Kristopher Kane created KNOX-517:
------------------------------------
Summary: Add logging for failed LDAPs connections
Key: KNOX-517
URL: https://issues.apache.org/jira/browse/KNOX-517
Project: Apache Knox
Issue Type: Improvement
Components: Server
Affects Versions: 0.5.0
Environment: RHEL 6 - Java 7 - Active Directory
Reporter: Kristopher Kane
Nothing is logged when an LDAPs failure occurs. The below logging is all that
is received when the JRE's keystore is missing the LDAPs certificate:
2015-03-08 15:38:15,848 DEBUG ldap.JndiLdapRealm
(JndiLdapRealm.java:queryForAuthenticationInfo(369)) - Authenticating user
'USER' through LDAP
2015-03-08 15:38:15,849 DEBUG ldap.JndiLdapContextFactory
(JndiLdapContextFactory.java:getLdapContext(488)) - Initializing LDAP context
using URL [ldaps://ldapshost.com:636] and principal
[CN=ldap-auth-user,OU=People,DC=corp,DC=com] with pooling enabled
2015-03-08 15:38:15,947 DEBUG servlet.SimpleCookie
(SimpleCookie.java:addCookieHeader(226)) - Added HttpServletResponse Cookie
[rememberMe=deleteMe; Path=/gateway/clustername; Max-Age=0; Expires=Sat,
07-Mar-2015 20:38:15 GMT]
2015-03-08 15:38:15,948 DEBUG authc.BasicHttpAuthenticationFilter
(BasicHttpAuthenticationFilter.java:sendChallenge(274)) - Authentication
required: sending 401 Authentication challenge response.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
