JBOSS-EAP 8 resolving urlContext as null for LDAP Domains
Issue
- Application code resolves urlContext as null when using DnsContextFactory to search for LDAP domains.
- JBOSS-EAP 8 with SPNEGO and Kerberos does not resolve urlContext for LDAP Domains in SRV records.
2024-08-27 14:08:22,572 TRACE [org.wildfly.security] (default task-1) SPNEGO: org.wildfly.security.http.HttpAuthenticationException: ELY05053: Callback handler failed for unknown reason
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.http.spnego.SpnegoAuthenticationMechanism.evaluateRequest(SpnegoAuthenticationMechanism.java:187)
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.http.util.SetMechanismInformationMechanismFactory$1.evaluateRequest(SetMechanismInformationMechanismFactory.java:119)
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.http.util.SocketAddressCallbackServerMechanismFactory$1.evaluateRequest(SocketAddressCallbackServerMechanismFactory.java:82)
Caused by: java.io.IOException: ELY01156: Cannot obtain a credential from a security factory
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.credential.source.CredentialSource$4.getCredential(CredentialSource.java:327)
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.auth.server.ServerAuthenticationContext$1.handleOne(ServerAuthenticationContext.java:1021)
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.auth.server.ServerAuthenticationContext$1.handle(ServerAuthenticationContext.java:873)
at org.wildfly.security.elytron-base@2.2.6.Final-redhat-00001//org.wildfly.security.auth.server.SecurityIdentityServerMechanismFactory$SecurityIdentityCallbackHandler.handle(Security
Caused by: KrbException: Cannot locate KDC
at java.security.jgss/sun.security.krb5.Config.getKDCList(Config.java:1275)
at java.security.jgss/sun.security.krb5.KdcComm.send(KdcComm.java:217)
at java.security.jgss/sun.security.krb5.KdcComm.send(KdcComm.java:199)
at java.security.jgss/sun.security.krb5.KrbAsReqBuilder.send(KrbAsReqBuilder.java:345)
at java.security.jgss/sun.security.krb5.KrbAsReqBuilder.action(KrbAsReqBuilder.java:498)
at jdk.security.auth/com.sun.security.auth.module.Krb5LoginModule.attemptAuthentication(Krb5LoginModule.java:761)
... 63 more
Caused by: KrbException: Generic error (description in e-text) (60) - Unable to locate KDC for realm TULLVERKET.SE
at java.security.jgss/sun.security.krb5.Config.getKDCFromDNS(Config.java:1372)
at java.security.jgss/sun.security.krb5.Config.getKDCList(Config.java:1248)
Environment
- Red Hat JBOSS Enterprise Application Platform
- 8.0.0
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
