A bug was introduced in JNDI that affects Java versions 9+, 10, and 11. The bug will manifest as a NullPointerException
when LDAPS is used, but it affects all JNDI connections. In particular, all functions that perform bind operations will orphan an open connection and eventually exhaust resources and take down the system.
As a result of this bug, V4 has been updated to rely on an alternate LDAP client library by default. Essentially, the approach documented for V3 is applied by default unless the idp.ldaptive.provider
property is explicitly overridden.