[jboss-jira] [JBoss JIRA] (WFCORE-3035) x509-credential-mapper in ldap-realm tries to verify Subject DN even if it is not configured
Ondrej Lukas (JIRA)
issues at jboss.org
Fri Jun 30 09:09:00 EDT 2017
[ https://issues.jboss.org/browse/WFCORE-3035?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ondrej Lukas updated WFCORE-3035:
---------------------------------
Affects Version/s: 3.0.0.Beta26
> x509-credential-mapper in ldap-realm tries to verify Subject DN even if it is not configured
> --------------------------------------------------------------------------------------------
>
> Key: WFCORE-3035
> URL: https://issues.jboss.org/browse/WFCORE-3035
> Project: WildFly Core
> Issue Type: Bug
> Components: Security
> Affects Versions: 3.0.0.Beta26
> Reporter: Ondrej Lukas
> Assignee: Darran Lofthouse
> Priority: Critical
>
> {{ldap-realm}} tries to verify Subject DN even if it is not configured (in optional {{subject-dn-from}} attribute). Attempt to verify Subject DN should not happen in that case.
> It seems it is caused by missing check in [1].
> [1] https://github.com/wildfly/wildfly-core/blob/4e3c18e143d9093401c65745e321cca05e678f14/elytron/src/main/java/org/wildfly/extension/elytron/LdapRealmDefinition.java#L286
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list