Return-Path: Delivered-To: apmail-directory-dev-archive@www.apache.org Received: (qmail 7851 invoked from network); 15 Aug 2009 08:58:19 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 15 Aug 2009 08:58:19 -0000 Received: (qmail 34839 invoked by uid 500); 15 Aug 2009 08:58:25 -0000 Delivered-To: apmail-directory-dev-archive@directory.apache.org Received: (qmail 34687 invoked by uid 500); 15 Aug 2009 08:58:25 -0000 Mailing-List: contact dev-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Apache Directory Developers List" Delivered-To: mailing list dev@directory.apache.org Received: (qmail 34259 invoked by uid 99); 15 Aug 2009 08:58:24 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 15 Aug 2009 08:58:24 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=10.0 tests=ALL_TRUSTED X-Spam-Check-By: apache.org Received: from [140.211.11.140] (HELO brutus.apache.org) (140.211.11.140) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 15 Aug 2009 08:58:21 +0000 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 21201234C4CF for ; Sat, 15 Aug 2009 01:57:16 -0700 (PDT) Message-ID: <2003777252.1250326636134.JavaMail.jira@brutus> Date: Sat, 15 Aug 2009 01:57:16 -0700 (PDT) From: "Emmanuel Lecharny (JIRA)" To: dev@directory.apache.org Subject: [jira] Updated: (DIRSERVER-1217) Binds with referrals can be used for delegated authentication In-Reply-To: <1271770319.1217984204224.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/DIRSERVER-1217?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Emmanuel Lecharny updated DIRSERVER-1217: ----------------------------------------- Fix Version/s: (was: 1.5.5) 2.0.0-RC1 Postponed to 2.0.0-RC1 > Binds with referrals can be used for delegated authentication > ------------------------------------------------------------- > > Key: DIRSERVER-1217 > URL: https://issues.apache.org/jira/browse/DIRSERVER-1217 > Project: Directory ApacheDS > Issue Type: New Feature > Reporter: Alex Karasulu > Fix For: 2.0.0-RC1 > > > It's possible to perform delegated authentication by handling referral chasing in the server on bind operations. This could be a new external authentication mechanism. If a bind request using a principalDn represents a referral or does not exist but has a referral at some ancestor in the DN then the server can delegate the authentication to the target server. If the target server referrenced in the ref attribute authenticates the user then ApacheDS accepts the user as authenticated. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.