Details
-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
5.6.1
-
2
-
Severity 3 - Minor
-
Description
Group memberships are taken from the user directory containing the user with the highest priority rather than the one the user authenticated against.
Repro steps:
- Set a Confluence instance with two user directories (for example, an external one and an internal one) containing the same user, but the user has different group memberships in both directories.
- Set the external directory in the top of the list of your user directories.
- Make sure Confluence cannot connect to the external directory.
- Log in to Confluence using the credentials in the internal directory.
In this case, the group memberships from the external directory are applied even when the internal directory was used for authentication.