[JOC-350] Login with domain can fail during roles mapping - SOS JIRA

XML

Word

Printable

Details

Type: Fix
Status: Released (View Workflow)
Priority: Major
Resolution: Fixed
Affects Version/s: 1.11.5
Fix Version/s: 1.11.6, 1.12
Component/s: JOC Cockpit Web Service
Labels:
None

Description

Current Situation

When logging in with username@doman or domain\username the username will be extracted and will be used for the substitution in the search filters e.g. ldapRealm.userSearchFilter = (uid=%s)

When not the username but the user@domain is stored in the LDAP directory, the searchfilter will have no result.

Example:
Login: user@domain
search filter: ldapRealm.userSearchFilter = (uid=%s)
Result: (uid=user)

Desired Behaviour

It should be possible to use the normalized login or the full username.

Example:
Login: user@domain
search filter: ldapRealm.userSearchFilter = (uid=%s)
Result: (uid=user)

Workaround

When your sAMAcountName contains the domain, define the searchfilter like this:
ldapRealm.userSearchFilter (uid=%s@domain)

Please note that you can change this when using 1.11.6 to
ldapRealm.userSearchFilter (uid=^s)

Attachments

Activity

People

Assignee:: Uwe Risse

Reporter:: Uwe Risse

Approver:: Santiago Aucejo Petzoldt

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 16 November 2017 12:20

Updated:: 01 February 2018 21:20

Resolved:: 17 November 2017 17:56