You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "Dan Langford (Jira)" <ji...@apache.org> on 2023/02/21 16:36:00 UTC
[jira] [Commented] (QPID-8625) [Broker-J] ACL rules require full DN when using LDAP authentication
[ https://issues.apache.org/jira/browse/QPID-8625?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17691697#comment-17691697 ]
Dan Langford commented on QPID-8625:
------------------------------------
in case its helpful i will point out that up through v6.0.x the LDAP authentication did allow the ACL to simply haveĀ
{code:java}
ACL ALLOW danlangford ALL {code}
h4.
> [Broker-J] ACL rules require full DN when using LDAP authentication
> -------------------------------------------------------------------
>
> Key: QPID-8625
> URL: https://issues.apache.org/jira/browse/QPID-8625
> Project: Qpid
> Issue Type: Improvement
> Components: Broker-J
> Affects Versions: qpid-java-broker-9.0.0
> Reporter: Daniil Kirilyuk
> Priority: Minor
> Fix For: qpid-java-broker-9.0.1
>
>
> Currently a reference to a LDAP user in ACL rules requires full DN, e.g.:
> {code:java}
> ACL ALLOW "cn=danlangford,ou=000,ou=People,o=MyEnterprise" ALL {code}
> It would be beneficial to allow usage of a CN instead:
> {code:java}
> ACL ALLOW "cn=danlangford" ALL {code}
> or
> {code:java}
> ACL ALLOW danlangford ALL {code}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org