[cas-user] Attribute repository problem with cas 4.0.0

Thu, 08 Jan 2015 04:17:21 -0800 

Hi,

I'm trying tu upgrade my cas server.
My authentication based on ldap works well but i have a problem with my
attribute repository config. It seems that he didn't take my searchscope
parameter.

Here is my config :

<bean id="attributeRepository"
          class="org.jasig.cas.persondir.LdapPersonAttributeDao"
          p:baseDN="dc=test,dc=fr"
          p:searchFilter="uid={0}"
          p:searchControls-ref="searchControls"
          p:connectionFactory-ref="searchPooledLdapConnectionFactory"
          p:resultAttributeMapping-ref="resultAttributeMap"
          />

    <util:map id="resultAttributeMap">
                <entry key="uid" value="user" />
                <entry key="mail" value="email" />
                <entry key="displayName" value="displayName" />
    </util:map>

    <bean id="searchControls"
          class="javax.naming.directory.SearchControls"
          p:searchScope="2"
          />

All my users are under "ou=company,ou,users,dc=test,dc=fr",
"ou=company1,ou,users,dc=test,dc=fr", "ou=company2,ou,users,dc=test,dc=fr"
and more.
That's why i want my baseDN to be "dc=test,dc=fr" with a searchScope="2" .

with this attributeRepository config, I've no attribute returned because i
see in my ldap log that the search scope is set to 1 and my user dn is
uid=testuser,ou=company,ou,users,dc=test,dc=fr
slapd[6694]: conn=1018 op=3 SRCH base="dc=test,dc=fr" scope=1 deref=0
filter="(uid=testuser)"
slapd[6694]: conn=1018 op=3 SEARCH RESULT tag=101 err=0 nentries=0 text=

If i modify my baseDN in in my attributeRepository to
"ou=company,ou,users,dc=test,dc=fr" i have my attributes returned well but
always with a scope=1. The problem is that i also have users in different
organizational units under  "ou,users,dc=test,dc=fr"

Here is the log with baseDN modified to "ou=company,ou,users,dc=test,dc=fr"
:

slapd[6697]: conn=1030 op=3 SRCH base="ou=company,ou,users,dc=test,dc=fr"
scope=1 deref=0 filter="(uid=testuser)"
slapd[6697]: conn=1030 op=3 SEARCH RESULT tag=101 err=0 nentries=1 text=

I know i've made a mistake somewhere which causes the non-inclusion of
my searchScope parameter but i can't see where....

Please can someone help me?

Thanks a lot

-- 
Armando Martins

-- 
You are currently subscribed to [email protected] as: 
[email protected]
To unsubscribe, change settings or access archives, see 
http://www.ja-sig.org/wiki/display/JSG/cas-user

Reply via email to