https://issues.apache.org/bugzilla/show_bug.cgi?id=49785
Summary: Enabling TLS for JNDIRealm
Product: Tomcat 7
Version: trunk
Platform: All
OS/Version: All
Status: NEW
Severity: enhancement
Priority: P2
Component: Catalina
AssignedTo: dev@tomcat.apache.org
ReportedBy: felix.schumac...@internetallee.de
Created an attachment (id=25916)
--> (https://issues.apache.org/bugzilla/attachment.cgi?id=25916)
InitialContextFactory which produces TLS enabled LdapContext instances
To enable TLS for LDAP inside JNDIRealm one has to either patch JNDIRealm
directly and introduce another state variable to hold TLS-state - and thus make
introduction of pooling harder, or use a factory which produces TLS enabled
DirContext instances.
Such a factory is attached. It can be configured by specifying a contextFactory
in JNDIRealm config:
<Realm
...
contextFactory="org.apache.catalina.realm.LdapTlsContextFactory"
...
/>
I think it would be a good idea to add a parameter startTLS to JNDIRealm, which
would automatically use the above TLS-ContextFactory. If wanted, I could supply
a patch.
(the patch is against tomcat 6.0.x trunk, but I think it will apply fine to
trunk too)
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org
