Konrad Windszus created OAK-3119:
------------------------------------
Summary: Allow to validate connections to LDAP with a different
request than a request towards the Root DSE
Key: OAK-3119
URL: https://issues.apache.org/jira/browse/OAK-3119
Project: Jackrabbit Oak
Issue Type: Improvement
Components: auth-ldap
Affects Versions: 1.3.2
Reporter: Konrad Windszus
In https://issues.apache.org/jira/browse/OAK-2897 the option was introduced to
disable the validation of the LDAP connections in the pool.
But I guess there is a good reason to validate those connections (to prevent
all sort of connection issues afterwards).
So what about making the request which is done to validate the connection
configurable? Currently it only issues requests towards the Root DSE, which is
often forbidden for specific users
(https://github.com/apache/jackrabbit-oak/blob/trunk/oak-auth-ldap/src/main/java/org/apache/jackrabbit/oak/security/authentication/ldap/impl/UnboundLookupConnectionValidator.java#L44).
What about using a request towards the user base DN?
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
