How to implement Spring Security Ldap authentication using the configurer class correctly? -

-

hi i'm trying implement spring's ldap authentication using websecurityconfigureradapter class.

so far can authenticate through in memory method , corp's ldap server, latter method i'm able authenticate if pass hardcoded userdn , password when create new context, if don't create new context or don't put userdn , password, jvm throws me:

caused by: javax.naming.namingexception: [ldap: error code 1 - 000004dc: ldaperr: dsid-0c0906e8, comment: in order perform operation successful bind must completed on connection., data 0, v1db1\u0000]; remaining name: '/'

my question is, how can user password , userdn login form can put in context? if not possible how can context password , userdn are?

this code have:

@configuration @enablewebmvcsecurity public class websecurityconfig extends websecurityconfigureradapter {      @autowired     public void configureglobal(authenticationmanagerbuilder auth) throws exception {          auth.ldapauthentication().usersearchfilter("(&(objectclass=user)(samaccountname={0}))")           .groupsearchfilter("(&(memberof:1.2.840.113556.1.4.1941:=cn=dl - dc859 - middleware,ou=dyn,ou=dist,ou=security groups,ou=pop,dc=pop,dc=corp,dc=local))")           .contextsource(getldapcontextsource());     }      private ldapcontextsource getldapcontextsource() throws exception {         ldapcontextsource cs = new ldapcontextsource();         cs.seturl("ldap://tcp-prd.pop.corp.local:389");         cs.setbase("dc=pop,dc=corp,dc=local");         cs.setuserdn("t8951435@pop.corp.local");         cs.setpassword("mypassword");         cs.afterpropertiesset();         return cs;     }      @override     protected void configure(httpsecurity http) throws exception {         http.authorizerequests()             .antmatchers("/resources/**").permitall()             .anyrequest().authenticated()             .and()             .formlogin()             .loginpage("/login")             .permitall();          }  }

thank you.

i've figured out this post. still don't know how set group filters, @ least can bind server.

 @bean  public activedirectoryldapauthenticationprovider activedirectoryldapauthenticationprovider() {      activedirectoryldapauthenticationprovider provider = new activedirectoryldapauthenticationprovider("pop.corp.local",               "ldap://tcp-prd.pop.corp.local:389");         provider.setconvertsuberrorcodestoexceptions(true);         provider.setuseauthenticationrequestcredentials(true);         return provider;  }  @bean public loggerlistener loggerlistener() {     return new loggerlistener(); }   @override protected void configure(authenticationmanagerbuilder auth) throws exception {     auth.authenticationprovider(activedirectoryldapauthenticationprovider()); }      @override protected void configure(httpsecurity http) throws exception {     http         .authorizerequests()             .antmatchers("/resources/**").permitall()             .anyrequest().authenticated()             .and()         .formlogin()             .loginpage("/login")             .permitall();      }

edit: found out how filter groups. turns out added setsearchfilter() method in activedirectoryldapauthenticationprovider class v3.2.6. using older version never knew this. made copy of class method , created buildfilter method create filter string passed setsearchfilter.


Comments

Post a Comment

Popular posts from this blog

Java 3D LWJGL collision -

-
i making 3d java game lwjgl library, , wondering how add collision detection, player not go through models. i using obj models. here objloader class, loads models: package renderengine; import java.io.bufferedreader; import java.io.file; import java.io.filenotfoundexception; import java.io.filereader; import java.util.arraylist; import java.util.list; import models.rawmodel; import org.lwjgl.util.vector.vector2f; import org.lwjgl.util.vector.vector3f; public class objloader { public static rawmodel loadobjmodel(string filename, loader loader){ filereader fr = null; try { fr = new filereader(new file("res/"+filename+".obj")); } catch (filenotfoundexception e) { system.err.println("couldn't load file!"); e.printstacktrace(); } bufferedreader reader = new bufferedreader(fr); string line; list<vector3f> vertices = new arraylist<vector3f...
Read more

spring - SubProtocolWebSocketHandler - No handlers -

-
i have ugly error during deploying spring app on jboss. 18:11:16,025 error [org.apache.catalina.core.containerbase.[jboss.web].[default-host].[/consumer]] (msc service thread 1-7) exception sending context initialized event listener instance of class org.springframework.web.context.contextloaderlistener: org.springframework.context.applicationcontextexception: failed start bean 'subprotocolwebsockethandler'; nested exception java.lang.illegalargumentexception: no handlers @ org.springframework.context.support.defaultlifecycleprocessor.dostart(defaultlifecycleprocessor.java:176) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor.access$200(defaultlifecycleprocessor.java:51) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.springframework.context.support.defaultlifecycleprocessor$lifecyclegroup.start(defaultlifecycleprocessor.java:346) [spring-context-4.1.3.release.jar:4.1.3.release] @ org.s...
Read more

methods - python can't use function in submodule -

-
my folder structure this: pythonstuff/ program.py modulea/ __init__.py foo.py bar.py here's code bar.py : def hello(): print("hello, world!") here's code program.py : #!/usr/bin/env python3 modulea import bar bar.hello() i run $ python3 program.py somehow error: file "program.py", line 3, in <module> bar.hello() attributeerror: 'module' object has no attribute 'hello' edit: __init__.py file empty. edit2: after trying realized had bar.py in root directory contained hello() method. bar.py in modulea/ directory empty. add it import os __all__ = [] module in os.listdir(os.path.dirname(__file__)): if module != '__init__.py' , module[-3:] == '.py': __all__.append(module[:-3]) the init .py files required make python treat directories containing packages; done prevent directories common name, such string, unintentionally hiding v...
Read more