Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-12661

Groups not removed under Project Settings and Global Permissions even when the External Directory is deleted completely

    XMLWordPrintable

Details

    • 1
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Issue Summary

      The group pulled and added from Active Directory is not deleted from the Project Permissions page when the Active directory connector is removed completely. The same group when added back to the Bitbucket again via another External User directory(Delegated Ldap from the same AD) is then able to have the access to the project permission. The same should not happen and the Groups from the Active Directory must be removed when the connector is deleted.

      Steps to Reproduce

      1. Add an Active Directory Connector and sync it with Bitbucket
      2. The Users and Groups are pulled from AD
      3. A group from AD named bitbucket-users are added to Global Permissions and Project permissions
      4. Remove the Active directory connector from the User Directories page
      5. The groups are gone from the groups page as expected but are still listed in the Project Permissions.
      6. Add a Delegated Ldap directory from the same AD
      7. Login with a user who is part of the bitbucket-users groups in AD.
      8. If we check on the Project permissions bitbucket-users group the users from the Delagated Ldap directory are having the permissions to access the Projects

      Expected Results

      The Groups should also be removed on the Project permissions when the Active directory connector is removed.

      Actual Results

      The Groups are not removed from the Project permissions so in future when they add an Active directory connector or delegated Ldap directory the users from the bitbucket-users are gaining permission to the projects which shouldn't be the case.

      Workaround

      Remove the Groups manually from the Project Permissions after removing the Active directory from the User directories Page

      Attachments

        Issue Links

          Activity

            People

              Unassigned Unassigned
              5338c0aa34f9 Danny Samuel
              Votes:
              3 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:

                Backbone Issue Sync