[
https://issues.apache.org/jira/browse/KNOX-1094?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16241777#comment-16241777
]
Alberto Bortolan commented on KNOX-1094:
Hello [~moresandeep]
I've originally reported this issue to [~pbhag...@hortonworks.com] . The
message was:
{{java.lang.IllegalArgumentException: Hit NamingException:{color:#205081}
simple bind failed: myldapserver.mycompany.com:636{color}
at
org.apache.hadoop.gateway.shirorealm.KnoxLdapRealm.getUserDn(KnoxLdapRealm.java:733)
at
org.apache.shiro.realm.ldap.JndiLdapRealm.getLdapPrincipal(JndiLdapRealm.java:342)
at
org.apache.shiro.realm.ldap.JndiLdapRealm.queryForAuthenticationInfo(JndiLdapRealm.java:371)
at
org.apache.shiro.realm.ldap.JndiLdapRealm.doGetAuthenticationInfo(JndiLdapRealm.java:295)
(...)}}
This was caused by the LDAPS-connection not being trusted, impossible to
figure out in this case, since the NamingException completely hides any
LDAP-exceptions. “Simple bind failed” can be caused by any number of underlying
Exceptions.
> Knox loses inner exception in IllegalArgumentException issues during AD
> authentications
> ---
>
> Key: KNOX-1094
> URL: https://issues.apache.org/jira/browse/KNOX-1094
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
>Affects Versions: 0.12.0
>Reporter: Pravin Bhagade
> Fix For: 0.15.0
>
>
> Knox to use their Active Directory and noted that when
> IllegalArgumentException exceptions are raised from a specific point in the
> code, the inner exception is lost and make it difficult to diagnose the
> issue.
> {code:java}
> The exception is the one at line 733 of
> https://github.com/hortonworks/knox-release/blob/HDP-2.6.2.17-tag/gateway-provider-security-shiro/src/main/java/org/apache/hadoop/gateway/shirorealm/KnoxLdapRealm.java
>
> } catch (NamingException e) {
> throw new IllegalArgumentException("Hit NamingException: " + e.getMessage());
> {code}
> Is it possible to change the code to preserve the inner exception ( set the
> Throwable argument )?
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)