Andrea Tarocchi created KARAF-4989:
--------------------------------------
Summary: Make LDAPLoginModule role.mapping option understand also
fqdn
Key: KARAF-4989
URL: https://issues.apache.org/jira/browse/KARAF-4989
Project: Karaf
Issue Type: Improvement
Components: karaf-security
Reporter: Andrea Tarocchi
Priority: Minor
With the current way of parsing {{*role.mapping*}} option in
{{*LDAPLoginModule*}} is not possible to specify a fqdn; a possible use case is
to achieve a mapping like this:
{code:xml}
<jaas:module className="org.apache.karaf.jaas.modules.ldap.LDAPLoginModule">
[...]
role.base.dn=ou=groups,dc=example,dc=org
role.name.attribute=someAttributeResultingInFqdn
role.filter=(member=%fqdn)
role.search.subtree=true
role.mapping=cn=admin,ou=groups,dc=example,dc=org=karafRole;cn=admin,ou=otherGroups,dc=example,dc=org=otherKarafRole
</jaas:module>
{code}
i.e. mapping based on a fqdn string instead of a cn.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
