Yeah it looks like the fix to make the encoding only on the DN instead of the whole string was applied after 4.1.30 was tagged. It will have to be in a future release.
>>> [EMAIL PROTECTED] 3/25/04 5:56:16 PM >>> Pascal, What version of Tomcsat are you using? In response to a defect, I added a feature to JNDIRealm a while back, that applied a "filter" to certain JNDI realms to encode characters such as " and ( Later we learned that I should have focused that filtering a little more on a specific string, and too much was being filtered, so I submitted a fix. It was very simple, really only a one or two-line fix. The reason I suspect this is that your output below has "\28" and "\29" in the filter expression, which are the encodings for the parenthesis that would be surrounding the expression. The bug was that only the DN should have been encoded, not the whole filter expression. It looks like from CVS logs that the fix should be in 5.0.19, and 5.0.20, but not 5.0.18 Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., The Leading Provider of Net Business Solutions http://www.novell.com >>> [EMAIL PROTECTED] 3/25/04 6:14:06 AM >>> Hello, all ! I've got a really strange problem that is probably caused by my eyesight. I followed the JNDI Real HowTo on the Jakarta site, and I setup the necessary LDIF file and put the necessary entries inside server.xml. After struggling with various typo errors and configuration mistakes (I was having a migraine at the time), I finally got Tomcat to authenticate with my OpenLDAP server. The trouble is, it cannot find the role, so I always get kicked out with an authorization error. This is the error I am getting when I try to login to the Tomcat Web Administration page : 2004-03-25 20:42:53 JNDIRealm[Catalina]: lookupUser(tcadmin) 2004-03-25 20:42:53 JNDIRealm[Catalina]: dn=uid=tcadmin,ou=people,o=cymulacrum 2004-03-25 20:42:53 JNDIRealm[Catalina]: validating credentials by binding as the user 2004-03-25 20:42:53 JNDIRealm[Catalina]: binding as uid=tcadmin,ou=people,o=cymulacrum 2004-03-25 20:42:53 JNDIRealm[Catalina]: Username tcadmin successfully authenticated 2004-03-25 20:42:53 JNDIRealm[Catalina]: getRoles(uid=tcadmin,ou=people,o=cymulacrum) 2004-03-25 20:42:53 JNDIRealm[Catalina]: Searching role base 'ou=groups,o=cymulacrum' for attribute 'cn' 2004-03-25 20:42:53 JNDIRealm[Catalina]: With filter expression '\28uniqueMember=uid=tcadmin,ou=people,o=cymulacrum\29' 2004-03-25 20:42:53 JNDIRealm[Catalina]: Returning 0 roles --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Jeff Tulley ([EMAIL PROTECTED]) (801)861-5322 Novell, Inc., The Leading Provider of Net Business Solutions http://www.novell.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]