Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-10173

AdvancedLdapLoginModule behavior should be aligned with LdapExtLoginModule

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Do
    • Icon: Major Major
    • None
    • EAP 6.0.1 ER 2
    • Security
    • None
    • NEW

      AdvancedLdapLoginModule is based on LdapExtLoginModule, but behavior differs for some configurations.
      Testcase
      https://github.com/kwart/jboss-as/blob/JBQA-5129-jboss-negotiation-master/testsuite/integration/basic/src/test/java/org/jboss/as/test/integration/security/loginmodules/negotiation/AdvancedLdapLoginModuleTestCase.java

      Failing test methods:
      1) test2 - role mapping object (roleAttributeIsDN==true) is not used as a role object itself. I.e. jduke role is not assigned to jduke user by AdvancedLdapLoginModule. The LdapExtLoginModule includes the jduke role - the change was based on JBAS-3312
      2) test4 - recursion in AdvancedLdapLoginModule is enabled only if the roleAttributeIsDN module option is true. This is not required in LdapExtLogiModule.

            darran.lofthouse@redhat.com Darran Lofthouse
            josef.cacek@gmail.com Josef Cacek (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: