Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Unresolved
Priority: Low
Fix Version/s: None
Affects Version/s: 7.3.0, 7.2.4, 9.4.3
Component/s: User Management - LDAP Integration
Labels:
- LDAP
- affects-server
- ldap

Introduced in Version:
7.02
Support reference count:
3
Symptom Severity:
Severity 3 - Minor
UIS:
0
Bug Fix Policy:
View Atlassian Server bug fix policy

Description

Summary

Groups synced from a user directory setup as LDAP read-only, with local groups, should be read-only, but JIRA allows you to add and remove users from other user directories. These changes are not synced to the LDAP server.

Environment

LDAP user directory configured "LDAP read-only, with local groups"

Steps to Reproduce

Setup a LDAP user directory as "LDAP read-only, with local groups" (LDAP-1)
Setup a second LDAP user directory as "LDAP read-only, with local groups" (LDAP-2)
Try to add a user from LDAP-2 to a group from LDAP-1 (works even though LDAP-1 is read-only)
Try to add a user from LDAP-1 to a group from LDAP-1 (fails as it should)

Expected Results

Both group edits should fail because their user directories are configured as read-only.

Actual Results

The addition of a user from LDAP-2 to a group from LDAP-1 is allowed.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Douglas McMorris (Inactive)

Votes:: 4 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 14/Mar/2017 10:06 PM

Updated:: 06/Jul/2023 4:03 AM