Uploaded image for project: 'Karaf'
  1. Karaf
  2. KARAF-4989

Make LDAPLoginModule role.mapping option understand also fqdn

          Details

          • Type: Improvement
          • Status: Resolved
          • Priority: Minor
          • Resolution: Fixed
          • Affects Version/s: None
          • Fix Version/s: 4.0.9, 4.1.1
          • Component/s: karaf
          • Labels:
            None

            Description

            With the current way of parsing role.mapping option in LDAPLoginModule is not possible to specify a fqdn; a possible use case is to achieve a mapping like this:

                <jaas:module className="org.apache.karaf.jaas.modules.ldap.LDAPLoginModule">
      [...]
      role.base.dn=ou=groups,dc=example,dc=org
      role.name.attribute=someAttributeResultingInFqdn
      role.filter=(member=%fqdn)
      role.search.subtree=true
      role.mapping=cn=admin,ou=groups,dc=example,dc=org=karafRole;cn=admin,ou=otherGroups,dc=example,dc=org=otherKarafRole
</jaas:module>

            i.e. mapping based on a fqdn string instead of a cn.

              Attachments

                Issue Links

                links to

                Web Link GitHub Pull Request #283

                  Activity

                    People

                    • Assignee:
                      jbonofre Jean-Baptiste Onofré
                      Reporter:
                      valdar Andrea Tarocchi
                    • Votes:
                      0 Vote for this issue
                      Watchers:
                      5 Start watching this issue

                      Dates

                      • Created:
                        Updated:
                        Resolved: