mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: 10a819ab | patch | commit | show whitespace
jvergara
18.52.2009 1dd534c2b6ad1607ce6b5f4d6951cbfcebdedd56 
Fix for issue 4295 (Issues with dsreplication interactive mode)
The following changes complete the previous fix done for this bug, if we were using dsreplication enable on the installation of one of the servers, the interactive mode failed if the option --trustAll was NOT specified.
3 files modified
70 ■■■■■ changed files
opends/src/server/org/opends/server/tools/dsreplication/ReplicationCliMain.java 4 ●●●● patch | view | raw | blame | history
opends/src/server/org/opends/server/util/cli/ConsoleApplication.java 60 ●●●●● patch | view | raw | blame | history
opends/src/server/org/opends/server/util/cli/LDAPConnectionConsoleInteraction.java 6 ●●●● patch | view | raw | blame | history 
 opends/src/server/org/opends/server/tools/dsreplication/ReplicationCliMain.java


@@ -1163,7 +1163,7 @@




        if (!error)


        {


          ctx2 = createInitialLdapContextInteracting(ci);


          ctx2 = createInitialLdapContextInteracting(ci, true);




          if (ctx2 == null)


          {


@@ -2315,7 +2315,7 @@




        if (!error)


        {


          ctxDestination = createInitialLdapContextInteracting(ci);


          ctxDestination = createInitialLdapContextInteracting(ci, true);




          if (ctxDestination == null)


          {




 opends/src/server/org/opends/server/util/cli/ConsoleApplication.java


@@ -863,6 +863,25 @@


  protected InitialLdapContext createInitialLdapContextInteracting(


      LDAPConnectionConsoleInteraction ci) throws ClientException


  {


    return createInitialLdapContextInteracting(ci, isInteractive() &&


        ci.isTrustStoreInMemory());


  }




  /**


   * Creates an Initial LDAP Context interacting with the user if the


   * application is interactive.


   * @param ci the LDAPConnectionConsoleInteraction object that is assumed


   * to have been already run.


   * @param promptForCertificate whether we should prompt for the certificate


   * or not.


   * @return the initial LDAP context or <CODE>null</CODE> if the user did


   * not accept to trust the certificates.


   * @throws ClientException if there was an error establishing the connection.


   */


  protected InitialLdapContext createInitialLdapContextInteracting(


      LDAPConnectionConsoleInteraction ci,


      boolean promptForCertificate) throws ClientException


  {


    // Interact with the user though the console to get


    // LDAP connection information


    String hostName = ConnectionUtils.getHostNameForLdapUrl(ci.getHostName());


@@ -889,7 +908,7 @@


        }


        catch (NamingException e)


        {


          if ( isInteractive() && ci.isTrustStoreInMemory())


          if (promptForCertificate)


          {


            OpendsCertificateException oce = getCertificateRootException(e);


            if (oce != null)


@@ -919,7 +938,7 @@


          }


          if (e.getCause() != null)


          {


            if (!ci.isTrustStoreInMemory() &&


            if (!isInteractive() &&


                !ci.isTrustAll())


            {


              if (getCertificateRootException(e) != null ||


@@ -964,7 +983,7 @@


        }


        catch (NamingException e)


        {


          if ( isInteractive() && ci.isTrustStoreInMemory())


          if (promptForCertificate)


          {


            OpendsCertificateException oce = getCertificateRootException(e);


            if (oce != null)


@@ -1021,41 +1040,6 @@


        }


        catch (NamingException e)


        {


          if ( isInteractive() && ci.isTrustStoreInMemory())


          {


            OpendsCertificateException oce = getCertificateRootException(e);


            if (oce != null)


            {


              String authType = null;


              if (trustManager instanceof ApplicationTrustManager)


              {


                ApplicationTrustManager appTrustManager =


                  (ApplicationTrustManager)trustManager;


                authType = appTrustManager.getLastRefusedAuthType();


              }


              if (ci.checkServerCertificate(oce.getChain(), authType,


                  hostName))


              {


                // If the certificate is trusted, update the trust manager.


                trustManager = ci.getTrustManager();




                // Try to connect again.


                continue;


              }


              else


              {


                // Assume user canceled.


                return null;


              }


            }


            else


            {


              Message message = ERR_DSCFG_ERROR_LDAP_FAILED_TO_CONNECT.get(


                  hostName, String.valueOf(portNumber));


              throw new ClientException(


                  LDAPResultCode.CLIENT_SIDE_CONNECT_ERROR, message);


            }


          }


          Message message = ERR_DSCFG_ERROR_LDAP_FAILED_TO_CONNECT.get(


              hostName, String.valueOf(portNumber));


          throw new ClientException(




 opends/src/server/org/opends/server/util/cli/LDAPConnectionConsoleInteraction.java


@@ -835,8 +835,8 @@




    trustAll = secureArgsList.trustAllArg.isPresent();




    // Try to use the local instance trustore, to avoid certifacte validation


    // when both the CLI and the server are in the same instance.


    // Try to use the local instance trust store, to avoid certificate


    // validation when both the CLI and the server are in the same instance.


    if (weDontKnowTheTrustMethod) {


      if (addLocalTrustStore()) {


        weDontKnowTheTrustMethod = false;


@@ -2076,7 +2076,7 @@


 /**


  * Add the TrustStore of the administration connector of the local instance.


  *


  *  @return true if the local trustore has been added.


  *  @return true if the local trust store has been added.


  */


  private boolean addLocalTrustStore()


  {