Uploaded image for project: 'Crowd'
  1. Crowd
  2. CWD-3577

Authentication with delegated LDAP does not work in common case

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Highest
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.7
    • Component/s: None
    • Labels:
      None

      Description

      Authentication with delegated LDAP does not work in case:

      0. JIRA has Directory with setting: Delegated LDAP Authentication with "Copy user on login" enabled.
      1. User is created in LDAP
      2. The same user is created in JIRA (for Delegated LDAP directory)
      3. Created user tries to log in

      Login is unsuccessful with the following error:

       com.atlassian.crowd.exception.InvalidUserException: User externalId cannot be changed 

      It seems that while creating user in Jira it gets an externalID parameter from InternalDirectory. Later on when we log in user is found in LDAP with different ExternalID. ExternalID cannot be overwritten so login fails.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Last commented:
                  5 years, 32 weeks, 4 days ago