Return-Path: Delivered-To: apmail-directory-dev-archive@www.apache.org Received: (qmail 2068 invoked from network); 12 Jul 2008 13:09:58 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 12 Jul 2008 13:09:58 -0000 Received: (qmail 16939 invoked by uid 500); 12 Jul 2008 13:09:58 -0000 Delivered-To: apmail-directory-dev-archive@directory.apache.org Received: (qmail 16897 invoked by uid 500); 12 Jul 2008 13:09:57 -0000 Mailing-List: contact dev-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Apache Directory Developers List" Delivered-To: mailing list dev@directory.apache.org Received: (qmail 16884 invoked by uid 99); 12 Jul 2008 13:09:57 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 12 Jul 2008 06:09:57 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of elecharny@gmail.com designates 209.85.128.184 as permitted sender) Received: from [209.85.128.184] (HELO fk-out-0910.google.com) (209.85.128.184) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 12 Jul 2008 13:09:04 +0000 Received: by fk-out-0910.google.com with SMTP id e30so3178398fke.9 for ; Sat, 12 Jul 2008 06:09:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:content-type :content-transfer-encoding; bh=6Gn/msbcLyoYoMRCvLzfhhWkh5rAt6X0tazc5yZgsy8=; b=obVs1OF14al2d8U/9Zouh7pDkTrsDaGZebWZ3tGiJ9n6C+aj2hIVxJ5nYrwJZ/3tj5 fXiyPMWAW6MTry+SGbztA4I0cUKeVyHJmaFi+xsyqZ+iyfR0hOg2/VGdhZn6R7AdJ2Q/ 4lT3Gb1h9rkwVUKavd6zOaC8vW6L9uXlhlES8= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; b=NQ3/6/QFnmRGr80VhOBCoJP2FZYOAKPaamGsHDHO4GZKJWRgq6/BW3jKp6RKRNCRha oAh3vBzwlGiw9Rw6pi6ZfvETBuPiSt1DdNsSFVxHctiR+gMg7+rY9il08IJM6uOcAj9a ikE6dy2ZliNOVf/9AgoCgX5WWgdPp6dH3rbTs= Received: by 10.187.251.11 with SMTP id d11mr359718fas.31.1215868166105; Sat, 12 Jul 2008 06:09:26 -0700 (PDT) Received: from ?192.168.0.2? ( [82.66.216.176]) by mx.google.com with ESMTPS id 13sm5112180fks.6.2008.07.12.06.09.24 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 12 Jul 2008 06:09:25 -0700 (PDT) Message-ID: <4878AD04.4060802@gmail.com> Date: Sat, 12 Jul 2008 15:09:24 +0200 From: Emmanuel Lecharny User-Agent: Thunderbird 2.0.0.14 (X11/20080505) MIME-Version: 1.0 To: Apache Directory Developers List Subject: [bb] MiscITest failure, take 2 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org Hi, I still have failures on MiscITest, on both testDisableAnonymousBinds() and testEnableAnonymousBindsOnRootDSE() unit tests. The reason why we have some failure is because we have disabled anonymous bind on the server. The big problem is that it's now handled in the Bind handler, which is called while creating the context. The big problem is that as soon as we are not allowed to do an anonymous bind, then we can't anymore create a context. Then any kind of following operation will fail, and this is the reason why the tests are failing. InitialContextCreation should not try to bind the user, unless we are not asking for an Anonymous Bind. We hould just create a context, and return it to the user. As soon as e will try to do a search, if the Anonymous state is not allowed, then it will get an exception. In fact, the Anonymous bind is not a bind at all, it's just a state we get into as soon as we open a session on the server. Until we close the session (or it is closed buy the server itself), the user is either in Anonymous state or in authenticated state. Switching from one state to the other requires either a user action (a Bind with another mechanism, an Unbind) or a server action (authent revocation if the authent is based on certificate, and the certificate is revoqued or expire during a session). We have to review all the BigBang authentication mechanism as fast as possible. I'm disabling those two tests. Thanks !