[jira] [Updated] (QPID-6132) SimpleLDAP produces NPE at authentication time if providerUrl is null.

Mon, 06 Oct 2014 06:04:03 -0700 

     [ 
https://issues.apache.org/jira/browse/QPID-6132?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Keith Wall updated QPID-6132:
-----------------------------
    Description: 
Currently the Java Broker permits the creation of an LDAP auth provider without 
a providerUrl.  This causes a NPE as soon as soon as it attempts an 
authentication.

Since it is not legal for the auth provider to be absent (nor 
searchContext/searchFilter).  The server side should enforce the this by 
marking these attributes as mandatory.  Also it makes sense to ping the LDAP 
server on creation and on change, in order to minimise the risk of a 
configuration error.

 

  was:
Currently the Java Broker permits the creation of an LDAP auth provider without 
a providerUrl.  This causes a NPE as soon as soon as it attempts an 
authentication.

It is not legal for the auth provider to be absent (nor 
searchContext/searchFilter).  The server side should enforce the this.

Also it makes sense to ping the LDAP server on creation and on change, in order 
to minimise the risk of a configuration error.

 


> SimpleLDAP produces NPE at authentication time if providerUrl is null.
> ----------------------------------------------------------------------
>
>                 Key: QPID-6132
>                 URL: https://issues.apache.org/jira/browse/QPID-6132
>             Project: Qpid
>          Issue Type: Bug
>          Components: Java Broker
>            Reporter: Keith Wall
>             Fix For: 0.31
>
>
> Currently the Java Broker permits the creation of an LDAP auth provider 
> without a providerUrl.  This causes a NPE as soon as soon as it attempts an 
> authentication.
> Since it is not legal for the auth provider to be absent (nor 
> searchContext/searchFilter).  The server side should enforce the this by 
> marking these attributes as mandatory.  Also it makes sense to ping the LDAP 
> server on creation and on change, in order to minimise the risk of a 
> configuration error.
>  



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to