Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Done
Priority: Major
Fix Version/s: PicketBox_5_0_0.Beta1
Affects Version/s: PicketBox_5_0_0.Alpha1
Component/s: JBossSX
Labels:
None

Use LdapExtLoginModule in j2se with condifg:

<?xml version='1.0'?> 
 
<policy xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
         xsi:schemaLocation="urn:jboss:security-config:5.0"
         xmlns="urn:jboss:security-config:5.0"
         xmlns:jbxb="urn:jboss:security-config:5.0">
         
    <application-policy name = "Sample-Ldap"> 
       <authentication>
          <login-module code = "org.jboss.security.auth.spi.LdapExtLoginModule" flag = "required">  
              <module-option name="java.naming.factory.initial">com.sun.jndi.ldap.LdapCtxFactory</module-option>
              <module-option name="java.naming.provider.url">ldap://10.66.218.46:389</module-option>
              <module-option name="java.naming.security.authentication">simple</module-option>
              <module-option name="bindDN">cn=Manager,dc=example,dc=com</module-option>
              <module-option name="bindCredential">redhat</module-option>
              <module-option name="baseCtxDN">ou=Customers,dc=example,dc=com</module-option>
              <module-option name="baseFilter">(uid={0})</module-option>
              <module-option name="rolesCtxDN">ou=Roles,dc=example,dc=com</module-option>
              <module-option name="roleFilter">(uniqueMember={1})</module-option>
              <module-option name="roleAttributeID">cn</module-option>
          </login-module> 
       </authentication> 
    </application-policy>  
     
</policy>

authentication parse section code [1] line 123:

AuthenticationInfo authInfo = new AuthenticationInfo();

which this cause null set as AuthenticationInfo name, then cause 'jboss.security.security_domain=null' as options be passed to LdapExtLoginModule, this null value finally cause NPE in LdapExtLoginModule line around 840

Entry entry = (Entry) iter.next();
env.put(entry.getKey(), entry.getValue());

[1] https://github.com/picketbox/picketbox/blob/master/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/config/parser/ApplicationPolicyParser.java
[2] https://github.com/picketbox/picketbox/blob/master/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

picketbox-j2se.zip
878 kB
2015/09/18 6:09 AM

is cloned by

JBEAP-10003 Fix potential NPE in ApplicationPolicyParser

Closed

Assignee:: Kylin Soong (Inactive)

Reporter:: Kylin Soong (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2015/09/18 5:57 AM

Updated:: 2017/03/29 5:25 PM

Resolved:: 2017/02/27 3:10 PM

Details

Description

Attachments

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates