Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Fixed
-
None
-
None
-
None
-
None
Description
CreateKdcServer annotation doesn't contain searchBaseDn, so the KdcServer instance created by calling
org.apache.directory.server.factory.ServerAnnotationProcessor.getKdcServer(DirectoryService, int) can't be used for domain other than "example.com".
The KdcServer created from @CreateKdcServer configuration searches users always in "ou=users,dc=example,dc=com" (see to KdcServer constructor).
For a LDAP server it's possible to change the search domain after the retrieving an instance from ServerAnnotationProcessor, but it doesn't work for the KdcServer, because the original value is already stored in a DirectoryPrincipalStore instance created by KdcServer.start() method.