improvements for 664032

smiklosovic · smiklosovic · commit 37d890373204 · 2025-02-24T22:38:16.000+01:00
diff --git a/base/src/main/java/org/apache/cassandra/auth/LDAPAuthenticator.java b/base/src/main/java/org/apache/cassandra/auth/LDAPAuthenticator.java
@@ -96,7 +96,7 @@ public void setup()
         {
             try
             {
-                if (!systemAuthRoles.hasAdminRole())
+                if (!systemAuthRoles.hasAdminRole(adminRole))
                 {
                     throw new IllegalStateException("Waiting for " + adminRole + " role!");
                 }
diff --git a/base/src/main/java/org/apache/cassandra/auth/LDAPCassandraRoleManager.java b/base/src/main/java/org/apache/cassandra/auth/LDAPCassandraRoleManager.java
@@ -97,7 +97,7 @@ public void setup()
                 {
                     if (dbaRole.equals("cassandra"))
                     {
-                        throw new IllegalStateException();
+                        throw new IllegalStateException("Role 'cassandra' can not log in");
                     }
                     logger.info("Role '" + dbaRole + "' can not log in, prematurely existing setup, not going to create LDAP admin role {}", ldapAdminRole);
                     return null;
@@ -181,7 +181,7 @@ public boolean canLogin(RoleResource role)
         }
         catch (RequestExecutionException e)
         {
-            logger.debug("Failed to authorize {} for login permission", role.getRoleName());
+            logger.debug("Failed to authorize " + role.getRoleName() + " for login permission ", e);
             throw new UnauthorizedException("Unable to perform authorization of login permission: " + e.getMessage());
         }
     }

Original file line number	Diff line number	Diff line change
`@@ -96,7 +96,7 @@ public void setup()`
`96`	`96`	`{`
`97`	`97`	`try`
`98`	`98`	`{`
`99`		`- if (!systemAuthRoles.hasAdminRole())`
	`99`	`+ if (!systemAuthRoles.hasAdminRole(adminRole))`
`100`	`100`	`{`
`101`	`101`	`throw new IllegalStateException("Waiting for " + adminRole + " role!");`
`102`	`102`	`}`
Original file line number	Diff line number	Diff line change
`@@ -97,7 +97,7 @@ public void setup()`
`97`	`97`	`{`
`98`	`98`	`if (dbaRole.equals("cassandra"))`
`99`	`99`	`{`
`100`		`- throw new IllegalStateException();`
	`100`	`+ throw new IllegalStateException("Role 'cassandra' can not log in");`
`101`	`101`	`}`
`102`	`102`	`logger.info("Role '" + dbaRole + "' can not log in, prematurely existing setup, not going to create LDAP admin role {}", ldapAdminRole);`
`103`	`103`	`return null;`
`@@ -181,7 +181,7 @@ public boolean canLogin(RoleResource role)`
`181`	`181`	`}`
`182`	`182`	`catch (RequestExecutionException e)`
`183`	`183`	`{`
`184`		`- logger.debug("Failed to authorize {} for login permission", role.getRoleName());`
	`184`	`+ logger.debug("Failed to authorize " + role.getRoleName() + " for login permission ", e);`
`185`	`185`	`throw new UnauthorizedException("Unable to perform authorization of login permission: " + e.getMessage());`
`186`	`186`	`}`
`187`	`187`	`}`