jackrabbit-oak-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tobias Bocanegra (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (OAK-2874) [ldap] enable listUsers to work for more than 1000 external users
Date Wed, 08 Jul 2015 16:42:05 GMT

    [ https://issues.apache.org/jira/browse/OAK-2874?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14618890#comment-14618890

Tobias Bocanegra commented on OAK-2874:

looks like apache ds doesn't support the soft-limit for search results, i.e. we can't test
the AD behaviour:

If you look at OpenLDAP documentation, they have two limits on the
server : a soft limit and a hard limit. The hard limit can't be
overruled, except by the admin user. The soft limit is the one that is
used when there is no limit set in the search request. In any case, you
won't be able to fetch more than the server's hard size limit :


In ApacheDS, we don't have any soft limit, but we have a hard limit.

AD has a different implementation, which allows you to read all the
entries, whatever the server's sizeLimit is.

> [ldap] enable listUsers to work for more than 1000 external users
> -----------------------------------------------------------------
>                 Key: OAK-2874
>                 URL: https://issues.apache.org/jira/browse/OAK-2874
>             Project: Jackrabbit Oak
>          Issue Type: Bug
>          Components: auth-ldap
>    Affects Versions: 1.2.1
>            Reporter: Nicolas Peltier
>            Assignee: Tobias Bocanegra
>             Fix For: 1.4
> LDAP servers are usually limited to return 1000 search results. Currently LdapIdentityProvider.listUsers()
doesn't take care of that limitation and prevent the client user to retrieve more.(cc [~tripod])

This message was sent by Atlassian JIRA

View raw message