Jetspeed 2
  1. Jetspeed 2
  2. JS2-562

LDAP attribute name comparison should be case-insensitive

    Details

    • Type: Bug Bug
    • Status: Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 2.0-FINAL
    • Fix Version/s: 2.1-dev, 2.1
    • Component/s: Security
    • Labels:
      None
    • Environment:
      Windows 2000 SP4, JDK1.5, Apache-DS

      Description

      When trying to authenticate against an LDAP server (in this case, Apache-DS from a seperate installation), the authentication failed because the userPassword attribute was not found.

      The attribute exists within LDAP, but the case is different (userpassword). While the schema suggests the specified ID (userPassword) is correct, I believe LDAP is supposedly case-insensitive, and so ideally the attribute comparison should also be.

      The change required is to the getAttribute method within org.apache.jetspeed.security.spi.impl.ldap.LdapUserCredentialDaoImpl, replacing the equals() method with equalsIgnoreCase().

        Activity

        Michael Kearns created issue -
        David Sean Taylor made changes -
        Field Original Value New Value
        Assignee David Sean Taylor [ taylor ]
        David Sean Taylor made changes -
        Status Open [ 1 ] In Progress [ 3 ]
        Hide
        David Sean Taylor added a comment -

        Michael, applied your patch, thanks.

        Show
        David Sean Taylor added a comment - Michael, applied your patch, thanks.
        David Sean Taylor made changes -
        Fix Version/s 2.1-dev [ 12310686 ]
        Resolution Fixed [ 1 ]
        Status In Progress [ 3 ] Resolved [ 5 ]
        Hide
        Ate Douma added a comment -

        Closed again now properly recorded against Fix Version 2.1 as well

        Show
        Ate Douma added a comment - Closed again now properly recorded against Fix Version 2.1 as well
        Ate Douma made changes -
        Fix Version/s 2.1 [ 12310617 ]
        Ate Douma made changes -
        Status Resolved [ 5 ] Closed [ 6 ]

          People

          • Assignee:
            David Sean Taylor
            Reporter:
            Michael Kearns
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development