4 comments on “Container based authentication with JSPWiki, GlassFish and OpenDJ

  1. Nice! I am trying to do the same thing, almost same settings but I keep getting the same NPE from Glassfish when trying to do a group search, no matter what the group-search-filter is.

    Error during LDAP search with filter [member=cn=cdamen,ou=Users,o=xxxx].|#]

    [#|2012-02-13T18:12:07.609+0100|WARNING|glassfish3.1.1|javax.enterprise.system.core.security.com.sun.enterprise.security.auth.realm|_ThreadID=22;_ThreadName=Thread-2;|SEC1000: Caught exception.
    at com.sun.enterprise.security.auth.realm.ldap.LDAPRealm.groupSearch(LDAPRealm.java:705)
    at com.sun.enterprise.security.auth.realm.ldap.LDAPRealm.findAndBind(LDAPRealm.java:497)

    Did you have the same problem or did it work out of the box?

    Tried all these filters

    — (&(objectClass=groupOfNames)(member=%d))
    — (&(member=%d))
    — member=%d

    Kind regards,

  2. Pingback: Enable secure LDAP with JSPWiki for container based authentication | Dave Koelmeyer

  3. Dave,,

    Thanks a lot for this great effort, i have been having similar trail and error work
    to get a working solution with LDAP and GFish, i can say its quite flaky in some cases and tricky in others..

    just wondering if you have plans to extend or update this work here?
    cuz i have noticed in some cases that SSO should also be enabled in the GFish domain otherwise,
    some browsers will have issues with handling the cookies and redirection – strangely enough -.

    as well its probably work mentioning another cases for example when Referral is enabled in LDAP, where we have to enable/switch on the follow referral switch for Gfish.

    and not forgetting replication handling, where/when we have two or more ldap replicas,,

    in the end, thanks a lot for this good work, and keep it up..
    all the best

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s