Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-10452

Setting role's DN to rolesCtxDN causes javax.naming.InvalidNameException

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Out of Date
    • Affects Version/s: EAP_EWP 5.1.2, EAP 6.0.0
    • Fix Version/s: EAP_EWP 5.3.0.GA
    • Component/s: Security
    • Labels:
      None
    • Environment:

      EAP 5.1.2, 6.0.0

    • Steps to Reproduce:
      Hide

      1. Set role's DN as follow

      login-config.xml:-

              <module-option name="rolesCtxDN">CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com</module-option>
      

      2. log in application

      3. see server.log:-

      2012-11-27 14:05:16,417 DEBUG [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-3) Bad password for username=hokuda2
      javax.naming.InvalidNameException: ,CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com: [LDAP: error code 34 - 0000208F: NameErr: DSID-031001D1, problem 2006 (BAD_NAME), data 8350, best match of:
      	',CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com'
      

      Notice it has a "comma" preceding it in the error.

      Show
      1. Set role's DN as follow login-config.xml:- <module-option name= "rolesCtxDN" >CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com</module-option> 2. log in application 3. see server.log:- 2012-11-27 14:05:16,417 DEBUG [org.jboss.security.auth.spi.LdapExtLoginModule] (http-127.0.0.1-8080-3) Bad password for username=hokuda2 javax.naming.InvalidNameException: ,CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com: [LDAP: error code 34 - 0000208F: NameErr: DSID-031001D1, problem 2006 (BAD_NAME), data 8350, best match of: ',CN=Domain Admins,CN=Users,DC=domain1,DC=winlab,DC=fab,DC=redhat,DC=com' Notice it has a "comma" preceding it in the error.
    • Affects:
      Release Notes
    • Workaround:
      Workaround Exists
    • Workaround Description:
      Hide

      Set role's container DN.

      Show
      Set role's container DN.
    • Release Notes Docs Status:
      Not Yet Documented
    • Docs QE Status:
      NEW

      Description

      Setting role's DN to rolesCtxDN causes javax.naming.InvalidNameException. This occurs in EAP6 as well.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  jboss-set JBoss SET
                  Reporter:
                  hisanobu.okuda Hisanobu Okuda
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: