directory-fortress mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Patrick Brunmayr <p.brunm...@linzag.at>
Subject Re: assertContext detected null entity for method [org.apache.directory.fortress.core.impl.UserP.createSession]
Date Tue, 11 Oct 2016 13:07:30 GMT
Yeah i saw the discussion. Didn't know this questions raises that kind of attention but its
very interesting what kind of thoughts and ideas are behind this decision.

Am 11.10.2016 um 15:05 schrieb Shawn McKinney:




On Oct 11, 2016, at 2:17 AM, Emmanuel Lécharny <elecharny@gmail.com><mailto:elecharny@gmail.com>
wrote:

Le 11/10/16 à 08:20, Patrick Brunmayr a écrit :


Ah that makes sense but its strange. What about none ASCII chars ? How
to treat UTF-8 special chars. Arent't they allowed

in LDAP ?



LDAP userPassword are OctetString, ie any byte from 0x00 to 0xFF. So to
speak, a String does not fit to store a password. Now, I do think that
we should store the password as a String representation of the password
using an hex form (ie, 2 chars per byte).



Backing up just a bit.  The char array (as previously discussed) is how the password is stored
in memory (inside embedded fortress processes running in jvm) and how it will be converted
into xml and transmitted over the wire between the fortress-rest sever and its client.  It
would support any character set that is normally supported by that data types via JAXB (Java’s
to and from XML parser) and I’m going to assume UTF-8 is included.

The LDAP representation of that String is an entirely different matter that is related to
but separated from this discussion.

--
Patrick Brunmayr
LINZ AG TELEKOM
Infrastruktur & Netzwerktechnik
Internet Services

Die LINZ AG TELEKOM ist ein Geschäftsbereich der LINZ STROM GmbH
für Energieerzeugung, -handel, -dienstleistungen und Telekommunikation.

4021 Linz,  Wiener Straße 151, Austria
Tel.:        +43(0)732/3400-5639
Fax:        +43(0)732/3400-155639
E-Mail:    p.brunmayr@linzag.at<mailto:p.brunmayr@linzag.at>
Internet:  www.linzag-telekom.at<http://www.linzag-telekom.at>

FN 199533 g des Landesgerichtes Linz
Zertifiziert nach:
EN ISO   9001 Qualitätsmanagement (QM)
OHSAS 18001 Arbeitsschutzmanagementsystem
ISO/IEC 27001 Informationssicherheits-Managementsystem (ISMS)




LINZ AG für Energie, Telekommunikation, Verkehr und Kommunale Dienste
A-4021 Linz, Wiener Straße 151, Postfach 1300, Tel. +43/732/3400-0, E-Mail: info@linzag.at



Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message