Bug 1014911
Summary: | [GSS] (6.3.0) LDAP: InitialDirContext.search() method doesn't accecpt url included name parameter | ||
---|---|---|---|
Product: | [JBoss] JBoss Enterprise Application Platform 6 | Reporter: | Lyle Wang <lywang> |
Component: | Security | Assignee: | emartins |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Josef Cacek <jcacek> |
Severity: | unspecified | Docs Contact: | Russell Dickenson <rdickens> |
Priority: | unspecified | ||
Version: | 6.1.0 | CC: | bmaxwell, brian.stansberry, cdewolf, darran.lofthouse, dehort, emartins, hokuda, jawilson, kkhan, lywang, myarboro, olukas |
Target Milestone: | DR0 | ||
Target Release: | EAP 6.3.0 | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-06-28 15:37:38 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | |||
Bug Blocks: | 1050184 |
Description
Lyle Wang
2013-10-03 06:10:31 UTC
I don't mind taking a look, working on LDAP at the moment anyway and we have had other similar issues I believe in this area. Just one question - where is the affected code being executed? Is it deployed within a web app or somewhere else? (In reply to Darran Lofthouse from comment #1) > I don't mind taking a look, working on LDAP at the moment anyway and we have > had other similar issues I believe in this area. > > Just one question - where is the affected code being executed? Is it > deployed within a web app or somewhere else? Hi, Darran: Thanks for looking into this. The customer is using a 3rd party software to authenticate against LDAP. This third party app is a wrapper for the Business Objects SDK (SAP). The call oringally starts from a REST webservice: Snippet how they call 3rd party software: ======================================================== @GET @Path("loginTokenFake") @Produces(MediaType.TEXT_PLAIN) public String getLoginTokenFake() { IEnterpriseSession eSession = null; ReportServiceImpl reportService = new ReportServiceImpl(); try { // HAVING problem here eSession = reportService.logon("admin", "xxxxxx"); // ...... // ...... return "BO Login Successful"; } catch (SDKException sdkEx){ LOGGER.error("Error logging into BO:",sdkEx); } return "BO Login Failed"; } ======================================================== Snippet in the 3rd party software, which calls BusinessObject method ======================================================== public IEnterpriseSession logon(String username, String password) throws SDKException{ ISessionMgr mySessionMgr; try { mySessionMgr = CrystalEnterprise.getSessionMgr(); return mySessionMgr.logon(username, password, getBOServer(), getBOAuthentication()); } catch (SDKException sdkEx){ throw sdkEx; } } ======================================================== The souce code I pasted in the case is the reproducer being used in customer's debug / testing. Request for inclusion to EAP 6.3.0. Darran Lofthouse <darran.lofthouse> made a comment on jira WFLY-2319 Adding the test project used to reproduce this. Have you tried to use String base = "dc=sample,dc=com"; ? ldap:// names are to be used with no environment properties map, and the handling of such jndi names is mostly what we are fixing here, so proper names for LdapCtxFactory should work at the moment. Here is an example of proper usage on Oracle JNDI LDAP docs: http://docs.oracle.com/javase/jndi/tutorial/basics/directory/src/SearchRetAll.java Brad Maxwell <bmaxwell> updated the status of jira JBEAP-32 to Closed Josef Cacek <jcacek> updated the status of jira WFLY-2319 to Reopened Verified on EAP 6.3.0.DR1. |