Uploaded image for project: 'Crowd Data Center'
  1. Crowd Data Center
  2. CWD-3577

Authentication with delegated LDAP does not work in common case

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Highest
    • 2.7
    • None
    • None
    • None

    Description

      Authentication with delegated LDAP does not work in case:

      0. JIRA has Directory with setting: Delegated LDAP Authentication with "Copy user on login" enabled.
      1. User is created in LDAP
      2. The same user is created in JIRA (for Delegated LDAP directory)
      3. Created user tries to log in

      Login is unsuccessful with the following error: 

       com.atlassian.crowd.exception.InvalidUserException: User externalId cannot be changed

      It seems that while creating user in Jira it gets an externalID parameter from InternalDirectory. Later on when we log in user is found in LDAP with different ExternalID. ExternalID cannot be overwritten so login fails.

      Attachments

        Issue Links

          is caused by

          Suggestion - CWD-3529 Create a unique, immutable identifier for users exported by a Crowd server

          • Closed
          clones

          JDEV-24568 Loading...

          Activity

            People

              dberrueta Diego Berrueta
              morzechowski Michal Orzechowski (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: