directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From elecha...@apache.org
Subject svn commit: r796059 - /directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java
Date Mon, 20 Jul 2009 23:13:23 GMT
Author: elecharny
Date: Mon Jul 20 23:13:22 2009
New Revision: 796059

URL: http://svn.apache.org/viewvc?rev=796059&view=rev
Log:
Added a comment 

Modified:
    directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java

Modified: directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java
URL: http://svn.apache.org/viewvc/directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java?rev=796059&r1=796058&r2=796059&view=diff
==============================================================================
--- directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java
(original)
+++ directory/apacheds/trunk/core/src/main/java/org/apache/directory/server/core/authn/AnonymousAuthenticator.java
Mon Jul 20 23:13:22 2009
@@ -50,8 +50,11 @@
      */
     public LdapPrincipal authenticate( BindOperationContext opContext ) throws NamingException
     {
-        // We only allow Anonymous binds if the sservice allows them _or_
+        // We only allow Anonymous binds if the service allows them _or_
         // if the user wants to bind on the rootDSE
+        // TODO : Fix this ASAP !!! This is a backdoor, we should not allow
+        // a user to get in as anonymous simply because the bind request DN
+        // is empty !
         if ( getDirectoryService().isAllowAnonymousAccess() || opContext.getDn().isEmpty()
)
         {
             return LdapPrincipal.ANONYMOUS;



Mime
View raw message