[
https://issues.apache.org/jira/browse/SHIRO-57?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12732893#action_12732893
]
Ian Bacher commented on SHIRO-57:
---------------------------------
I've attached a patch from an internal project that addresses these ideas. In
addition, the current Shiro / ActiveDirectory integration treats anonymous
users (i.e. users with no user id and password) as successful subjects, since
AD does not cause an error on anonymous binds (even if anonymous binds are
disallowed as is the default settings). This implements the common solution for
this issue, by searching for the user after a successful bind (which, with
anonymous binds will now cause a failure).
> Enhance LDAP Support
> --------------------
>
> Key: SHIRO-57
> URL: https://issues.apache.org/jira/browse/SHIRO-57
> Project: Shiro
> Issue Type: Improvement
> Reporter: Les Hazlewood
> Attachments: shiro_active_directory.patch
>
>
> Should handle LDAP beyond our normal approach, particularly supporting the
> behavior outlined in this blog entry:
> http://weblogs.java.net/blog/kohsuke/archive/2008/06/more_active_dir.html
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
