Uploaded image for project: 'Application Server 3 4 5 and 6'
  1. Application Server 3 4 5 and 6
  2. JBAS-1682

LDAP support: Roles in root context (empty searchBase) not supported

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • JBossAS-4.0.2 Final
    • JBossAS-4.0.1 SP1
    • Security
    • None

      Domino LDAP requires the roles to be read from the root context (empty search base).

      This fails at the moment because in org.jboss.security.auth.spi.LdapLoginModule, line 28x, there is

      if (rolesCtxDN != null)
      {
      ... process roles ...
      }

      This will not work with an empty rolesCtxDN.

      An entry like the following should do the trick, but actually won't work:

      login-config.xml/application policy:
      <module-option name="rolesCtxDN"></module-option>

            starksm64 Scott Stark (Inactive)
            holger.willenborg_jira Holger Willenborg (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: