import java.util.Map;
import java.util.Set;
+import javax.naming.InvalidNameException;
import javax.naming.ldap.LdapName;
import javax.security.auth.Subject;
import javax.security.auth.callback.Callback;
// // TODO locale?
} else if (sharedState.containsKey(CmsAuthUtils.SHARED_STATE_NAME)
&& sharedState.containsKey(CmsAuthUtils.SHARED_STATE_CERTIFICATE_CHAIN)) {
- // NB: required by Basic http auth
- username = (String) sharedState.get(CmsAuthUtils.SHARED_STATE_NAME);
+ String certificateName = (String) sharedState.get(CmsAuthUtils.SHARED_STATE_NAME);
+ LdapName ldapName;
+ try {
+ ldapName = new LdapName(certificateName);
+ } catch (InvalidNameException e) {
+ e.printStackTrace();
+ return false;
+ }
+ username = ldapName.getRdn(ldapName.size()-1).getValue().toString();
certificateChain = (X509Certificate[]) sharedState.get(CmsAuthUtils.SHARED_STATE_CERTIFICATE_CHAIN);
password = null;
} else if (singleUser) {