Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-88

IDM 3 doesn't work with OpenDS 2.0

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • PLINK_2.5.0.Final
    • PLINK_2.5.0.Final
    • IDM
    • None

    Description

      To simulate the issue:

      • Setup OpenDS 2.0 on localhost (or other server) - LDAP attributes are took from idm/impl/src/test/resources/config/opends2-local-ldap-config.xml, so it's assuming that OpenDS 2.0 is running on localhost:1389 with adminDN="cn=Directory Manager" and AdminPW="password"
      • Import LDIF file idm/impl/src/test/resources/ldap/opends2-users.ldif via CMD command:
        ldapadd -h localhost -p 1389 -x -D "cn=Directory Manager" -f idm/impl/src/test/resources/ldap/opends2-users.ldif -w password

      (NOTE: I will need to find a way how to import LDIF file programmaticaly. One possibility is to use CMD, but it doesn't look like proper solution and it failed for me due to space in AdminDN. Another possibility is to use ApacheDS library, but I did not find easy way how to import LDIF into existing (not-embedded) LDAP server. In IDM 1.x we used OpenDS embedded library, see method "populateLDIF" in class https://github.com/picketlink/picketlink-idm/blob/1.4/picketlink-idm-ldap/src/test/java/org/picketlink/idm/test/support/ldap/LDAPTestPOJO.java)

      • Run LDAPIdentityStoreTestsuite with option "-Dplidm.xml.configuration=config/opends2-local-ldap-config.xml" which will instruct testsuite to use OpenDS 2.0 instead of default ApacheDS

      Result: All tests are failing with

      Caused by: javax.naming.OperationNotSupportedException: [LDAP: error code 53 - Entry cn=someRole,ou=Roles,o=plidmtest,dc=example,dc=com cannot be added because it includes attribute createTimeStamp which is defined as NO-USER-MODIFICATION in the server schema]; remaining name 'cn=someRole,ou=Roles,o=plidmtest,dc=example,dc=com'
	at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3140)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
	at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2820)
	at com.sun.jndi.ldap.LdapCtx.c_createSubcontext(LdapCtx.java:791)
	at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_createSubcontext(ComponentDirContext.java:319)
	at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:248)
	at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.createSubcontext(PartialCompositeDirContext.java:236)
	at javax.naming.directory.InitialDirContext.createSubcontext(InitialDirContext.java:178)
	at org.picketlink.idm.ldap.internal.LDAPOperationManager.createSubContext(LDAPOperationManager.java:491)

      Attachments

        Activity

          People

            psilva@redhat.com Pedro Igor Craveiro
            mposolda@redhat.com Marek Posolda
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: