gitHub #13426 - OC9.0.2 - Users in multiple ldap groups only show up in one group

Ask all your questions regarding OC 9.0 Please read the Support Forum Rules
Forum rules
The forums were migrated over to https://central.owncloud.org which is based on the forum software Discourse. The forums here is put into read-only mode starting from today.

More background information about this move and the reasoning behind it is available in this blogpost:

https://daniel.molkentin.net/2016/07/20 ... d-central/
clvstle
Newbie
Posts: 4
Joined: Sat Sep 05, 2015 3:45 am
ownCloud version: 8.1.1
Webserver: nginx
Database: MySQL
OS: Linux
PHP version: 5.6.6

gitHub #13426 - OC9.0.2 - Users in multiple ldap groups only show up in one group

Postby clvstle » Thu Jun 02, 2016 7:05 am

Steps to reproduce
1. Created 3 groups in Server 2012R2 AD [GROUP 1, GROUP 2, GROUP 3]
2. Added 5 same users to all groups
3. Set OC LDAP to search for group (it finds the groups and all 180 of my users - including users that are in the groups)
4. Go to OC > Admin > Users > and view GROUP 1, GROUP 2, GROUP 3


Expected behaviour
I should be seeing the 5 users in each group

Actual behaviour
I see 5 users in GROUP 1, but not in GROUP 2 or GROUP 3. If I remove 2 users, I see the 2 removed users in GROUP 2 or GROUP 3 and the other 3 stays in GROUP 1

Server configuration
Operating system: Linux Debian 8.5 - Jessie
Web server: NGINX 1.6.2
Database: MySQL 5.5.49-0+deb8u1
PHP version: 5.6.20-0+deb8u1
ownCloud version (see ownCloud admin page): 9.0.2
Updated from an older ownCloud or fresh install: updated from older version 8.2.2
ownCloud log (data/owncloud.log):

Code: Select all

Debug   user_ldap   Ready for a paged search   2016-06-02T00:00:22-05:00
Debug   user_ldap   initializing paged search for Filter (&(|(objectclass=group))) base Array ( [0] => cn=GROUP 1,ou=owncloud server,ou=owncloud group,dc=domain,dc=com ) attr Array ( [0] => member ) limit 500 offset 0      2016-06-02T00:00:22-05:00
Error   PHP   ldap_control_paged_result_response(): Result is: No such object (32) at /var/www/owncloud/apps/user_ldap/lib/ldap.php#70   2016-06-02T00:00:22-05:00
Debug   user_ldap   initializing paged search for Filter objectclass=* base Array ( [0] => DC=domain,dc=com ) attr Array ( [0] => dn ) limit 500 offset 500   2016-06-02T00:00:29-05:00
Debug   user_ldap   Ready for a paged search   2016-06-02T00:00:29-05:00
Debug   user_ldap   initializing paged search for Filter objectclass=* base Array ( [0] => DC=domain,dc=com ) attr Array ( [0] => dn ) limit 500 offset 0   2016-06-02T00:00:29-05:00
Debug   user_ldap   Count filter: objectclass=*   2016-06-02T00:00:29-05:00
Debug   user_ldap   No DN found for GROUP 1(group) on dc.domain.com   2016-06-02T00:00:29-05:00
Debug   user_ldap   No DN found for GROUP 2(group) on dc.domain.com   2016-06-02T00:00:29-05:00
Debug   user_ldap   No DN found for GROUP 3(group) on dc.domain.com   2016-06-02T00:00:29-05:00
Debug   user_ldap   No DN found for files_external on dc.domain.com


Special configuration (external storage, external authentication, reverse proxy, server-side-encryption):
3x External Storage - SMB/CIFS - GROUP 1 has access to an external storage, GROUP 2 has access to another external storage, GROUP 3 has access to the third external storage.

Whichever GROUP has the user, those users can see the External Storage just fine.

-------update 1
It seems this is an existing issue and @ichigami also mentioned he/she patched it - but i'm not seeing a patch
https://github.com/owncloud/core/issues/13426

------update 2
My fault, the solution was posted at the beginning of the github thread. In version 9.0.2 - the location of group_ldap.php was located in owncloud/apps/user_ldap/group_ldap.php - adding the 500 fixed the issue. I had to clear the existing cache and re-populate the permissions.

This would be awesome if it would be implemented in future updates!

Thanks @PeteSSS for posting the work-around for the time being!

tflidd
Forum Moderator
Posts: 7159
Joined: Sat Dec 07, 2013 7:27 pm
ownCloud version: 8.2.3
Webserver: Apache
Database: MySQL
OS: Linux

Re: gitHub #13426 - OC9.0.2 - Users in multiple ldap groups only show up in one group

Postby tflidd » Fri Jun 03, 2016 10:47 am

Please push your feedback to github. The developers don't read in here.


  • Similar Topics
    Replies
    Views
    Last post

Return to “ownCloud Server 9.0”

Who is online

Users browsing this forum: No registered users and 3 guests