https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #16 from Mark Thomas ---
OK. That looks like a regression. You'll need to report that to Oracle. I'd
expect the bug to be accepted fairly quickly if there is a regression but let
us know on the dev list if not.
--
You are receivin
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #15 from marian.romasc...@nuance.com ---
Yes it seems to work. Just tested it wit JDK 8u162 and without the JNDIREalm
patch. The only hic of the fix, whatever that is,is the side effect that might
break other applications running on
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
Mark Thomas changed:
What|Removed |Added
Resolution|--- |FIXED
Status|NEW
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #13 from marian.romasc...@nuance.com ---
Will reproduce on our side and send traces and logs
--
You are receiving this mail because:
You are the assignee for the bug.
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #12 from Mark Thomas ---
Having to remove the domain components when using a SRV record appears to be a
side effect of how the Java LDAP provider operates.
I can't recreate the problem with multiple JNDIRealms. Authentication happe
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #11 from Michael Osipov <1983-01...@gmx.net> ---
(In reply to Mark Thomas from comment #3)
> I can confirm that this is fixed in Java 10 (ea38).
>
> This is, clearly, a JRE bug. The fix for 8149521 looks more like addressing
> the sy
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #10 from marian.romasc...@nuance.com ---
One more thing observed in the trace - with the combined realm the DNS requests
for the SRV records _ltap._tcp.testdomain1.example.org and
_ldap._tcp.testdomain2.example.org are done at the ve
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #9 from marian.romasc...@nuance.com ---
A bit too quick in crying victory. Here is the scenario:
- using CombinedRealm with 2 JNDIREalm
* 1 on testdomain1.example.org
* 1 on testdomain2.example.org
- using the ldap:/// construct
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #8 from marian.romasc...@nuance.com ---
Finally incorporated the patches in the JNDIRealm.jave for Tomcat 8.5.20
(checkout from asf repo) and tested in a "crude" way by simply replacing the
JNDIRealm classes in catalina.jar. The tra
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #7 from marian.romasc...@nuance.com ---
Hi. Cannot find in the the 8.5 trunk or tags the rev. 1820700.
https://svn.apache.org/repos/asf/tomcat/tc8.5.x/trunk/java/org/apache/catalina/realm
Trying to match the patch with the 8.5 JNDIR
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #6 from Mark Thomas ---
Realm's many be specified at the Context, Host or Engine level. However, the
implementation class needs to visible to Tomcat so it needs to be in
CATALINA_BASE/lib.
So, to apply this patch to a single web ap
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #5 from marian.romasc...@nuance.com ---
Would it be possible to override in the webapp the JNDIRealm class in
catalina.jar with the patched version? I mean providing the class in a
webapp-specific jar. This taking advantage of Tomcat
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #4 from Mark Thomas ---
Created attachment 35672
--> https://bz.apache.org/bugzilla/attachment.cgi?id=35672&action=edit
Outline patch
After some further investigation I have identified a point where we could fix
this. I have atta
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
Mark Thomas changed:
What|Removed |Added
Severity|blocker |enhancement
--- Comment #3 from Mark Tho
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
--- Comment #2 from Michael Osipov <1983-01...@gmx.net> ---
Btw, this cannot be reasonable fixed in the JNDIRealm because the issue lies
deep down in Sun's private classes.
--
You are receiving this mail because:
You are the assignee for the b
https://bz.apache.org/bugzilla/show_bug.cgi?id=61977
Michael Osipov <1983-01...@gmx.net> changed:
What|Removed |Added
OS||All
--- Comment #
16 matches
Mail list logo
