Yeah it looks like the fix to make the encoding only on the DN instead
of the whole string was applied after 4.1.30 was tagged. It will have
to be in a future release.
>>> [EMAIL PROTECTED] 3/25/04 5:56:16 PM >>>
Pascal,
What version of Tomcsat are you using? In response to a defect, I
added a feature to JNDIRealm a while back, that applied a "filter" to
certain JNDI realms to encode characters such as " and (
Later we learned that I should have focused that filtering a little
more on a specific string, and too much was being filtered, so I
submitted a fix. It was very simple, really only a one or two-line
fix.
The reason I suspect this is that your output below has "\28" and
"\29"
in the filter expression, which are the encodings for the parenthesis
that would be surrounding the expression. The bug was that only the
DN
should have been encoded, not the whole filter expression.
It looks like from CVS logs that the fix should be in 5.0.19, and
5.0.20, but not 5.0.18
Jeff Tulley ([EMAIL PROTECTED])
(801)861-5322
Novell, Inc., The Leading Provider of Net Business Solutions
http://www.novell.com
>>> [EMAIL PROTECTED] 3/25/04 6:14:06 AM >>>
Hello, all !
I've got a really strange problem that is probably caused by my
eyesight. I followed the JNDI Real HowTo on the Jakarta site, and I
setup the necessary LDIF file and put the necessary entries inside
server.xml. After struggling with various typo errors and
configuration
mistakes (I was having a migraine at the time), I finally got Tomcat
to
authenticate with my OpenLDAP server. The trouble is, it cannot find
the
role, so I always get kicked out with an authorization error.
This is the error I am getting when I try to login to the Tomcat Web
Administration page :
2004-03-25 20:42:53 JNDIRealm[Catalina]: lookupUser(tcadmin)
2004-03-25 20:42:53 JNDIRealm[Catalina]:
dn=uid=tcadmin,ou=people,o=cymulacrum
2004-03-25 20:42:53 JNDIRealm[Catalina]: validating credentials by
binding as the user
2004-03-25 20:42:53 JNDIRealm[Catalina]: binding as
uid=tcadmin,ou=people,o=cymulacrum
2004-03-25 20:42:53 JNDIRealm[Catalina]: Username tcadmin successfully
authenticated
2004-03-25 20:42:53 JNDIRealm[Catalina]:
getRoles(uid=tcadmin,ou=people,o=cymulacrum)
2004-03-25 20:42:53 JNDIRealm[Catalina]: Searching role base
'ou=groups,o=cymulacrum' for attribute 'cn'
2004-03-25 20:42:53 JNDIRealm[Catalina]: With filter expression
'\28uniqueMember=uid=tcadmin,ou=people,o=cymulacrum\29'
2004-03-25 20:42:53 JNDIRealm[Catalina]: Returning 0 roles
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Jeff Tulley ([EMAIL PROTECTED])
(801)861-5322
Novell, Inc., The Leading Provider of Net Business Solutions
http://www.novell.com
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
