does this ldap code work?

[timasmith]

Hi,

I dont have an ldap server, tested this at work without success - but I
may in the wrong server something - can you tell me if this code alone
is enough to purely authenticate against an LDAP server? Do I need
other key properties - I tried port 389 without success - I get a timed
out error.

import javax.naming.Context;
import javax.naming.NamingException;
import javax.naming.directory.*;

public class LdapAuthentication {

private String initialContext = "com.sun.jndi.ldap.LdapCtxFactory";
private String authenticationMethod = "simple";
private String providerUrl = "ldap://ldap:636";

public LdapAuthentication() {
super();
}

public void authenticate (String username, String password) throws
InvalidUserLoginException {
DirContext ctx = null;
try {
ctx = getContext(username, password);
} catch (NamingException ne) {
throw new InvalidUserLoginException(ne.toString());
} finally {
if (ctx != null) {
try {
ctx.close();
} catch (NamingException ne) {
}
}
}
}

protected DirContext getContext(String username, String password)
throws NamingException {
Hashtable env = new Hashtable();

env.put(Context.INITIAL_CONTEXT_FACTORY, initialContext);
env.put(Context.PROVIDER_URL, providerUrl);
env.put(Context.SECURITY_AUTHENTICATION,authenticationMethod);
env.put(Context.SECURITY_PRINCIPAL, username);
env.put(Context.SECURITY_CREDENTIALS, password);

DirContext ctx = new InitialDirContext(env);
return ctx;

}
}

 

[Nigel Wade]

Hi,

I dont have an ldap server, tested this at work without success - but I
may in the wrong server something - can you tell me if this code alone
is enough to purely authenticate against an LDAP server? Do I need
other key properties - I tried port 389 without success - I get a timed
out error.

import javax.naming.Context;
import javax.naming.NamingException;
import javax.naming.directory.*;

public class LdapAuthentication {

private String initialContext = "com.sun.jndi.ldap.LdapCtxFactory";
private String authenticationMethod = "simple";
private String providerUrl = "ldap://ldap:636";

the format is protocol://hostnameort. If your ldap server is called "ldap"
this should be ok. Also, remember that 636 implies that the server is
configured to handle SSL, so you will need:

env.put(Context.SECURITY_PROTOCOL, "ssl");

added to the environment.

public LdapAuthentication() {
super();
}

public void authenticate (String username, String password) throws
InvalidUserLoginException {
DirContext ctx = null;
try {
ctx = getContext(username, password);
} catch (NamingException ne) {
throw new InvalidUserLoginException(ne.toString());
} finally {
if (ctx != null) {
try {
ctx.close();
} catch (NamingException ne) {
}
}
}
}

protected DirContext getContext(String username, String password)
throws NamingException {
Hashtable env = new Hashtable();

env.put(Context.INITIAL_CONTEXT_FACTORY, initialContext);
env.put(Context.PROVIDER_URL, providerUrl);
env.put(Context.SECURITY_AUTHENTICATION,authenticationMethod);
env.put(Context.SECURITY_PRINCIPAL, username);
env.put(Context.SECURITY_CREDENTIALS, password);

The SECURITY_CREDENTIALS should be set to a byte array, so use
password.getBytes() here.

DirContext ctx = new InitialDirContext(env);
return ctx;

}
}

Appart from those couple of points, it looks ok.