[
https://issues.apache.org/jira/browse/CONNECTORS-779?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13771883#comment-13771883
]
Maciej Lizewski commented on CONNECTORS-779:
--------------------------------------------
Yes, and there is more such *known* SIDs
(http://support.microsoft.com/kb/243330) and I do not know which of them can be
used similar to "Everyone" group in different configurations... and since LDAP
connector uses rather names than SIDs, we will need to allow admins to enter
any list of "default" groups/tokens.
OK. I will add tab with forced groups and disclaimer in manual about security
issues.
> Novell eDirectory: Group Everyone
> ----------------------------------
>
> Key: CONNECTORS-779
> URL: https://issues.apache.org/jira/browse/CONNECTORS-779
> Project: ManifoldCF
> Issue Type: Bug
> Components: LDAP authority
> Affects Versions: ManifoldCF 1.3
> Reporter: Nicolas Belisle
> Assignee: Maciej Lizewski
> Priority: Minor
> Fix For: ManifoldCF 1.4
>
>
> We had an issue with authorization using Novell eDirectory.
> The group "Everyone" was in the index (field allow_token_document), but would
> not be listed using "mcf-authority-service/UserACLs?username=userID". No
> configuration change seemed to solve it.
> We added it manually to
> org.apache.manifoldcf.authorities.authorities.ldap.LDAPAuthority
> line 316 : theGroups.add("Everyone");
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
