[
https://issues.apache.org/jira/browse/DIRSERVER-1198?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14698128#comment-14698128
]
Emmanuel Lecharny commented on DIRSERVER-1198:
----------------------------------------------
This is *not* an ApacheDS issue. The server correctly returns the
{{userCertificate;binary}} value when requested with an API that supports it.
There is a test that checks this specific use case :
{code}
@Test
public void testAddWithCertificateBinary() throws Exception
{
LdapConnection con = getAdminConnection( getLdapServer() );
con.loadSchema();
String dn = "cn=Kate Bush," + BASE;
Entry kate = new DefaultEntry( dn,
"objectclass: top",
"objectclass: person",
"objectclass: inetOrgPerson",
"userCertificate;binary:: PEhlbGxvIHdvcmxkICE+", // This is "<hello
world !>"
"sn: Bush",
"cn: Kate Bush" );
con.add( kate );
// Analyze entry and description attribute
Entry kateReloaded = con.lookup( dn );
assertNotNull( kateReloaded );
Attribute certificate = kateReloaded.get( "userCertificate;binary" );
assertNotNull( certificate );
assertEquals( 1, certificate.size() );
assertTrue( certificate.contains( Strings.getBytesUtf8( "<Hello world
!>" ) ) );
{code}
> Requests of usercertificate;binary are not supported
> ----------------------------------------------------
>
> Key: DIRSERVER-1198
> URL: https://issues.apache.org/jira/browse/DIRSERVER-1198
> Project: Directory ApacheDS
> Issue Type: Bug
> Reporter: Chris Trobridge
> Assignee: Emmanuel Lecharny
> Fix For: 2.0.0-M1
>
>
> ApacheDS only supports the retrieval of certificates without the ;binary
> transfer suffix.
> RFC4523 states certificates must be transferred using the ;binary transfer
> option.
> In practice we have clients in the field that are making requests both with
> and without the option so we'd need support for both methods to be able to
> consider deploying ApacheDS.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
