You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@kylin.apache.org by li...@apache.org on 2017/10/19 14:16:31 UTC

kylin git commit: KYLIN-2949: The kylin does not get right authorities when the LDAP authentication service was used in RedHat OS.

Repository: kylin
Updated Branches:
  refs/heads/master 27ba8c755 -> 37e03a43e


KYLIN-2949: The kylin does not get right authorities when the LDAP authentication service was used in RedHat OS.

Signed-off-by: lidongsjtu <li...@apache.org>


Project: http://git-wip-us.apache.org/repos/asf/kylin/repo
Commit: http://git-wip-us.apache.org/repos/asf/kylin/commit/37e03a43
Tree: http://git-wip-us.apache.org/repos/asf/kylin/tree/37e03a43
Diff: http://git-wip-us.apache.org/repos/asf/kylin/diff/37e03a43

Branch: refs/heads/master
Commit: 37e03a43e8ce78fec9a6b18e9c7c4863e153d987
Parents: 27ba8c7
Author: peng.jianhua <pe...@zte.com.cn>
Authored: Thu Oct 19 18:40:23 2017 +0800
Committer: lidongsjtu <li...@apache.org>
Committed: Thu Oct 19 21:25:25 2017 +0800

----------------------------------------------------------------------
 .../java/org/apache/kylin/rest/security/AuthoritiesPopulator.java   | 1 +
 1 file changed, 1 insertion(+)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/kylin/blob/37e03a43/server-base/src/main/java/org/apache/kylin/rest/security/AuthoritiesPopulator.java
----------------------------------------------------------------------
diff --git a/server-base/src/main/java/org/apache/kylin/rest/security/AuthoritiesPopulator.java b/server-base/src/main/java/org/apache/kylin/rest/security/AuthoritiesPopulator.java
index 592791c..2b9d8c9 100644
--- a/server-base/src/main/java/org/apache/kylin/rest/security/AuthoritiesPopulator.java
+++ b/server-base/src/main/java/org/apache/kylin/rest/security/AuthoritiesPopulator.java
@@ -63,6 +63,7 @@ public class AuthoritiesPopulator extends DefaultLdapAuthoritiesPopulator {
 
     @Override
     public Set<GrantedAuthority> getGroupMembershipRoles(String userDn, String username) {
+        setGroupSearchFilter("(|(member={0})(memberUid={1}))");
         Set<GrantedAuthority> authorities = super.getGroupMembershipRoles(userDn, username);
 
         Set<GrantedAuthority> userAuthorities = new HashSet<GrantedAuthority>();