[ZEPPELIN-5457] I can't get role with ldap - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 0.9.0
Fix Version/s: None
Component/s: Core
Labels:
None

Description

ldapRealm = org.apache.zeppelin.realm.LdapRealm

#search base for ldap groups (only relevant for LdapGroupRealm):
#ldapRealm.contextFactory.environment[ldap.searchBase] = dc=join,dc=com
ldapRealm.searchBase = dc=join,dc=com
ldapRealm.contextFactory.url = ldap://tidb4ser:10389
ldapRealm.userDnTemplate = uid={0},ou=people,dc=join,dc=com
ldapRealm.contextFactory.authenticationMechanism = simple
ldapRealm.contextFactory.systemUsername = uid=ldapadmin,ou=people,dc=join,dc=com
ldapRealm.contextFactory.systemPassword = 00000
ldapRealm.userSearchBase = ou=people,dc=join,dc=com
ldapRealm.groupSearchBase = ou=group,dc=join,dc=com
#ldapRealm.userSearchAttributeName = uid
ldapRealm.groupObjectClass= posixGroup
ldapRealm.memberAttribute= memberUid
#ldapRealm.memberAttributeValueTemplate= cn={0},ou=group,dc=join,dc=com
ldapRealm.rolesByGroup = admin: admin
ldapRealm.groupSearchEnableMatchingRuleInChain = false
ldapRealm.groupSearchFilter = (&(objectClass=posixGroup)(memberUid={0},ou=peopel,dc=join,dc=com))

but in log

{"status":"OK","message":"","body":{"principal":"jztwk","ticket":"64500a03-5662-44d2-a969-e77f50decc57","roles":"[]"}}

role is null

in my application

I sure (&(objectClass=posixGroup)(memberUid={0})) is OK

EntryCursor result1 = connection.search(
"ou=group,dc=join,dc=com",
"(&(objectClass=posixGroup)(memberUid=jztwk))",
SearchScope.SUBTREE
);

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: ighack

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 12/Jul/21 09:06

Updated:: 19/Jul/21 03:00