Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-22841

User directory sync fails on group name with control character (^Z)

    XMLWordPrintable

Details

    Description

      Steps to reproduce:
      1. Create base case of Confluence (I used Confluence 3.5.1, but I'm confident that this affects all current versions of 3.5.x+)
      2. Create a record in LDAP-- LDIF attached to ticket (asdf.ldif)
      3. User directory > Add this ldap as a read-only with local groups.

      Sync fails with this error:

      2011-07-05 11:58:00,635 INFO [QuartzScheduler_Worker-8] [atlassian.crowd.directory.DbCachingRemoteDirectoryCache] deleteCachedUsersNotIn scanned for deleted users in [ 1ms ]
2011-07-05 11:58:00,645 INFO [QuartzScheduler_Worker-8] [directory.ldap.util.DirectoryAttributeRetriever] getValueFromAttributes Unsafe or Blank attribute value for attribute <cn>: '^Zasdf'.
2011-07-05 11:58:00,646 FATAL [QuartzScheduler_Worker-8] [ldap.mapper.entity.LDAPGroupAttributesMapper] getGroupNameFromAttributes The following record does not have a groupname: {objectclass=objectClass: groupOfUniqueNames, top, uniquemember=uniquemember: cn=foobar,ou=people,o=sevenSeas, cn=cn: ^Zasdf}
2011-07-05 11:58:00,646 INFO [QuartzScheduler_Worker-8] [atlassian.crowd.directory.DbCachingRemoteDirectory] synchroniseCache synchronisation complete in [ 1039ms ]
2011-07-05 11:58:00,671 ERROR [QuartzScheduler_Worker-8] [atlassian.crowd.directory.DbCachingDirectoryPoller] pollChanges Error occurred while refreshing the cache for directory [ 327682 ].
com.atlassian.crowd.exception.OperationFailedException: org.springframework.ldap.UncategorizedLdapException: Unable to find the groupname of the principal.
        at com.atlassian.crowd.directory.SpringLDAPConnector.searchEntitiesWithRequestControls(SpringLDAPConnector.java:405)
        at com.atlassian.crowd.directory.SpringLDAPConnector.searchEntities(SpringLDAPConnector.java:370)
        at com.atlassian.crowd.directory.SpringLDAPConnector.searchGroupObjectsOfSpecifiedGroupType(SpringLDAPConnector.java:1094)
        at com.atlassian.crowd.directory.SpringLDAPConnector.searchGroupObjects(SpringLDAPConnector.java:1144)

      The origin of this case traces back to korean characters in the cn of an Active Directory group reference.

      Attachments

        1. asdf.ldif
          0.2 kB
          Tim Wong

        Issue Links

          is incorporated by

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-20656 Whitespace in usernames umbrella issue

          • Medium - Medium priority issues
          • Closed
          relates to

          Suggestion - CONFSERVER-22660 On external repositry import, username and groupnames should be trimed if spaces exists before or after the name.

          • Closed

          Activity

            People

              matt@atlassian.com Matt Ryall
              twong Tim Wong (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: