Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 8.0.0.CR1
Affects Version/s: 8.0.0.Alpha4
Component/s: Management
Labels:
None

Git Pull Request:
https://github.com/wildfly/wildfly/pull/5375
Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=1015303

Description

LDAP security realm needs to have configurable timeouts.

The default LDAP connection timeout appears to be 2 minutes. If the ldap server is down, it could take 2 minutes for the connection to timeout. This can cause unneeded delay if you have configured multiple ldap servers for failover / redundancy.

The following hack appears to work:

+++ domain-management/src/main/java/org/jboss/as/domain/management/connections/ldap/LdapConnectionManagerService.java
@@ -132,6 +132,7 @@ public class LdapConnectionManagerService implements Service<LdapConnectionManag
result.put(Context.INITIAL_CONTEXT_FACTORY,initialContextFactory);
String url = config.require(URL).asString();
result.put(Context.PROVIDER_URL,url);
+ result.put("com.sun.jndi.ldap.connect.timeout", "500");
return result;
}

Attachments

Issue Links

relates to

WFCORE-997 Security realm using ldaps hangs forever during SSL handshake, when ldap server is killed

Resolved

JBEAP-1126 Security realm using ldaps hangs forever during SSL handshake, when ldap server is killed

Closed

Sub-Tasks

1.	Update 'LdapConnectionManagerService' to use the attribute definitions to read from the model.	Closed	Darran Lofthouse
2.	Inconsistence in runtime updates for outbound LDAP connections.	Closed	Darran Lofthouse
3.	Add TRACE logging for connection properties used to connect to LDAP from realm.	Closed	Darran Lofthouse

Activity

People

Assignee:: Darran Lofthouse

Reporter:: Derek Horton

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 2013/10/03 5:06 PM

Updated:: 2017/12/06 11:39 AM

Resolved:: 2013/11/05 11:10 AM