[jboss-jira] [JBoss JIRA] (SECURITY-941) LdapExtLoginModule does not use empty string for rolesCtxDN search correctly
Peter Skopek (JIRA)
issues at jboss.org
Fri Apr 15 11:24:00 EDT 2016
[ https://issues.jboss.org/browse/SECURITY-941?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13192619#comment-13192619 ]
Peter Skopek commented on SECURITY-941:
---------------------------------------
https://github.com/jbossas/redhat-picketbox/pull/14
> LdapExtLoginModule does not use empty string for rolesCtxDN search correctly
> ----------------------------------------------------------------------------
>
> Key: SECURITY-941
> URL: https://issues.jboss.org/browse/SECURITY-941
> Project: PicketBox
> Issue Type: Bug
> Reporter: Ondrej Lukas
> Assignee: Peter Skopek
> Priority: Critical
> Fix For: 4.9.6.Final
>
>
> Using LdapExtLoginModule rolesCtxDN with empty string causes that no role search is done, i.e. no roles are assigned to user even if LDAP contains this mapping. In correct behavior empty string should be used as base DN of ldap search. It is regression against PicketBox 4.9.3.Final.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list