opensso
  1. opensso
  2. OPENSSO-6140

LDAP auth initialization: unneeded ldap connections

    Details

    • Type: Bug Bug
    • Status: Open
    • Priority: Major Major
    • Resolution: Unresolved
    • Affects Version/s: current
    • Fix Version/s: OpenSSO-8.1
    • Component/s: authentication
    • Labels:
      None
    • Environment:

      Operating System: All
      Platform: All

    • Issuezilla Id:
      6,140

      Description

      When ldap auth module is initialized the following connections/operations are
      performed against the configured directory server:

      Connection 1:
      =============

      [25/Feb/2010:14:07:13 +0100] conn=54 op=0 msgId=222 - BIND
      dn="<ldap-auth-bind-dn>" method=128 version=3
      [25/Feb/2010:14:07:13 +0100] conn=54 op=0 msgId=222 - RESULT err=0 tag=97
      nentries=0 etime=0 dn="<ldap-auth-bind-dn>"
      [25/Feb/2010:14:07:13 +0100] conn=54 op=1 msgId=0 - RESULT err=80 tag=120
      nentries=0 etime=0
      [25/Feb/2010:14:07:13 +0100] conn=54 op=-1 msgId=-1 - closing from
      192.168.3.2:32861 - A1 - Client aborted connection -
      [25/Feb/2010:14:07:13 +0100] conn=54 op=-1 msgId=-1 - closed.

      --> should be avoided

      Connection 2:
      =============

      [25/Feb/2010:14:07:13 +0100] conn=55 op=-1 msgId=-1 - fd=36 slot=36 LDAP
      connection from 192.168.3.2:32862 to 192.168.3.2
      [25/Feb/2010:14:07:13 +0100] conn=55 op=0 msgId=223 - BIND
      dn="<ldap-auth-bind-dn>" method=128 version=3
      [25/Feb/2010:14:07:13 +0100] conn=55 op=0 msgId=223 - RESULT err=0 tag=97
      nentries=0 etime=0 dn="<ldap-auth-bind-dn>"
      [25/Feb/2010:14:07:14 +0100] conn=55 op=1 msgId=224 - SRCH base="o=csc" scope=2
      filter="(uid=csc_test1)" attrs="dn uid"
      [25/Feb/2010:14:07:14 +0100] conn=55 op=1 msgId=224 - RESULT err=0 tag=101
      nentries=1 etime=0

      --> Connection seems to be never reused for authenticating actual users

      Connection 3:
      ============

      [25/Feb/2010:14:07:14 +0100] conn=56 op=-1 msgId=-1 - fd=38 slot=38 LDAP
      connection from 192.168.3.2:32863 to 192.168.3.2
      [25/Feb/2010:14:07:14 +0100] conn=56 op=0 msgId=225 - BIND
      dn="<ldap-auth-bind-dn>" method=128 version=3
      [25/Feb/2010:14:07:14 +0100] conn=56 op=0 msgId=225 - RESULT err=0 tag=97
      nentries=0 etime=0 dn="<ldap-auth-bind-dn>"
      [25/Feb/2010:14:07:14 +0100] conn=56 op=1 msgId=0 - RESULT err=80 tag=120
      nentries=0 etime=0
      [25/Feb/2010:14:07:14 +0100] conn=56 op=-1 msgId=-1 - closing from
      192.168.3.2:32863 - A1 - Client aborted connection -
      [25/Feb/2010:14:07:14 +0100] conn=56 op=-1 msgId=-1 - closed.

      --> should be avoided

      Connection 4:
      =============

      [25/Feb/2010:14:07:14 +0100] conn=57 op=-1 msgId=-1 - fd=48 slot=48 LDAP
      connection from 192.168.3.2:32864 to 192.168.3.2
      [25/Feb/2010:14:07:14 +0100] conn=57 op=0 msgId=226 - BIND
      dn="<ldap-auth-bind-dn>" method=128 version=3
      [25/Feb/2010:14:07:14 +0100] conn=57 op=0 msgId=226 - RESULT err=0 tag=97
      nentries=0 etime=0 dn="<ldap-auth-bind-dn>"
      [25/Feb/2010:14:07:14 +0100] conn=57 op=1 msgId=227 - BIND dn="<user-bind-dn>"
      method=128 version=3
      [25/Feb/2010:14:07:14 +0100] conn=57 op=1 msgId=227 - RESULT err=0 tag=97
      nentries=0 etime=0 dn="<user-bind-dn>"

      --> ok, actual pool-connection used for authenticating users

        Activity

        There are no comments yet on this issue.

          People

          • Assignee:
            qcheng
            Reporter:
            bthalmayr
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated: