Issue Details (XML | Word | Printable)

Key: DIRSERVER-278
Type: New Feature New Feature
Status: Closed Closed
Resolution: Fixed
Priority: Major Major
Assignee: Enrique Rodriguez
Reporter: Enrique Rodriguez
Votes: 0
Watchers: 0
Operations

If you were logged in you would be able to see more operations.
Directory ApacheDS

Add SASL support to LDAP

Created: 27/Jul/05 05:09 AM   Updated: 24/May/07 04:19 AM
Component/s: None
Affects Version/s: 1.0
Fix Version/s: 1.5.1

Time Tracking:
Not Specified

Resolution Date: 24/May/07 04:19 AM


 Description  « Hide
The Java SASL API Programming and Deployment Guide
http://java.sun.com/j2se/1.5.0/docs/guide/security/sasl/sasl-refguide.html

Java interface javax.security.sasl.SaslServer
http://java.sun.com/j2se/1.5.0/docs/api/javax/security/sasl/SaslServer.html

RFC 2222 - Simple Authentication and Security Layer (SASL)
http://www.faqs.org/rfcs/rfc2222.html

RFC 2829 - Authentication Methods for LDAP
http://www.faqs.org/rfcs/rfc2829.html

 All   Comments   Work Log   Change History   Subversion Commits      Sort Order: Ascending order - Click to sort in descending order
[ Permlink | « Hide ]
Alex Karasulu added a comment - 04/Oct/05 12:24 AM
next release

[ Permlink | « Hide ]
Alex Karasulu added a comment - 07/Jan/06 07:34 PM
Requires JDK 1.5 to work.

[ Permlink | « Hide ]
Alex Karasulu added a comment - 29/Aug/06 12:37 AM
Trustin said he'd handle this before 1.0.

[ Permlink | « Hide ]
Alex Karasulu added a comment - 16/Sep/06 05:56 PM
Moving this over to a 1.1 release.

[ Permlink | « Hide ]
Alex Karasulu added a comment - 23/Feb/07 07:57 PM
This does not look like it's going to be implemented any time soon. Let's put this off one more release. If it does not get implemented by then we can mark it as something to get to at some (indefinite) release.

[ Permlink | « Hide ]
Enrique Rodriguez added a comment - 25/Feb/07 04:52 AM
After you deferred this issue, I took a look and was able to get SASL/GSSAPI/Kerberos V5 LDAP Binds working. I still have to modify response messages to carry encrypted payload but based on my experience today this doesn't look like a problem.

If no one minds, I'd like to assign this issue to me and I'd like to reopen DIRSERVER-277 (Add SASL GSSAPI (Kerberos V5) mechanism support) and assign that one to me, as well. Getting it to work was straight-forward but we have several issues to work out w.r.t. the best way to configure this and how we tightly integrate Kerberos as a core authentication mechanism. Also, we need to update the nexus to return supportedSASLMechanisms. Anyway, this still won't be ready for 1.5 but something working can be in trunk shortly.

[ Permlink | « Hide ]
Enrique Rodriguez added a comment - 27/Feb/07 10:48 PM
We are now on JDK 1.5. Also, this is a key enterprise requirement.

[ Permlink | « Hide ]
Emmanuel Lecharny added a comment - 23/Mar/07 01:16 PM
Just fixed a version in which we will inject this feature

[ Permlink | « Hide ]
Enrique Rodriguez added a comment - 24/May/07 04:19 AM
Added SASL support (CRAM-MD5, DIGEST-MD5, and GSSAPI) to ApacheDS on revision r541149.

URL: http://svn.apache.org/viewvc?view=rev&rev=541149
Powered by a free Atlassian JIRA open source license for Apache Software Foundation. Try JIRA - bug tracking software for your team.
Atlassian JIRA the Professional Issue Tracker. (Enterprise Edition, Version: 3.13.2-#335) - Bug/feature request - Atlassian news - Contact Administrators