Bug #3354

ldap_auth is unable to resolv group membership

Added by Fabian Zimmermann over 5 years ago. Updated over 5 years ago.

Status:ClosedStart date:11/14/2014
Priority:NormalDue date:
Assignee:Javi Fontan% Done:

0%

Category:Drivers - Auth
Target version:Release 4.10.1
Resolution:fixed Pull request:
Affected Versions:OpenNebula 4.10

Description

Hi,

just tried to connect one to our openldap-system. It failed, because (our) openldap (it's a ucs - univention corporate server / samba4) isn't returning the memberOf attribute if you do not ask for.

So attached my small patch which will request the attribute.

I also added a ".uniq" to the returned grouplist to avoid useless loops.

ldap_auth.patch Magnifier - patch to request required attributes (1.12 KB) Fabian Zimmermann, 11/14/2014 07:47 AM

ldap_auth.patch Magnifier - removed debugstuff, replaced tabs (1.11 KB) Fabian Zimmermann, 11/14/2014 07:52 AM

Associated revisions

Revision a2a25673
Added by Javi Fontan over 5 years ago

bug #3354: ask for memberOf attribute in ldap auth

Patch sent by Fabian Zimmermann.

Revision 1f20b7c2
Added by Javi Fontan over 5 years ago

bug #3354: ask for memberOf attribute in ldap auth

Patch sent by Fabian Zimmermann.

(cherry picked from commit a2a25673b4e45ef5e932a633ef0fc0a7cd7a5546)

History

#1 Updated by Fabian Zimmermann over 5 years ago

#2 Updated by Ruben S. Montero over 5 years ago

  • Assignee set to Javi Fontan

#3 Updated by Javi Fontan over 5 years ago

  • Status changed from Pending to Closed
  • Resolution set to fixed

I've applied the patch and works fine. Thanks!

Also available in: Atom PDF