Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Received-SPF: pass (herse.apache.org: domain of elecharny@gmail.com designates
 64.233.182.184 as permitted sender)
DomainKey-Signature: a=rsa-sha1; c=nofws;
        d=gmail.com; s=beta;
        h=received:message-id:date:from:reply-to:to:subject:cc:in-reply-to:mime-version:content-type:references;
        b=PBcJzSbEzmcaDiZIAZUQvLyPFytwYDmQoXvvq1oLhgp5n2qd6B7uaHSJ89koUyISdV8a5Yke1BMzSMY8gVYhvqTOZXt62UGvOlj1CuBdqSP7goGJsEoiXgRj3DtaLAi3hMzwuxpEZQQzAFQJnSINbLe9cOGrvJwbich+txGKiaw=
Message-ID: <d45b08f00703160350r7e21a668m6f4571634d037b93@mail.gmail.com>
Date: Fri, 16 Mar 2007 11:50:49 +0100
From: "Emmanuel Lecharny" <elecharny@gmail.com>
Reply-To: elecharny@iktek.com
To: "Flavio Minori" <flavio.minori@topcs.it>
Subject: Re: R: [ApacheDS] Password refresh
Cc: "Apache Directory Developers List" <dev@directory.apache.org>
In-Reply-To: <000e01c767b6$fa9e5de0$2a00a8c0@topcs.it>
MIME-Version: 1.0
Content-Type: multipart/alternative;
	boundary="----=_Part_83628_18278318.1174042249583"
References: <d45b08f00703160310t4e4ed8eeua00c2c5280c7f095@mail.gmail.com>
	 <000e01c767b6$fa9e5de0$2a00a8c0@topcs.it>

------=_Part_83628_18278318.1174042249583
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

On 3/16/07, Flavio Minori <flavio.minori@topcs.it> wrote:
>
> Hello Emmanuel,
> thanks for the reply.
>
> I am going to check the links you gave me.
>
> I use JXplorer to browse the APACHE DS and I noticed something that I am
> not
> able to explain myself, those are the steps:
>
> - I connect with my user, then I remove the userPassword attribute and
> submit it (so            the userPassword attribute exists with a blank
> value).
> - I change the password and disconnect.
> - Now, I connect again with the new password and it works!
>
> Can u tell me why seems that JXplorer can remove the principal/credential=
s
> from the authenticationCache without a LDAPServer restart?


Ooops, I think we have fixed the issue in the 1.0.1 version :
https://issues.apache.org/jira/browse/DIRSERVER-782

This is why it now works for you with JXplorer.

In your code, you have to know that the credentials are kept alive until th=
e
user disconnect. It may be improved.


Might it be that it is a simple error on my code and not related to any bug=
?


Don't know at this point ...
If you can build a very simple test which expose your problem, we can try t=
o
find a fix for it.

What about filling an issue on JIRA with this piece of code so that we try
to add it to the 1.0.2 release ? (we are trying to release this version ver=
y
soon, so it's good timing )

Emmanuel.

PS : FYI, we have LdapStudio which is also a ldapBrowser you can try :
http://directory.apache.org/ldapstudio/. It's not yet an official release,
but the Ldap browser is pretty much ok, I think.

--=20
Cordialement,
Emmanuel L=E9charny
www.iktek.com

------=_Part_83628_18278318.1174042249583
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

<br><br><div><span class=3D"gmail_quote">On 3/16/07, <b class=3D"gmail_send=
ername">Flavio Minori</b> &lt;<a href=3D"mailto:flavio.minori@topcs.it">fla=
vio.minori@topcs.it</a>&gt; wrote:</span><blockquote class=3D"gmail_quote" =
style=3D"border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8=
ex; padding-left: 1ex;">
Hello Emmanuel,<br>thanks for the reply.<br><br>I am going to check the lin=
ks you gave me.<br><br>I use JXplorer to browse the APACHE DS and I noticed=
 something that I am not<br>able to explain myself, those are the steps:
<br><br>- I connect with my user, then I remove the userPassword attribute =
and<br>submit it (so&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&=
nbsp;&nbsp;&nbsp;the userPassword attribute exists with a blank<br>value).<=
br>- I change the password and disconnect.<br>- Now, I connect again with t=
he new password and it works!
<br><br>Can u tell me why seems that JXplorer can remove the principal/cred=
entials<br>from the authenticationCache without a LDAPServer restart?</bloc=
kquote><div><br>Ooops, I think we have fixed the issue in the 1.0.1 version=
 :
<br><a href=3D"https://issues.apache.org/jira/browse/DIRSERVER-782">https:/=
/issues.apache.org/jira/browse/DIRSERVER-782</a><br><br>This is why it now =
works for you with JXplorer.<br><br>In your code, you have to know that the=
 credentials are kept alive until the user disconnect. It may be improved.
<br><br></div><br><blockquote class=3D"gmail_quote" style=3D"border-left: 1=
px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"=
>Might it be that it is a simple error on my code and not related to any bu=
g?
</blockquote><div><br>Don&#39;t know at this point ... <br></div>If you can=
 build a very simple test which expose your problem, we can try to find a f=
ix for it.<br><br>What about filling an issue on JIRA with this piece of co=
de so that we try to add it to the=20
1.0.2 release ? (we are trying to release this version very soon, so it&#39=
;s good timing )<br><br>Emmanuel.<br><br>PS : FYI, we have LdapStudio which=
 is also a ldapBrowser you can try : <a href=3D"http://directory.apache.org=
/ldapstudio/">
http://directory.apache.org/ldapstudio/</a>. It&#39;s not yet an official r=
elease, but the Ldap browser is pretty much ok, I think.<br></div><br>-- <b=
r>Cordialement,<br>Emmanuel L=E9charny<br><a href=3D"http://www.iktek.com">
www.iktek.com</a>

------=_Part_83628_18278318.1174042249583--