directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Emmanuel Lecharny (Commented) (JIRA)" <>
Subject [jira] [Commented] (DIRAPI-68) Unable to bind on an Active Directory server using 'domain\userid'
Date Fri, 20 Jan 2012 08:46:44 GMT


Emmanuel Lecharny commented on DIRAPI-68:

There are a few things to change if we want to support domain\userid in a BindRequest.

Currently, using the API, we can sent a bind() using those methods :
- bind( String name )
- bind( Dn name )
- bind( String name, String credentials )
- bind( Dn name, String credentials )
- bind( BindRequest bindRequest ) 

The first thing would be to allow a user to pass a "domain\userId" with the bind( String [,
credentials] ) method. Currently, we convert the String to a DN, and throw an exception if
it's not a valid Dn. We can relax that, as the server will anyway validate the name.

The second thing we will have to do is to allow a user to create a BindRequest by passing
a String instead of a Dn for the name. ATM, we expect a Dn. Changing that would be quite easy,
we just have to add a new field in the BindRequest class, a String. Of course, we can trnslate
it to a Dn if it's a valid one.

The third thing would also be to change the codec to generate a correct PDU, when we have
a String stored for the name. That's quite easy to do.

Last, not least, in order to be consistent, we must also change the decoder to allow String
instead of Dn in a BindRequest PDU. 

All those operations are easy, and we must absolutely allow a String for a bind, otherwise
the API will be totally useless when connected to a M$ LDAP server (damn M$, which "invented"
a new way to connect to his crappy AD server, when SASL was the way to go...)

> Unable to bind on an Active Directory server using 'domain\userid'
> ------------------------------------------------------------------
>                 Key: DIRAPI-68
>                 URL:
>             Project: Directory Client API
>          Issue Type: Bug
>    Affects Versions: 1.0.0-M9
>            Reporter: Pierre-Arnaud Marcelot
>            Assignee: Pierre-Arnaud Marcelot
>            Priority: Critical
>             Fix For: 1.0.0-M10
> Unable to bind on an Active Directory server using 'domain\userid'. 
> The Apache Directory LDAP API doesn't currently handles this and expect a DN as name
for a bind request.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:!default.jspa
For more information on JIRA, see:


View raw message