Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-11901

x509-credential-mapper in ldap-realm tries to verify Subject DN even if it is not configured

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Verified (View Workflow)
    • Priority: Critical
    • Resolution: Done
    • Affects Version/s: 7.1.0.ER1, 7.1.0.ER2
    • Fix Version/s: 7.1.0.ER3
    • Component/s: Security
    • Labels:
      None

      Description

      ldap-realm tries to verify Subject DN even if it is not configured (in optional subject-dn-from attribute). Attempt to verify Subject DN should not happen in that case.

      It seems it is caused by missing check in [1].

      [1] https://github.com/wildfly/wildfly-core/blob/4e3c18e143d9093401c65745e321cca05e678f14/elytron/src/main/java/org/wildfly/extension/elytron/LdapRealmDefinition.java#L286

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              gaol Lin Gao
              Reporter:
              olukas Ondrej Lukas (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2 days
                  2d
                  Remaining:
                  Remaining Estimate - 2 days
                  2d
                  Logged:
                  Time Spent - Not Specified
                  Not Specified