glassfish
  1. glassfish
  2. GLASSFISH-3731

LDAPRealm: Selection of group through the DN

    Details

    • Type: Improvement Improvement
    • Status: Open
    • Priority: Critical Critical
    • Resolution: Unresolved
    • Affects Version/s: V3
    • Fix Version/s: not determined
    • Component/s: security
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: All

    • Issuezilla Id:
      3,731

      Description

      Hi,

      In our central LDAP server, a lot of applications are grouped like this:

      • applications
      • app1
      • role1
      • role2
      • app2
      • role1
      • role2

      We do not define the roles as being unique in the whole tree to make it easier
      for the LDAP administrators to handle them. The Users are mapped to the
      application roles either directly or through an organisation group (analog
      application, but for organisational purposes).

      The problem I have is that GlassFish V2 doesn't allow the field definition of
      the group to be the DN (which is the only thing different between app1/role1 and
      app2/role1) and I can only input the cn (which in this case would be wrong,
      giving users permissions they should not have). I think the problem is because
      DN is not something you can get as a field from the ldap protocol but is a
      special method call.

      greets
      jeremie

        Activity

        granat created issue -
        kenaiadmin made changes -
        Field Original Value New Value
        issue.field.bugzillaimportkey 3731 35335
        Hide
        Tom Mueller added a comment -

        Bulk update to change fix version to "not determined" for all issues still open but with a fix version for a released version.

        Show
        Tom Mueller added a comment - Bulk update to change fix version to "not determined" for all issues still open but with a fix version for a released version.
        Tom Mueller made changes -
        Fix Version/s not determined [ 11149 ]
        Fix Version/s 9.1peur1 [ 10975 ]

          People

          • Assignee:
            raharsha
            Reporter:
            granat
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated: