[JIRA] (JENKINS-58941) Missing Overall/Read permission when authenticating with LDAP user with a long UID

0 views
Skip to first unread message

flabrie (JIRA)

unread,
Aug 14, 2019, 2:21:02 PM8/14/19
to jenkinsc...@googlegroups.com
Francis Labrie created an issue
 
Jenkins / Bug JENKINS-58941
Missing Overall/Read permission when authenticating with LDAP user with a long UID
Issue Type: Bug Bug
Assignee: Oleg Nenashev
Components: core, ldap-plugin, role-strategy-plugin
Created: 2019-08-14 18:20
Environment: * macOS Mojave 10.14.6
* Jenkins 2.189
* Latest plugins installed
Priority: Blocker Blocker
Reporter: Francis Labrie

This is a really strange bug: we do use a LDAP server to give access to our Jenkins users for years. But for the first time, a user can authenticate successfully, but even if we give him all the rights and permission, he cannot get access to the console nor jobs and projects.

The only difference with other users is the length of his uid: it's 27 characters long, with only basic letters and one dot. It's something like this (it's not the real one, of course):

abcdefg.hijklmnopqrstuvwxyz

When he login, he gets that message:

abcdefg.hijklmnopqrstuvwxyz is missing the Overall/Read permission

We cannot change his uid. So we need a fix in Jenkins or in the related plugin.

 

Thanks! 
Add Comment Add Comment
 
This message was sent by Atlassian Jira (v7.11.2#711002-sha1:fdc329d)

clarkster82@gmail.com (JIRA)

unread,
Jan 8, 2020, 6:00:04 PM1/8/20
to jenkinsc...@googlegroups.com
Paul Clark commented on Bug JENKINS-58941
 
Re: Missing Overall/Read permission when authenticating with LDAP user with a long UID

Francis Labrie, do you think that this is related to the 20 character AD limit (for "legacy" systems)?
This message was sent by Atlassian Jira (v7.13.6#713006-sha1:cc4451f)
Atlassian logo
Reply all
Reply to author
Forward
0 new messages