Bug 22948

Summary: jndi realm w/o connectionname, connectionpassword
Product: Tomcat 4 Reporter: Bernhard Huber <berni_huber>
Component: Catalina:ModulesAssignee: Tomcat Developers Mailing List <dev>
Status: RESOLVED DUPLICATE    
Severity: enhancement    
Priority: P3    
Version: 4.1.24   
Target Milestone: ---   
Hardware: All   
OS: other   

Description Bernhard Huber 2003-09-05 19:16:45 UTC 
hi,
I was using JNDIRealm without specifying connectionname, and connection password.
As I understood the implementation it is impossible in this case to query the
roles, as only in bindAsUser there is an attempt to search the LDAP with the
userid/credentials.
Searching roles is always done using connectioname/connecionpassword.

I fixed this by reusing code-snippets from bindAsUsers, and it worked well.

regards
Comment 1 seth.leger 2008-03-20 07:01:25 UTC 
This is a duplicate of bug 19444. Both bugs point out that the user credentials used during the bind operation are not reused when searching for roles.

*** This bug has been marked as a duplicate of bug 19444 ***