Hi Miriam,
We had the same problem here. Our LDAP authentication was working up to
version 5.5.12 but broke on anything above it. I finally got it fixed
and I'll show you what we had previously and what we have now.
WORKED WITH 5.5.12 AND BELOW:
<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionName="uid=xxx,ou=users,dc=bc,dc=com"
connectionPassword="passwd"
connectionURL="ldap://ldap.bc.com";
roleBase=""
roleName="cn"
roleSearch="(uniqueMember={0})"
roleSubtree="true"
userPattern="uid={0},ou=users,dc=bc,dc=com"
userSearch="(uid={0})"
userSubtree="true"
/>
WORKS WITH LATEST TOMCAT:
<Realm className="org.apache.catalina.realm.JNDIRealm"
debug="99"
connectionName="uid=xxx,ou=users,dc=bc,dc=com"
connectionPassword="passwd"
connectionURL="ldap://ldap.bc.com";
roleBase="ou=roleBase,dc=bc,dc=com"
roleName="cn"
roleSearch="(uniqueMember={0})"
roleSubtree="true"
userBase="ou=Users,dc=bc,dc=com"
userSearch="(uid={0})"
/>
________________________________
From: Miriam Keating [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 05, 2006 10:03 AM
To: users@tomcat.apache.org
Subject: FW: Question
Importance: High
QUMAS is the only global compliance company offering a complete solution
to regulated industries. Recognized as the world leader in Enterprise
Compliance Management.
* Website: www.qumas.com <BLOCKED::http://www.qumas.com/>
* Address: Cleve Business Park, Monahan Road, Cork, Ireland
* Office: +353-21-491 5100 +177
* Fax: +353-21-432 0394
________________________________
From: Miriam Keating
Sent: 05 October 2006 17:02
To: 'users@tomcat.apache.org'
Subject: FW: Question
Importance: High
QUMAS is the only global compliance company offering a complete solution
to regulated industries. Recognized as the world leader in Enterprise
Compliance Management.
* Website: www.qumas.com <BLOCKED::http://www.qumas.com/>
* Address: Cleve Business Park, Monahan Road, Cork, Ireland
* Office: +353-21-491 5100 +177
* Fax: +353-21-432 0394
________________________________
From: Miriam Keating
Sent: 05 October 2006 16:59
To: 'users@tomcat.apache.org'
Subject: Question
Importance: High
To whom it may concern,
I am connecting to LDAP using Tomcat 5.5.12 and everything is fine.
However, when I change over to Tomcat 5.5.16, I can no longer connect to
LDAP because of a binding error. The error I see is included in this
email. The cause of my problem is due to a change made to the JNDIRealm
class, the getUserByPattern(). The change made ( I don't think) has not
been documented in the change log html. Two lines of code have been
removed from the above class and method. Basically, can you tell me why
the change was made and also can you tell me is there a complimentary
change I need to make to my code, to get the LDAP to work.
Any help you can give me would be really appreciated.
Regards
Miriam
QUMAS is the only global compliance company offering a complete solution
to regulated industries. Recognized as the world leader in Enterprise
Compliance Management.
* Website: www.qumas.com <BLOCKED::http://www.qumas.com/>
* Address: Cleve Business Park, Monahan Road, Cork, Ireland
* Office: +353-21-491 5100 +177
* Fax: +353-21-432 0394
