Uploaded image for project: 'Application Server 3 4 5 and 6'
  1. Application Server 3 4 5 and 6
  2. JBAS-1525

Generalize the LdapLoginModule user and roles search mechanism

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Done
    • Icon: Major Major
    • JBossAS-4.0.3 Final
    • JBossPOJOServer-1.0 Final, JBossAS-3.2.7 Final, JBossAS-4.0.1 Final, JBossAS-4.0.1 SP1, JBossAS-5.0.0.Beta1
    • Security
    • None

      There are 3 areas where the LdapLoginModule can be generalized to improve its utility across ldap schemas:

      1. Allow the context for the user to be a search criteria that can be a function of the username rather than a specific context DN.

      2. Allow the context for the roles to be a search criteria that can be a function of the username rather than a specific context DN.

      3. Allow for a mapping from the ldap group to a role name so that the ldap server does not need to know application specific roles.

        1. LdapLoginModule.java
          22 kB
          Scott Stark
        2. LdapExtLoginModule.java
          12 kB
          Scott Stark
        3. AdvancedLdapLoginModule.java
          43 kB
          mredeker

            starksm64 Scott Stark (Inactive)
            starksm64 Scott Stark (Inactive)
            Votes:
            5 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved:

                Estimated:
                Original Estimate - 1 week
                1w
                Remaining:
                Remaining Estimate - 1 week
                1w
                Logged:
                Time Spent - Not Specified
                Not Specified