Hi All,
Question:
Does tomcat enumerate the values of attributes "back up" the sub-tree if it
finds an entry [in the LDAP schema] at a lower layer, or does it
only(strictly) give back the value of the attribute of the specific entry
that it found?
Background:
We have an LDAP schema that is organized as follows:
dn: cn=user,ou=Groups,o=Canada,...
uniqueMember: cn=somecompany,ou=Groups,o=Canada,...
and
dn: cn=somecompany,ou=Groups,o=Canada,...
uniqueMember: uid=someuser,ou=People,o=Canada,...
My Tomcat(4.0.6) JNDIRealm configuration is as follows:
<Realm className="org.apache.catalina.realm.JNDIRealm" debug="99"
connectionURL="ldap://ldaphost01:389";
connectionName="cn=Directory Manager"
connectionPassword="****"
userPattern="uid={0},ou=People,o=Canada,..."
userPassword="userPassword"
userSubtree="true"
roleBase="ou=Groups,o=Canada,..."
roleName="cn"
roleSearch="(uniqueMember={0})"
roleSubtree="true" />
When Tomcat finds the entry "someuser", I would ideally like the "role (cn)"
enumeration (somecompany, user) back, but I SEEM to be getting [only]
(somecompany) back. Is this true? How can I confirm? Is it possible to
get my "ideal" enumeration back?
Thanks for your time. Any comment will be greatly appreciated.
Markus
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
