-
Bug
-
Resolution: Unresolved
-
Medium
-
None
-
None
-
None
-
None
If you uncomment the ODLJndiLdapRealmAuthNOnly section in the aaa-app-config.xml, it fails to load:
2018-03-20T15:57:49,446 | ERROR | Blueprint Extender: 3 | EnvironmentLoader | 160 - org.apache.shiro.web - 1.3.2 | Shiro environment initialization failed org.apache.shiro.config.ConfigurationException: Property 'searchBase' does not exist for object of type org.opendaylight.aaa.shiro.realm.ODLJndiLdapRealmAuthNOnly.
I tested this running the odl-aaa-shiro SFT. In fact there's 3 properties that fail:
<main> <pair-key>ldapRealm.searchBase</pair-key> <pair-value>dc=DOMAIN,dc=TLD</pair-value> </main> <main> <pair-key>ldapRealm.groupRolesMap</pair-key> <pair-value>"person":"admin", "organizationalPerson":"user"</pair-value> </main> <main> <pair-key>ldapRealm.ldapAttributeForComparison</pair-key> <pair-value>objectClass</pair-value> </main>
I assume it looks for setters on the class for the properties. There are no setters in the DefaultLdapRealm base class for those properties.
This XML has existed for a while - perhaps a prior version of the shiro lib had those settings. Not sure if there's another way to set them or if they're even needed anymore.