RFR: 8275535: Retrying a failed authentication on multiple LDAP servers can lead to users blocked
Daniel Fuchs
dfuchs at openjdk.java.net
Wed Feb 9 15:43:18 UTC 2022
On Wed, 20 Oct 2021 13:35:22 GMT, Martin Balao <mbalao at openjdk.org> wrote:
> I'd like to propose a fix for JDK-8275535. This fix reverts the behavior to the state previous to JDK-8160768, where an authentication failure stops from trying other LDAP servers with the same credentials [1]. After JDK-8160768 we have 2 possible loops to stop: the one that iterates over different URLs and the one that iterates over different endpoints (after a DNS query that returns multiple values).
>
> No test regressions observed in jdk/com/sun/jndi/ldap.
>
> --
> [1] - https://hg.openjdk.java.net/jdk/jdk/rev/a609d549992a#l2.137
Is the new behavior something that could be tested with a new non regression test?
See existing tests in `test/jdk/com/sun/jndi/ldap`
-------------
PR: https://git.openjdk.java.net/jdk/pull/6043
More information about the core-libs-dev
mailing list