoginModule.java
          12 kB
        3. LdapLoginModule.java
          22 kB

              starksm64 Scott Stark (Inactive)
              starksm64 Scott Stark (Inactive)
              Votes:
              5 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Estimated:
                  Original Estimate - 1 week
                  1w
                  Remaining:
                  Remaining Estimate - 1 week
                  1w
                  Logged:
                  Time Spent - Not Specified
                  Not Specified