[ 
https://issues.apache.org/jira/browse/KYLIN-3197?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

xingpeng updated KYLIN-3197:
----------------------------
    Description: 
When ldap is opened, I create a new user named 'wkh', then I use 
'{color:#FF0000}wkh{color}' to login in, which is normal.
 But when I use '{color:#FF0000}WKH{color}' to login in, the page does not 
respond.
 I analyze the backgroud code, and find the function of 
'org.apache.kylin.rest.security.LDAPAuthoritiesPopulator.getGroupMembershipRoles(String,
 String)' has problem.
 When userDn is 
"uid={color:#FF0000}wkh{color},ou=People,ou=defaultCluster,dc=zdh,dc=com" and 
username is "{color:#FF0000}WKH{color}", then authorities will be null by the 
follow code:
{code:java}
Set<GrantedAuthority> authorities = super.getGroupMembershipRoles(userDn, 
username);
{code}
So I have added 'getAdditionalRoles' function to get the authorities again.
 I have test the patch, please review, thanks!

  was:
When ldap is opened, I create a new user named 'wkh', then I use 
'{color:red}wkh{color}' to login in, which is normal.
But when I use '{color:red}WKH{color}' to login in, the page does not respond.
I analyze the backgroud code, and find the function of 
'org.apache.kylin.rest.security.LDAPAuthoritiesPopulator.getGroupMembershipRoles(String,
 String)' has problem.
When userDn is "uid=wkh,ou=People,ou=defaultCluster,dc=zdh,dc=com" and username 
is "WKH", then authorities will be null by the follow code:

{code:java}
Set<GrantedAuthority> authorities = super.getGroupMembershipRoles(userDn, 
username);
{code}

So I have added 'getAdditionalRoles' function to get the authorities again.
I have test the patch, please review, thanks!


> When ldap is opened, I use an ignored case user to login, the page does not 
> respond.
> ------------------------------------------------------------------------------------
>
>                 Key: KYLIN-3197
>                 URL: https://issues.apache.org/jira/browse/KYLIN-3197
>             Project: Kylin
>          Issue Type: Bug
>          Components: General
>    Affects Versions: v2.3.0
>            Reporter: xingpeng
>            Assignee: peng.jianhua
>            Priority: Major
>              Labels: patch
>         Attachments: 
> 0001-KYLIN-3197-When-ldap-is-opened-I-use-an-ignored-case.patch, 
> image-2018-01-25-17-22-39-970.png
>
>
> When ldap is opened, I create a new user named 'wkh', then I use 
> '{color:#FF0000}wkh{color}' to login in, which is normal.
>  But when I use '{color:#FF0000}WKH{color}' to login in, the page does not 
> respond.
>  I analyze the backgroud code, and find the function of 
> 'org.apache.kylin.rest.security.LDAPAuthoritiesPopulator.getGroupMembershipRoles(String,
>  String)' has problem.
>  When userDn is 
> "uid={color:#FF0000}wkh{color},ou=People,ou=defaultCluster,dc=zdh,dc=com" and 
> username is "{color:#FF0000}WKH{color}", then authorities will be null by the 
> follow code:
> {code:java}
> Set<GrantedAuthority> authorities = super.getGroupMembershipRoles(userDn, 
> username);
> {code}
> So I have added 'getAdditionalRoles' function to get the authorities again.
>  I have test the patch, please review, thanks!



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to