[jboss-jira] [JBoss JIRA] (ELY-663) LDAP referrals does not work - dir-context.referral-mode is always ignored

[Jan Kalina (JIRA)]

    [ https://issues.jboss.org/browse/ELY-663?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13308155#comment-13308155 ] 

Jan Kalina commented on ELY-663:
--------------------------------

How is THROW referral mode handled in picketbox:
https://github.com/jbossas/redhat-picketbox/blob/master/security-jboss-sx/jbosssx/src/main/java/org/jboss/security/auth/spi/LdapExtLoginModule.java#L533

> LDAP referrals does not work - dir-context.referral-mode is always ignored
> --------------------------------------------------------------------------
>
>                 Key: ELY-663
>                 URL: https://issues.jboss.org/browse/ELY-663
>             Project: WildFly Elytron
>          Issue Type: Bug
>            Reporter: Ondrej Lukas
>            Assignee: Jan Kalina
>            Priority: Blocker
>
> Elytron dir-context is not able to follow/throw referrals in LDAP search. Value set in Elytron {{dir-context.referral-mode}} is ignored by Elytron. 
> InitialLdapContext {{java.naming.referral}} parameter is internally always set to value {{ignore}}. It is caused by ignoring {{ReferralMode}} parameter in {{obtainDirContext}} of {{org.wildfly.security.auth.realm.ldap.SimpleDirContextFactoryBuilder$SimpleDirContextFactory}} [1].
> We request blocker flag since this issue causes that referrals cannot be used for LDAP search with Elytron.
> [1] https://github.com/wildfly-security/wildfly-elytron/blob/cb57f2f0ffcdb1470e3135007603c97679b9434f/src/main/java/org/wildfly/security/auth/realm/ldap/SimpleDirContextFactoryBuilder.java#L222



--
This message was sent by Atlassian JIRA
(v6.4.11#64026)