LDAP groups sometimes not shown for a user when Confluence is clustered

XMLWordPrintable

    • Type: Bug
    • Resolution: Fixed
    • Priority: Medium
    • 2.7
    • Affects Version/s: 2.5.3, 2.5.4, 2.5.7, 2.6.0
    • Component/s: None
    • Environment:

      The problem was reported on cluster

      LDAP groups sometimes could not be retrieved for a user. This leads to incorrect privileges.

      This happens because of incorrect serialization/de-serialization of cached ldap user object.
      in DefaultLDAPUser class we declare a distinguishedName field as transient. 

      private transient String distinguishedName;

      When this object is serialization/de-serialization (which is happens in clustered cache) this filed will be null but we still use it to construct ldap query. See this support case.

      We need to figure out if there is a reason why we declare this field as transient and if there is no good reason make it non-transient.

        1. atlassian-user-1.5-stable-compatible-1-CONF-9178-patch.zip
          2 kB
        2. atlassian-user-200-05-22-CONF-9178-patch.zip
          2 kB
        3. atlassian-user-confluence-2.5.x-1.9-CONF-9178-patch.zip
          2 kB

              Assignee:
              Paul Curren
              Reporter:
              Anatoli
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: