Catch public exceptions when creating the LDAP context in WSGI.

Made specifically for the case where S4U2Proxy delegation fails. https://fedorahosted.org/freeipa/ticket/2414
author: Rob Crittenden <rcritten@redhat.com> 2012-02-23 17:25:53 -0500
committer: Martin Kosek <mkosek@redhat.com> 2012-02-24 16:53:24 +0100
commit: b241e828a9b47a6c706a3ac8378fd6e57b8202fb (patch)
tree: 3a4cb913043d3af6a580e2ad08cc133b21eabe83 /ipaserver/plugins/ldap2.py
parent: 1c898e388b4777e0dfd0dd7577bbb4971e308605 (diff)
download: freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.tar.gz
freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.tar.xz
freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/ipaserver/plugins/ldap2.py b/ipaserver/plugins/ldap2.py
index 0a76670d9..ffe2fba8a 100644
--- a/ipaserver/plugins/ldap2.py
+++ b/ipaserver/plugins/ldap2.py
@@ -241,6 +241,9 @@ def _handle_errors(e, **kw):
     except _ldap.SUCCESS:
         pass
     except _ldap.LDAPError, e:
+        if 'NOT_ALLOWED_TO_DELEGATE' in info:
+            raise errors.ACIError(info="KDC returned NOT_ALLOWED_TO_DELEGATE")
+        root_logger.info('Unhandled LDAPError: %s' % str(e))
         raise errors.DatabaseError(desc=desc, info=info)
author	Rob Crittenden <rcritten@redhat.com>	2012-02-23 17:25:53 -0500
committer	Martin Kosek <mkosek@redhat.com>	2012-02-24 16:53:24 +0100
commit	b241e828a9b47a6c706a3ac8378fd6e57b8202fb (patch)
tree	3a4cb913043d3af6a580e2ad08cc133b21eabe83 /ipaserver/plugins/ldap2.py
parent	1c898e388b4777e0dfd0dd7577bbb4971e308605 (diff)
download	freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.tar.gz freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.tar.xz freeipa-b241e828a9b47a6c706a3ac8378fd6e57b8202fb.zip