Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Issue with LDAP group resolving #20992

Open
Jean-Daniel opened this issue Oct 1, 2024 · 0 comments
Open

Issue with LDAP group resolving #20992

Jean-Daniel opened this issue Oct 1, 2024 · 0 comments

Comments

@Jean-Daniel
Copy link

Jean-Daniel commented Oct 1, 2024
edited
Loading

If you are reporting a problem, please make sure the following information are provided:

This is a follow up of #20038 which has been closed while still present.

Expected behavior and actual behavior:

LDAP group are not found because the query built by Harbor is invalid.

This is the debug log:

2024-10-01T21:11:58Z [DEBUG] [/pkg/ldap/ldap.go:347]: Groupname: , groupDN: cn=developers,ou=Groups,dc=example,dc=com
2024-10-01T21:11:59Z [DEBUG] [/pkg/ldap/ldap.go:259]: Search ldap with filter:(&(objectclass=groupOfNames)(cn=*))

For whatever reason, Harbor is building all group resolving query passing cn=* instead of keeping the real group DN, making the query returning 0 entries.

The LDAP record in OpenLDAP looks like this:

dn: cn=developers,ou=Groups,dc=example,dc=com
structuralObjectClass: groupOfNames
entryUUID: e426aa3a-acd2-1036-8978-df31319679d5
creatorsName: cn=admin,dc=example,dc=com
cn: developers
objectClass: groupOfNames

Versions:
Please specify the versions of following systems.

  • harbor version: 2.11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Jean-Daniel