LDAP admin every login succesful
89 views
Skip to first unread message
yoimnewhere hello
Jan 10, 2023, 5:32:24 PM1/10/23
to Review Board Community
after configuring ldap each login try with the admin
account that is created when deployed with docker
succeeds. With the correct password but also with every other wrong text/
password. So I can succesfully login with the admin accounts correct username but wrong password. How can that be? It's a bug i guess.
yoimnewhere hello
Jan 17, 2023, 5:50:08 PM1/17/23
to Review Board Community
this is a major bug in reviewboard. How come nobody is able to help?
Christian Hammond
Jan 17, 2023, 6:19:03 PM1/17/23
to revie...@googlegroups.com
Hi,
Sorry for not responding to this sooner.
Sorry for not responding to this sooner.
That definitely sounds like a problem, but I need to know more about your setup. We communicate with LDAP and tell it to perform an authentication attempt with the provided login/password, so it's ultimately up to LDAP (and the configured settings) to permit or deny login. Only upon a successful result do we treat the LDAP authentication as valid. So knowing where this is all going wrong is going to be important.
When authenticating, Review Board first checks the configured authentication backend (LDAP in your case) as mentioned above, and if that doesn't work, it checks if there's an in-database user and tries to authenticate with that. Admin accounts are created in-database, so that you can get in if LDAP is down, but if there's a matching username configured in LDAP and authentication succeeds, it'll use that instead. Either one will be considered valid. If the one in LDAP shouldn't be used, then I'd recommend creating a dedicated Review Board admin user account for your database and then deleting the default one.
To confirm, is the authentication problem happening with any non-admin users?
Is there an 'admin' user already in LDAP? What happens if you try to use another service that authenticates to your LDAP with that same admin user?
Would you also be able to share your configured LDAP settings in Review Board?
Christian
--
Supercharge your Review Board with Power Pack: https://www.reviewboard.org/powerpack/
Want us to host Review Board for you? Check out RBCommons: https://rbcommons.com/
Happy user? Let us know! https://www.reviewboard.org/users/
---
You received this message because you are subscribed to the Google Groups "Review Board Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to reviewboard...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/reviewboard/5b0cd432-abbb-4fde-a351-baea1c9470fan%40googlegroups.com.
yoimnewhere hello
Jan 30, 2023, 3:57:49 PM1/30/23
to Review Board Community
sorry, i think i only replied @Christian Hammond and now cant find the text i wrote. Did you get my reply?
Christian Hammond
Jan 30, 2023, 4:29:44 PM1/30/23
to revie...@googlegroups.com
I got it. I’ll follow up with you today.
Christian
To view this discussion on the web visit https://groups.google.com/d/msgid/reviewboard/7a779210-5c1a-4fd9-8aba-9cb5dfe7faebn%40googlegroups.com.
Reply all
Reply to author
Forward
0 new messages