Skip to content

Modify Password Extended Operation Support #5922

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Oct 15, 2018
Merged

Modify Password Extended Operation Support #5922

merged 3 commits into from
Oct 15, 2018

Conversation

jzheaux
Copy link
Contributor

@jzheaux jzheaux commented Oct 4, 2018

Issue: gh-3392

@jzheaux jzheaux requested a review from rwinch October 4, 2018 22:38
@jzheaux jzheaux added this to the 5.1.1 milestone Oct 5, 2018
@jzheaux jzheaux added in: ldap An issue in spring-security-ldap type: enhancement A general enhancement labels Oct 5, 2018
rwinch
rwinch requested changes Oct 10, 2018
View reviewed changes
ldap/spring-security-ldap.gradle
testCompile 'org.slf4j:jcl-over-slf4j'
testCompile 'org.slf4j:slf4j-api'
}

integrationTest {
include('**/ApacheDSServerIntegrationTests.class', '**/ApacheDSEmbeddedLdifTests.class')
include('**/ApacheDSServerIntegrationTests.class',
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this actually necessary since we have a separate source folder?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The reason, as far as I can tell, is because ApacheDSServerIntegrationTests uses the @Suite annotation to invoke other dependent integration tests (in the same integration-test directory). If the tests are run independent from this orchestrating test, then they fail because they are dependent on the server that ApacheDSServerIntegrationTests starts up.

The password-modify tests are not written in this way, but need to be included in the list since we are already using the include directive.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not really a fan of it either. If you think it valuable, I'd recommend a ticket to rewrite the ldap tests to not depend on a parent integration test. Then we could remove this include.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ahh yes thanks for the reminder about that. Yes let's do that as a separate ticket.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Done - #5942

rwinch
rwinch reviewed Oct 10, 2018
View reviewed changes
ldap/src/main/java/org/springframework/security/ldap/userdetails/LdapUserDetailsManager.java Outdated
* By default, {@code usePasswordModifyExtensionOperation} is false.
*
* @param usePasswordModifyExtensionOperation
* @since 5.1.1
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We should backport this to 5.0.x and 4.2.x too so we need to change this to 4.2.9

@rwinch
Copy link
Member

rwinch commented Oct 12, 2018

@jzheaux This is ready to merge. Can you please merge and backport it to 4.2.x and 5.0.x?

@jzheaux jzheaux force-pushed the gh-3392 branch 3 times, most recently from d213061 to f61c856 Compare October 15, 2018 17:32
@jzheaux
Polish UnboundIdContainerTests
58afa4c 
Basic server startup test now asserts a successful server startup
instead of a failed one.

Issue: spring-projectsgh-5920
@jzheaux
UnboundIdContainer Random Port Support
7870786 
Setting a port of 0 will now induce the container to select a random
port.

Fixes: spring-projectsgh-5920
@jzheaux
Password Modify Extended Operation Support
7dedc0d 
LdapUserDetailsManager can be configured to either use direct
attribute modification or the LDAP Password Modify Extended Operation
to change a user's password.

Fixes: spring-projectsgh-3392
@jzheaux jzheaux merged commit 7269aac into spring-projects:master Oct 15, 2018
@jzheaux jzheaux deleted the gh-3392 branch October 15, 2018 18:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rwinch rwinch rwinch approved these changes

Assignees
No one assigned
Labels
in: ldap An issue in spring-security-ldap type: enhancement A general enhancement
Projects
None yet
Milestone
5.1.1
Development

Successfully merging this pull request may close these issues.
2 participants
@jzheaux @rwinch