Hi Sharan, Sorry for the delay I wanted to look closely to LDAP library we are using ad how it handle LDAP connections/disconnections before answer this mail and did t had time for this before.
As far as I can see there is no explicit unbind or disconnect in the current LDAP authentication so yes it's not very respectful for LDAP server. Can you add an issue on jira for that ? On Thu, Oct 16, 2008 at 3:38 PM, <[EMAIL PROTECTED]> wrote: > Hi! Thomas, > > There are errors we see on the ldap server on authenicating users with > LDAP for XWiki. It is critical to fix this issue for us to be able to > use xwiki. This is what seems to be happening. Normally when you do a > 'DoBind' with a LDAP directory it establishes the connection after > successful authentication. Once you establish the connection you may ask > for information within the LDAP directory or simple logout with a > 'DoUnbind'. Since you did not ask for any more information or issue a > DoUnbind the LDAP directory tried to extend your session, which was > eventually dropped. Also below is an example of a Bind with simple > authentication and then an UnBind. we would like to see a 'DoUnbind' > following a 'Dobind' when authenticating to the LDAP directory. Could you > please advise. > > 10:48:27 B0EB7BB0 LDAP: New cleartext connection 0x8352b08 from x.x.x.x, > monitor = 0x7ac4dbb0, index = 6 > 10:48:27 B32C0BB0 LDAP: (x.x.x.x)(0x0044:0x60) DoBind on connection > 0x8352b08 > 10:48:27 B32C0BB0 LDAP: (x.x.x.x)(0x0044:0x60) Bind name:cn=abc,ou=xyz, > version:3, authentication:simple > 10:48:27 B32C0BB0 LDAP: (x.x.x.x)(0x0044:0x60) Sending operation result > 0:"":"" to connection 0x8352b08 > 10:48:27 B32C0BB0 LDAP: (x.x.x.x)(0x0044:0x60) Operation 0x44:0x60 on > connection 0x8352b08 completed in 0 seconds > 10:48:27 7FBC5BB0 LDAP: (x.x.x.x)(0x0045:0x77) DoExtended on connection > 0x8352b08 > 10:48:27 7FBC5BB0 LDAP: (x.x.x.x)(0x0045:0x77) DoExtended: Extension > Request OID: 0.0.0.0 > 10:48:27 7FBC5BB0 LDAP: (x.x.x.x)(0x0045:0x77) Unable to find extension > handler 0.0.0.0 in extension list > 10:48:27 7FBC5BB0 LDAP: (x.x.x.x)(0x0045:0x77) Sending operation result > 2:"":"Unrecognized extended operation" to connection 0x8352b08 > 10:48:27 7FBC5BB0 LDAP: (x.x.x.x)(0x0045:0x77) Operation 0x45:0x77 on > connection 0x8352b08 completed in 0 seconds > > > > Trace Example 'Successful Bind and UnBind' > 14:06:54 B0AB6BB0 LDAP: New TLS connection 0x838b948 from x.x.x.x, monitor > = 0x969a4bb0, index = 6 > 14:06:54 969A4BB0 LDAP: Monitor 0x969a4bb0 initiating TLS handshake on > connection 0x838b948 > 14:06:54 89F1EBB0 LDAP: (x.x.x.x)(0x0000:0x00) DoTLSHandshake on > connection 0x838b948 > 14:06:54 89F1EBB0 LDAP: (x.x.x.x)(0x0000:0x00) Completed TLS handshake on > connection 0x838b948 > 14:06:54 4C1FFBB0 LDAP: (x.x.x.x)(0xca72:0x60) DoBind on connection > 0x838b948 > 14:06:54 4C1FFBB0 LDAP: (x.x.x.x)(0xca72:0x60) Bind name:cn=abc,ou=xyz,, > version:3, authentication:simple > 14:06:54 4C1FFBB0 LDAP: (x.x.x.x)(0xca72:0x60) Sending operation result > 0:"":"" to connection 0x838b948 > 14:06:54 4C1FFBB0 LDAP: (x.x.x.x)(0xca72:0x60) Operation 0xca72:0x60 on > connection 0x838b948 completed in 0 seconds > 14:06:54 8CB10BB0 LDAP: (x.x.x.x)(0xca73:0x42) DoUnbind on connection > 0x838b948 > 14:06:54 8CB10BB0 LDAP: Connection 0x838b948 closed > Thanks. > Sharan. > Engineer > DAS eCommerceEngineering, > GTI, JPMorgan Chase > Houston. > Ph:713-216-0725 > > ----------------------------------------- > This communication is for informational purposes only. It is not > intended as an offer or solicitation for the purchase or sale of > any financial instrument or as an official confirmation of any > transaction. All market prices, data and other information are not > warranted as to completeness or accuracy and are subject to change > without notice. Any comments or statements made herein do not > necessarily reflect those of JPMorgan Chase & Co., its subsidiaries > and affiliates. > > This transmission may contain information that is privileged, > confidential, legally privileged, and/or exempt from disclosure > under applicable law. If you are not the intended recipient, you > are hereby notified that any disclosure, copying, distribution, or > use of the information contained herein (including any reliance > thereon) is STRICTLY PROHIBITED. Although this transmission and any > attachments are believed to be free of any virus or other defect > that might affect any computer system into which it is received and > opened, it is the responsibility of the recipient to ensure that it > is virus free and no responsibility is accepted by JPMorgan Chase & > Co., its subsidiaries and affiliates, as applicable, for any loss > or damage arising in any way from its use. If you received this > transmission in error, please immediately contact the sender and > destroy the material in its entirety, whether in electronic or hard > copy format. Thank you. > > Please refer to http://www.jpmorgan.com/pages/disclosures for > disclosures relating to UK legal entities. > _______________________________________________ > users mailing list > [email protected] > http://lists.xwiki.org/mailman/listinfo/users > -- Thomas Mortagne _______________________________________________ users mailing list [email protected] http://lists.xwiki.org/mailman/listinfo/users
