Uploaded image for project: 'WildFly Elytron'
  1. WildFly Elytron
  2. ELY-14 Provide a set of realm implementations.
  3. ELY-16

Add a RFC2256 based LDAP Realm

    XMLWordPrintable

Details

    • Sub-task
    • Resolution: Done
    • Major
    • 1.0.0.Alpha1
    • None
    • None
    • None

    Description

      RFC2256 defines the userPassword attribute on LDAP entries, officially this is supposed to be clear text - however many vendors now support a one way hash where the hash algorithm is specified at the beginning of the attribute value: -

          {ssha}izu672WN0xA2ZaYofeiWyQ5QKxEBMNsbyQKwRw==

      ( 2.5.4.35 NAME 'userPassword' DESC 'RFC2256/2307: password of user' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 USAGE userApplications X-SCHEMA 'system' )

      Attachments

        Issue Links

          blocks

          Sub-task - The sub-task of the issue ELY-24 Add support to verify a password to LDAP realm

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Resolved

          Sub-task - The sub-task of the issue ELY-22 Expand LDAP realm to support authPassword attribute (RFC3112)

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Open

          Activity

            People

              Unassigned Unassigned
              darran.lofthouse@redhat.com Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: