[jira] [Commented] (KARAF-4989) Make LDAPLoginModule role.mapping option understand also fqdn

Andrea Cosentino (JIRA) Fri, 17 Feb 2017 05:57:53 -0800

    [ 
https://issues.apache.org/jira/browse/KARAF-4989?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15871886#comment-15871886
 ]


Andrea Cosentino commented on KARAF-4989:
-----------------------------------------

[~j...@nanthrax.net], can I merge this? Or do you want to merge yourself?

> Make LDAPLoginModule role.mapping option understand also fqdn
> -------------------------------------------------------------
>
>                 Key: KARAF-4989
>                 URL: https://issues.apache.org/jira/browse/KARAF-4989
>             Project: Karaf
>          Issue Type: Improvement
>          Components: karaf-security
>            Reporter: Andrea Tarocchi
>            Assignee: Jean-Baptiste Onofré
>            Priority: Minor
>
> With the current way of parsing {{*role.mapping*}} option in 
> {{*LDAPLoginModule*}} is not possible to specify a fqdn; a possible use case 
> is to achieve a mapping like this:
> {code:xml}
>     <jaas:module 
> className="org.apache.karaf.jaas.modules.ldap.LDAPLoginModule">
>       [...]
>       role.base.dn=ou=groups,dc=example,dc=org
>       role.name.attribute=someAttributeResultingInFqdn
>       role.filter=(member=%fqdn)
>       role.search.subtree=true
>       
> role.mapping=cn=admin,ou=groups,dc=example,dc=org=karafRole;cn=admin,ou=otherGroups,dc=example,dc=org=otherKarafRole
> </jaas:module>
> {code}
> i.e. mapping based on a fqdn string instead of a cn.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

[jira] [Commented] (KARAF-4989) Make LDAPLoginModule role.mapping option understand also fqdn

Reply via email to