Details
-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
5.7.4, 5.8.14, 5.9.8
-
22
-
Severity 3 - Minor
-
4
-
Description
Summary
Confluence admin is not able to create new group in Confluence instance should one of the User Directories in that instance is problematic.
Steps to Reproduce
- Add one External LDAP User Directory (Read Only with Local Groups) in your Confluence instance and make sure that you can connect to this LDAP server and retrieved users and groups from this LDAP server.
- Add another External LDAP User Directory (Read Only with Local Groups) in your instance. However, please ensure that this directory is problematic (e.g. synchronisation would kept on failing/Base DN does not actually exist).
- Navigate to Confluence Administration panel >> User management >> Groups and try to add a local group by clicking Add Group.
Expected Results
Confluence admin would be able to create local group successfully.
Actual Results
Confluence admin is not able to create local group successfully with the errors shown in the attached screenshot displayed in the Confluence UI.
Failed to create the group 'admins'. Check your server logs for more information
The following appears in Atlassian-Confluence.log:
2016-01-11 14:55:59,181 ERROR [ajp-nio-8009-exec-2464] [confluence.user.actions.BrowseGroupsAction] doAdd Failed to create group: admins -- referer: <base_url>/admin/users/browsegroups.action | url: /admin/users/creategroup.action | userName: admin | action: creategroup com.atlassian.confluence.user.UserManagementOperationFailedException: javax.naming.NameNotFoundException: [LDAP: error code 32 - 0000208D: NameErr: DSID-03100213, problem 2001 (NO_OBJECT), data 0, best match of: 'DC=confluence,DC=atlassian' ]; remaining name 'OU=sydney,DC=confluence,DC=atlassian' at com.atlassian.confluence.user.DefaultUserAccessor.createGroup(DefaultUserAccessor.java:347) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ... Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - 0000208D: NameErr: DSID-03100213, problem 2001 (NO_OBJECT), data 0, best match of: 'DC=confluence,DC=atlassian' ]; remaining name 'OU=sydney,DC=confluence,DC=atlassian'
Where 'OU=sydney,DC=confluence,DC=atlassian' is the base DN of the problematic user directory
The following is observed to appear in Atlassian-Confluence.log for Confluence version 5.9.8
2017-01-09 12:36:19,340 ERROR [http-nio-80-exec-2] [confluence.user.actions.BrowseGroupsAction] doAdd Failed to create group: admins -- referer: <base_url>/admin/users/creategroup.action | url: /admin/users/creategroup.action | userName: admin | action: creategroup com.atlassian.confluence.user.UserManagementOperationFailedException: java.net.SocketTimeoutException: connect timed out at com.atlassian.confluence.user.DefaultUserAccessor.createGroup(DefaultUserAccessor.java:314) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source) at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source) at java.lang.reflect.Method.invoke(Unknown Source) Caused by: java.net.SocketTimeoutException: connect timed out at java.net.DualStackPlainSocketImpl.waitForConnect(Native Method) at java.net.DualStackPlainSocketImpl.socketConnect(Unknown Source) at java.net.AbstractPlainSocketImpl.doConnect(Unknown Source) at java.net.AbstractPlainSocketImpl.connectToAddress(Unknown Source) at java.net.AbstractPlainSocketImpl.connect(Unknown Source) at java.net.PlainSocketImpl.connect(Unknown Source) at java.net.SocksSocketImpl.connect(Unknown Source) ... 347 more
Workaround
Disable/Delete the problematic User Directory before recreating group
