LdapExtAdLoginModule proposal for inclusion ------------------------------------------- Key: SECURITY-711 URL: https://issues.jboss.org/browse/SECURITY-711 Project: PicketBox Issue Type: Patch Security Level: Public(Everyone can see) Components: PicketBox, Security SPI Affects Versions: PicketBox_4_0_14.Final Environment: jboss7, active directory authentication Reporter: Péter Radics Assignee: Anil Saldhana Priority: Minor Labels: LdapExtLoginModule, active-directory, security Attachments: picketbox-r359-LdapExtLoginModule.patch, picketbox-r362-LdapExtAdLoginModule.patch, picketbox-r363-LdapExtAdLoginModule-with-history.patch Original Estimate: 1 week Remaining Estimate: 1 week Please consider including the attached LdapExtAdLoginModule into the official release. This login module is based on r362 of LdapExtLoginModule, but it's better suited for deeply nested Active Directory domains: it only uses one search for the userDN then it's resolving the roles recursively by querying attributes on DNs only. (as a side-effect, it doesn't trigger AS7-5737)