Details
-
Bug
-
Resolution: Fixed
-
Low
-
6.1.1
-
Severity 3 - Minor
-
Description
Summary
- After LDAP synch, when adding a user to a group Bamboo does not pick up this membership automatically.
Environment
- Bamboo v6.1.1
- Windows Active Directory
- OpenDS/OpenDJ
Steps to Reproduce
Users
dc: cn=user0001,ou=users,dc=example,dc=com memberOf: cn=group0001,ou=groups,dc=example,dc=com dc: cn=user0002,ou=users,dc=example,dc=com memberOf: cn=group0002,ou=groups,dc=example,dc=com dc: cn=user0003,ou=users,dc=example,dc=com memberOf: cn=group0003,ou=groups,dc=example,dc=com dc: cn=user0004,ou=users,dc=example,dc=com memberOf: cn=group0004,ou=groups,dc=example,dc=com dc: cn=user0005,ou=users,dc=example,dc=com memberOf: cn=group0005,ou=groups,dc=example,dc=com
Groups
dc: cn=group0001,ou=groups,dc=example,dc=com member: cn=user0001,ou=users,dc=example,dc=com dc: cn=group0002,ou=groups,dc=example,dc=com member: cn=user0002,ou=users,dc=example,dc=com dc: cn=group0003,ou=groups,dc=example,dc=com member: cn=user0003,ou=users,dc=example,dc=com dc: cn=group0004,ou=groups,dc=example,dc=com member: cn=user0004,ou=users,dc=example,dc=com dc: cn=group0005,ou=groups,dc=example,dc=com member: cn=user0005,ou=users,dc=example,dc=com dc: cn=Testing Group,ou=groups,dc=example,dc=com member: cn=user0001,ou=users,dc=example,dc=com
The only member of Testing Group before Bamboo's start up was user0001
After starting up Bamboo I have:
Authenticated with username: admin
- log in to Bamboo using an administrator user from Bamboo's Internal Directory (e.g. admin)
- added user0002 to Testing Group in LDAP
- searched for the user0002 in http://localhost:8085/admin/user/viewUsers.action and the user was still member of group0002
Authenticated with username: user0002
- log in to Bamboo with user0002 in attempt to refresh caching for user and its group membership
- log out from Bamboo
- log back in with administrator (e.g. admin)
- revisited http://localhost:8085/admin/user/viewUsers.action and user0002 was still member of group0002 and not in Testing Group
Authenticated with username: admin
- finally, searching for the group Testing Group in http://localhost:8085/admin/group/viewGroups.action
- group Global Rates IT increased the Number of Users from 1 to 2
- going back to http://localhost:8085/admin/user/viewUsers.action displays user0002 as being member of Testing Group
Properties
Expected Results
- Membership should be applied
Actual Results
- Under groups_hasMembership and groups_getGroupsForUser, properties timeToIdleSeconds="300" timeToLiveSeconds="300" seemed to not have any effect as 5min have lapsed without having any interaction in Bamboo and even after that Bamboo did not refresh membership.
Workaround
- Search for the group under http://localhost:8085/admin/group/viewGroups.action OR
- Switch User repositories from Custom repositories to Internal directory back to Custom repositories OR
- Restart Bamboo
Attachments
Issue Links
- relates to
-
BAM-15360 Ldap group membership not updated without a restart
- Closed