[
https://issues.apache.org/jira/browse/SYNCOPE-164?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14049660#comment-14049660
]
Francesco Chicchiriccò commented on SYNCOPE-164:
------------------------------------------------
By taking a look at [the actual
code|https://github.com/Tirasa/ConnIdLDAPBundle/blob/master/src/main/java/org/connid/bundles/ldap/LdapConnection.java#L143]
invoked by LDAP connector's {{authenticate()}} it seems that the underlying
password encoding just does not matter: as expected a JNDI bind is performed
with clear password extracted from passed {{GuardedString}} instance.
This means that connector's digest algorithm does not play any role here.
The cipher algorithm defined on Syncope only matters when performing local
authentication; as you can read from
{{SyncopeAuthenticationProvider#authenticate}}, authentication on external
resources is only attempted when local authentication fails.
> Passthrough authentication
> --------------------------
>
> Key: SYNCOPE-164
> URL: https://issues.apache.org/jira/browse/SYNCOPE-164
> Project: Syncope
> Issue Type: New Feature
> Reporter: Francesco Chicchiriccò
> Assignee: Francesco Chicchiriccò
> Fix For: 1.2.0
>
>
> Provide the possibility to authenticate users on external resources.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
