[jboss-jira] [JBoss JIRA] (ELY-672) Getting identity by DN in Elytron ldap-realm should be case insensitive
Jan Kalina (JIRA)
issues at jboss.org
Tue Oct 18 05:36:00 EDT 2016
[ https://issues.jboss.org/browse/ELY-672?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jan Kalina moved WFLY-7305 to ELY-672:
--------------------------------------
Project: WildFly Elytron (was: WildFly)
Key: ELY-672 (was: WFLY-7305)
Component/s: Realms
(was: Security)
Affects Version/s: (was: 11.0.0.Alpha1)
> Getting identity by DN in Elytron ldap-realm should be case insensitive
> -----------------------------------------------------------------------
>
> Key: ELY-672
> URL: https://issues.jboss.org/browse/ELY-672
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Realms
> Reporter: Ondrej Lukas
> Assignee: Jan Kalina
>
> Elytron ldap-realm allows to use DN as username (e.g. full {{uid=jduke,ou=People,dc=jboss,dc=org}} can be used instead of {{jduke}}). However implementation requires that used DN must start with rdn-identifier in the same case sensitivity as is used in server configuration. Otherwise authentication fails. It means when server configuration uses {{rdn-identifier=uid}} then only {{uid=jduke,...}} can be correctly used, {{UID=jduke,...}} will fail.
> LDAP specification does not talk about case sensitivity of attributes, but most of LDAP servers work with attributes as case insensitive.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list