In previous versions of JBoss EAP 6, authentications requests would fail if the requesting UID contained a 'slash' (/) character. This was caused by the AdvancedLdap login module not handling quotes correctly. In this version of the product the login module has been modified to remove quotes on the returned user DN before attempting to bind.
Description of problem:
AdvancedLdap login module does not handle a user that has a slash character in the uid.
For example, JBoss will fail to authenticate the following user correctly:
cn: Weird User
PR for upstream:
Darran Lofthouse <firstname.lastname@example.org> updated the status of jira SECURITY-795 to Resolved
This was done for DR1 as part of https://github.com/jbossas/jboss-eap/commit/d733eaa9dcb5c3173a9613a10578abb9b90782a1
Setting to ON_QA, see my comments ^^
Verified on EAP 6.3.0.DR6.
Added release note text and marked for inclusion in the documentation.