[cas-user] very odd bug?

Tue, 09 Mar 2010 07:29:57 -0800 

Hello

I've downloaded cas-server-3.3.5 and am using the advice here to create my
own customisations
http://www.ja-sig.org/wiki/display/CASUM/Maintaining+local+customizations+using+Maven+2

I've configured my deployerConfigContext.xml with a ldap context source as
such

        <bean id="contextSource"
class="org.springframework.ldap.core.support.LdapContextSource">
                <property name="pooled" value="true"/>
                <property name="urls">
                        <list>
                                <value>ldap://xxx.xx..xx.uk/</value>
                        </list>
                </property>
        </bean>

and have added the following auth handler

             <bean
                        
class="org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler" >
                                <property name="filter"
value="uid=%u,ou=xxxx,o=yyyyyy.yy.uk,o=zzz" />
                                <property name="contextSource"
ref="contextSource" />
                </bean>

I did have a list of urls for my LdapContextSource but took all but one out
for particular testing. I left in the line <property name="pooled"
value="true"/> by mistake.

Leaving this line seemed to do something very strange indeed. On initial
login using rubbish credentials [hello87/h] I get an error 

org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler failed to
authenticate the user which provided the following credentials: [username:
hello87]

If I enter the same credentails again I get 
org.jasig.cas.adaptors.ldap.FastBindLdapAuthenticationHandler successfully
authenticated the user which provided the following credentials: [username:
hello87]

I look at the ldap logs and there is only one instance of a bind for this
user from the cas machine.
Also doing a tcpdump of traffic verifies that there was no connection to the
ldap machine.

This happens with different rubbish credentials. 

I take out the line <property name="pooled" value="true"/> and all works as
expected with a bind each time the rubbish credentials are used and failed
authentication......

Is this a bug?

Cheers
Nomit



-- 
View this message in context: 
http://n4.nabble.com/very-odd-bug-tp1586117p1586117.html
Sent from the CAS Users mailing list archive at Nabble.com.

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to