ID: 67
Type: defect
Time: 1461274712
Change time: 1461274778
Component: Server
Severity: None
Priority: major
Owner: ligon
Reporter: ligon
Cc:
Version: latest
Milestone:
Status: accepted
Resolution: None
Summary: Need new job for LDAP access
Keywords: security
When using certificate security mode, the process of creating a capability involves calling the ldap server to obtain uid, gid, and groups. The first time this information is obtained, it is stored in the cert cache, where it remains for an hour. This is all good and works; however, the problem is that this call to the ldap server will STOP the server in its tracks until the data is obtained. So, the answer to this problem is to create a job for this situation, so the state machine processor can move on to another machine while this data is being obtained.
Ticket change
Time: 1461274778
Author: ligon
Field: status
Imported from Trac
ID: 67 Type: defect Time: 1461274712 Change time: 1461274778 Component: Server Severity: None Priority: major Owner: ligon Reporter: ligon Cc: Version: latest Milestone: Status: accepted Resolution: None Summary: Need new job for LDAP access Keywords: security
When using certificate security mode, the process of creating a capability involves calling the ldap server to obtain uid, gid, and groups. The first time this information is obtained, it is stored in the cert cache, where it remains for an hour. This is all good and works; however, the problem is that this call to the ldap server will STOP the server in its tracks until the data is obtained. So, the answer to this problem is to create a job for this situation, so the state machine processor can move on to another machine while this data is being obtained.
Ticket change Time: 1461274778 Author: ligon Field: status
accepted
Ticket change Time: 1461274778 Author: ligon Field: owner
ligon
Ticket change Time: 1461274778 Author: ligon Field: comment