Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

LDAP login not working if local user with same name exists #117

Closed
tuxmea opened this issue Dec 12, 2022 · 4 comments
Closed

LDAP login not working if local user with same name exists #117

tuxmea opened this issue Dec 12, 2022 · 4 comments

Comments

@tuxmea
Copy link
Member

tuxmea commented Dec 12, 2022

Proposal:

  • If LDAP is enabled, only LDAP logins shoud be used.
  • Only Admin will remain local user

Maybe remove the possibility to switch (local login, ldap login)?
@oneiros
Copy link
Collaborator

oneiros commented Jan 3, 2023

LDAP login not working if local user with same name exists

What exactly does "not working" mean?

LDAP is only used for authentication. If the LDAP server says a user is authentic, the database is searched for an existing user with the same email address. If such a user exists, this user is signed in. If no such user exists, a new (regular) user is created in the database.

@tuxmea
Copy link
Member Author

tuxmea commented Jan 3, 2023

According to customer the login does not work once you add a local user and later on switch to ldap.
LDAP is working again, once the local user has been removed.

oneiros added a commit that referenced this issue Jan 26, 2023
@oneiros
Improve error handling of ldap login #117
ac31144
@oneiros
Copy link
Collaborator

oneiros commented Jan 26, 2023

I cannot reproduce this locally. I have a regular user test@example.com in the local database with password X and a user in LDAP with the same email but password Y.

I can log in as that user with password X when ldap is disabled and with password Y when ldap is enabled, just as I would expect.

I did however encounter two problems with error messages for failed logins that I addressed here: #129

tuxmea pushed a commit that referenced this issue Jan 26, 2023
@oneiros
Improve error handling of ldap login #117 (#129)
d658a0d 
* Improve error handling of ldap login #117

* Fix test.
@tuxmea
Copy link
Member Author

tuxmea commented Jan 26, 2023

Can not reproduce. But we know have better error handling in case that LDAP e.g. does not accept the password.

@tuxmea tuxmea closed this as completed Jan 26, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@oneiros @tuxmea