Return-Path: 
 <dev-return-45536-apmail-directory-dev-archive=directory.apache.org@directory.apache.org>
X-Original-To: apmail-directory-dev-archive@www.apache.org
Delivered-To: apmail-directory-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 1A1CE115CF
	for <apmail-directory-dev-archive@www.apache.org>;
 Tue,  6 May 2014 17:30:54 +0000 (UTC)
Received: (qmail 75648 invoked by uid 500); 6 May 2014 16:39:44 -0000
Delivered-To: apmail-directory-dev-archive@directory.apache.org
Received: (qmail 75464 invoked by uid 500); 6 May 2014 16:39:39 -0000
Mailing-List: contact dev-help@directory.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@directory.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@directory.apache.org>
List-Post: <mailto:dev@directory.apache.org>
List-Id: <dev.directory.apache.org>
Reply-To: "Apache Directory Developers List" <dev@directory.apache.org>
Delivered-To: mailing list dev@directory.apache.org
Delivered-To: moderator for dev@directory.apache.org
Received: (qmail 74159 invoked by uid 99); 6 May 2014 14:35:18 -0000
X-ASF-Spam-Status: No, hits=1.5 required=5.0
	tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of vkrishna.p@gmail.com designates
 209.85.220.177 as permitted sender)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type;
        bh=KeHA1Ose+Gfyx+a0ulT27wKFOntB3wiAg0v4+GYnQ4c=;
        b=Mn1/4rWL3OBBnxLoIAmMkjfLxV4tGNjwGO3kGT8V6ZsSJ3kgKHSP3C0unN6PihFbq2
         QU1/eOr3VAFYC32zJmFUcKGk1hsyjZIPzYzecNBW6XBUN/xJYoFgbWNB1jh9LawT8CM/
         3q4IV8dbtL15BXrcZsBD8Ej0ivJ9vq5OV7Vj8dYd18V+2IHsJZRwwiPrDmG6jLB296Y9
         oovE20BikKcj7djULfrnICcjgyfGsO7kOHtgrUhr76uXEpCabTf+gGhOy3DaMIjSNb5p
         t1SoD5aQnk57Bx+6gAztr1lDAWauC1bXv1SFtktM86ywM/YC1Y6DKGDBCsTon32lPEde
         QIsQ==
MIME-Version: 1.0
X-Received: by 10.52.232.161 with SMTP id tp1mr4093998vdc.33.1399386890272;
 Tue, 06 May 2014 07:34:50 -0700 (PDT)
In-Reply-To: 
 <CAJwLGfZybvrCBk1QgAuoQWL5LKjDRcuQS7vOoEzNMYdSRk6YxQ@mail.gmail.com>
References: 
 <CAJwLGfZybvrCBk1QgAuoQWL5LKjDRcuQS7vOoEzNMYdSRk6YxQ@mail.gmail.com>
Date: Tue, 6 May 2014 20:04:50 +0530
Message-ID: 
 <CAJwLGfY=ybejNMUgXhoVQa+7=K_huaF9ESWGA_sh=9ZZ7tioDA@mail.gmail.com>
Subject: Fwd: Issues with External Authenticators
From: vamsi krishna <vkrishna.p@gmail.com>
To: dev@directory.apache.org, users@directory.apache.org
Content-Type: multipart/alternative; boundary=089e0112ce187f83b104f8bc26ac
X-Virus-Checked: Checked by ClamAV on apache.org

--089e0112ce187f83b104f8bc26ac
Content-Type: text/plain; charset=UTF-8

Hello,

I am using Apache DS M18 Version. I have just updated from M10 release. I
have observed a problem in your implementation w.r.t Authentication
Interceptors. I am trying to add another authenticator, that basically uses
a backend database to perform authentication. I have written an
authentication interceptor, which is getting registered in the
AuthenticationInterceptor class.

The problem appears when you are setting the directoryService to each
authenticator. When there are multiple Authenticators with the a common
type example SIMPLE, then the following method

register( Authenticator authenticator, DirectoryService directoryService )
throws LdapException

adds only the first Authenticator to the

authenticators field

During the next iteration when you are setting the DirectoryService to the
AuthenticaionInterceptors in the method

init( DirectoryService directoryService ) throws LdapException

you are reading just the authenticators in the authenticators field. This
results in some of the AuthenticationInterceptors missing the
directoryService variable, which is very important for Querying from LDAP.

Thanks,
Vamsi

--089e0112ce187f83b104f8bc26ac
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_quote"><br><br><div dir=3D"ltr">Hello,=
<div><br></div><div>I am using Apache DS M18 Version. I have just updated f=
rom M10 release. I have observed a problem in your implementation w.r.t Aut=
hentication Interceptors. I am trying to add another authenticator, that ba=
sically uses a backend database to perform authentication. I have written a=
n authentication interceptor, which is getting registered in the Authentica=
tionInterceptor class.=C2=A0</div>

<div><br></div><div>The problem appears when you are setting the directoryS=
ervice to each authenticator. When there are multiple Authenticators with t=
he a common type example SIMPLE, then the following method</div><div><br>

</div><div><span style=3D"background-color:rgb(255,255,0)">register( Authen=
ticator authenticator, DirectoryService directoryService ) throws LdapExcep=
tion</span><br></div><div><br></div><div>adds only the first Authenticator =
to the=C2=A0</div>

<div><br></div><div><span style=3D"background-color:rgb(255,255,0)">authent=
icators </span><span style=3D"background-color:rgb(255,255,255)">field</spa=
n></div><div><span style=3D"background-color:rgb(255,255,0)"><br></span></d=
iv>

<div>During the next iteration when you are setting the DirectoryService to=
 the AuthenticaionInterceptors in the method</div><div><br></div><div><span=
 style=3D"background-color:rgb(255,255,0)">init( DirectoryService directory=
Service ) throws LdapException</span><br>

</div><div><br></div><div>you are reading just the authenticators in the au=
thenticators field. This results in some of the AuthenticationInterceptors =
missing the directoryService variable, which is very important for Querying=
 from LDAP.</div>

<div><br></div><div>Thanks,</div><div>Vamsi</div></div>
</div><br></div>

--089e0112ce187f83b104f8bc26ac--