[jboss-jira] [JBoss JIRA] (ELY-672) Getting identity by DN in Elytron ldap-realm should be case insensitive
Jan Kalina (JIRA)
issues at jboss.org
Thu Jan 19 10:57:00 EST 2017
[ https://issues.jboss.org/browse/ELY-672?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Jan Kalina updated ELY-672:
---------------------------
Fix Version/s: 1.1.0.Beta12
> Getting identity by DN in Elytron ldap-realm should be case insensitive
> -----------------------------------------------------------------------
>
> Key: ELY-672
> URL: https://issues.jboss.org/browse/ELY-672
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Realms
> Reporter: Ondrej Lukas
> Assignee: Jan Kalina
> Fix For: 1.1.0.Beta12
>
>
> Elytron ldap-realm allows to use DN as username (e.g. full {{uid=jduke,ou=People,dc=jboss,dc=org}} can be used instead of {{jduke}}). However implementation requires that used DN must start with rdn-identifier in the same case sensitivity as is used in server configuration. Otherwise authentication fails. It means when server configuration uses {{rdn-identifier=uid}} then only {{uid=jduke,...}} can be correctly used, {{UID=jduke,...}} will fail.
> LDAP specification does not talk about case sensitivity of attributes, but most of LDAP servers work with attributes as case insensitive.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list