Hi,
I am trying to use Turbine with LDAP authentication against an
Active Directory server. The following code snippet fails with a
PasswordMismatchException even though the password is correct. The
problem is that the distinguishedName contains a comma, which is
escaped when passed to TurbineSecurity.getAuthenticatedUser but comes
back as not escaped in the exception (see bottom of post. Names and
places have been changed to protect the innocent: the AD has a
different organization). Has anyone been successful in using AD with
Turbine? This may be an AD configuration problem, since I cannot use
TurbineSecurity.getAuthenticatedUser(username, password) for example,
when setting services.SecurityService.ldap.user.username to
samaccountname.
thanks for any input you may have!
h.
Turbine turbine;
TurbineConfig tc = new TurbineConfig(
"//home/helgew/work/webapps/test",
"/WEB-INF/conf/TurbineResources.properties");
try {
turbine = getTurbine();
turbine.init(tc);
} catch (Exception e) {
log.error("TurbineConfig: Initialization failed", e);
}
String username = "helgew";
String password = "password";
User user = null;
NamingEnumeration ne = null;
try {
DirContext context = LDAPUserManager.bindAsAdmin();
Attributes ats = new BasicAttributes("samaccountname",
username);
ne = context.search("ou=Activx Users,dc=activx,dc=com",
ats);
while (ne.hasMore()) {
SearchResult result = (SearchResult) ne.next();
Attributes userAttributes =
result.getAttributes();
Attribute dn =
userAttributes.get("distinguishedName");
distinguishedName = ((String)dn.get(0));
}
} catch (NamingException e1) {
e1.printStackTrace();
}
distinguishedName =
distinguishedName.replaceFirst(",[oO][uU].*","");
distinguishedName =
distinguishedName.replaceFirst("[cC][nN]=","");
System.out.println(distinguishedName); # prints 'Weissig\, Helge',
note the escaped comma!
try {
user = TurbineSecurity.getAuthenticatedUser(distinguishedName,
password);
} catch (DataBackendException e) {
e.printStackTrace();
} catch (UnknownEntityException e) {
e.printStackTrace();
} catch (PasswordMismatchException e) {
e.printStackTrace();
}
stack trace generated, note the absence of the slash to escape the
comma.
org.apache.turbine.util.security.PasswordMismatchException: The given
password for: cn=Weissig, Helge,ou=Users,dc=grajagan,dc=org is invalid
at
org.apache.turbine.services.security.ldap.LDAPUserManager.authenticate
(LDAPUserManager.java:416)
at
org.apache.turbine.services.security.ldap.LDAPUserManager.retrieve
(LDAPUserManager.java:328)
at
org.apache.turbine.services.security.BaseSecurityService.getAuthenticate
dUser(BaseSecurityService.java:691)
at
org.apache.turbine.services.security.TurbineSecurity.getAuthenticatedUse
r(TurbineSecurity.java:263)
at org.grajagan.test.playground.TestTurbineInit.main
(TestTurbineInit.java:123)
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
