[jboss-jira] [JBoss JIRA] (WFCORE-3035) x509-credential-mapper in ldap-realm tries to verify Subject DN even if it is not configured
Ondrej Lukas (JIRA)
issues at jboss.org
Fri Jun 30 09:08:01 EDT 2017
Ondrej Lukas created WFCORE-3035:
------------------------------------
Summary: x509-credential-mapper in ldap-realm tries to verify Subject DN even if it is not configured
Key: WFCORE-3035
URL: https://issues.jboss.org/browse/WFCORE-3035
Project: WildFly Core
Issue Type: Bug
Components: Security
Reporter: Ondrej Lukas
Assignee: Darran Lofthouse
Priority: Critical
{{ldap-realm}} tries to verify Subject DN even if it is not configured (in optional {{subject-dn-from}} attribute). Attempt to verify Subject DN should not happen in that case.
It seems it is caused by missing check in [1].
[1] https://github.com/wildfly/wildfly-core/blob/4e3c18e143d9093401c65745e321cca05e678f14/elytron/src/main/java/org/wildfly/extension/elytron/LdapRealmDefinition.java#L286
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list