You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@zeppelin.apache.org by "ighack (Jira)" <ji...@apache.org> on 2021/07/12 09:07:00 UTC

[jira] [Created] (ZEPPELIN-5457) I can't get role with ldap

ighack created ZEPPELIN-5457:
--------------------------------

             Summary: I can't get role with ldap
                 Key: ZEPPELIN-5457
                 URL: https://issues.apache.org/jira/browse/ZEPPELIN-5457
             Project: Zeppelin
          Issue Type: Task
          Components: Core
    Affects Versions: 0.9.0
            Reporter: ighack


ldapRealm.contextFactory.environment[ldap.searchBase] = dc=join,dc=com
ldapRealm.contextFactory.url = ldap://tidb4ser:10389
ldapRealm.userDnTemplate = uid=\{0},ou=people,dc=join,dc=com
ldapRealm.contextFactory.authenticationMechanism = simple
ldapRealm.userSearchBase = ou=people,dc=join,dc=com
ldapRealm.groupSearchBase = ou=group,dc=join,dc=com
#ldapRealm.userSearchAttributeName = uid
ldapRealm.groupObjectClass= posixGroup
ldapRealm.memberAttribute= memberUid
#ldapRealm.memberAttributeValueTemplate= cn=\{0},ou=group,dc=join,dc=com
ldapRealm.rolesByGroup = admin: admin
ldapRealm.groupSearchEnableMatchingRuleInChain = false
ldapRealm.groupSearchFilter = (&(objectClass=posixGroup)(memberUid=\{0}))

 

but in log

{"status":"OK","message":"","body":\{"principal":"jztwk","ticket":"64500a03-5662-44d2-a969-e77f50decc57","roles":"[]"}}

 

role is null

 

in my application 

I sure (&(objectClass=posixGroup)(memberUid=\{0})) is OK

 

EntryCursor result1 = connection.search(
 "ou=group,dc=join,dc=com",
 "(&(objectClass=posixGroup)(memberUid=jztwk))",
 SearchScope.SUBTREE
);

 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)