[jboss-jira] [JBoss JIRA] Commented: (JBAS-2681) Add real support for password-stacking (useFirstPass) in LDAPExtLoginModule
Anil Saldhana (JIRA)
jira-events at lists.jboss.org
Wed Dec 2 06:55:20 EST 2009
[ https://jira.jboss.org/jira/browse/JBAS-2681?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12497701#action_12497701 ]
Anil Saldhana commented on JBAS-2681:
-------------------------------------
Andy, go ahead apply the patch.
https://svn.jboss.org/repos/jbossas/projects/security/security-jboss-sx/trunk/
> Add real support for password-stacking (useFirstPass) in LDAPExtLoginModule
> ---------------------------------------------------------------------------
>
> Key: JBAS-2681
> URL: https://jira.jboss.org/jira/browse/JBAS-2681
> Project: JBoss Application Server
> Issue Type: Feature Request
> Security Level: Public(Everyone can see)
> Components: Security
> Affects Versions: JBossAS-4.0.3 SP1
> Environment: All
> Reporter: Didier Kreutter
> Assignee: Andrew Oliver
> Attachments: LDAPAuth.patch, ldapextpatch
>
>
> It would be nice, we could use the "useFirstPass" option of this login-module, like it can be done with the DatabaseServerLoginModule.
> With the construct of the LDAPExtLoginModule, it is not possible to use the LDAP-Directory to search for Roles without having to validate the Password, if this has been done by an precedent LoginModule (DB or SSO).
> I think the problem is in the fact, that the effective Role-Search is done in the overridden "validatePassword" function... witch will never been called when the "useFirstPass" option is set. Is it Possible to fulfill the roles in the getRoleSets() function?
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list