7 Replies Latest reply on Sep 19, 2001 3:54 AM by Lachlan Macpherson

    LdapLoginModule.java

    Lachlan Macpherson Newbie

      Hi there,

      I was wondering if there is any reason why the match statement of the InitialLdapContext search looks for only the username and not the fully qualified userDN?

       String roleAttrName = (String) options.get(ROLE_ATTRIBUTE_ID_OPT);
       if( roleAttrName == null )
       roleAttrName = "roles";
       BasicAttributes matchAttrs = new BasicAttributes(true);
       matchAttrs.put(uidAttrName, username);
       String[] roleAttr =
       {roleAttrName};
       try
       {
       NamingEnumeration answer = ctx.search(rolesCtxDN, matchAttrs, roleAttr);
      


      My roles are set up with a list of uniquemembers which are fully qualified DNs (ie. uniquemember=uid=fred, ou=People, o=somewhere.co.uk). Is this not the normal way it is done?