Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ensure that user and group IDs in LDAP's tables are also max 64chars #28876

Merged
merged 1 commit into from
Sep 24, 2021
Merged

ensure that user and group IDs in LDAP's tables are also max 64chars #28876

merged 1 commit into from
Sep 24, 2021

Conversation

blizzz
Copy link
Member

@blizzz blizzz commented Sep 17, 2021

  • limitation by core tables (e.g. sharing), IDs are always 64chars
  • when longer group IDs were requested they are hashed (does not affect displaynames)

fixes #28653

While the LDAP tables were always this long, these never seemed to have happened after a first report. So it's an edge case, the migration steps should run fairly quickly in any cases. On my test instance with >34k entries in the user mappings table (but only few long ones to check – pretty much as in reality) it finished almost immediately (pgsql).

@blizzz blizzz added this to the Nextcloud 23 milestone Sep 17, 2021
@blizzz blizzz requested review from nickvergessen, ChristophWurst, a team, ArtificialOwl, skjnldsv and CarlSchwan and removed request for a team September 17, 2021 17:23
nickvergessen
nickvergessen reviewed Sep 20, 2021
View reviewed changes
Copy link
Member

@nickvergessen nickvergessen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

CS checker goes mimimi

apps/user_ldap/lib/Access.php Outdated Show resolved Hide resolved
apps/user_ldap/lib/Access.php Outdated Show resolved Hide resolved
apps/user_ldap/lib/Migration/Version1120Date20210917155206.php Outdated Show resolved Hide resolved
@blizzz blizzz force-pushed the fix/28653/ldap-long-user-group-ids branch from 54c96a8 to 2d13764 Compare September 20, 2021 09:11
@blizzz blizzz force-pushed the fix/28653/ldap-long-user-group-ids branch from 2d13764 to fdbaef6 Compare September 20, 2021 16:09
ChristophWurst
ChristophWurst approved these changes Sep 20, 2021
View reviewed changes
Copy link
Member

@ChristophWurst ChristophWurst left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good

@blizzz blizzz force-pushed the fix/28653/ldap-long-user-group-ids branch from fdbaef6 to e0e41af Compare September 21, 2021 09:54
@blizzz
Copy link
Member Author

blizzz commented Sep 21, 2021

Psalm should also be happy now

@blizzz blizzz force-pushed the fix/28653/ldap-long-user-group-ids branch from e0e41af to 7073513 Compare September 24, 2021 14:26
@blizzz blizzz requested a review from PVince81 September 24, 2021 14:28
nickvergessen
nickvergessen approved these changes Sep 24, 2021
View reviewed changes
Copy link
Member

@nickvergessen nickvergessen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐘

apps/user_ldap/lib/Migration/Version1120Date20210917155206.php Outdated Show resolved Hide resolved
@blizzz
ensure that user and group IDs in LDAP's tables are also max 64chars
6ab30a6 
- limitation by core tables (e.g. sharing), IDs are always 64chars
- when longer group IDs were requested they are hashed (does not affect
  displaynames)

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
@blizzz blizzz force-pushed the fix/28653/ldap-long-user-group-ids branch from 7073513 to 6ab30a6 Compare September 24, 2021 15:29
@blizzz blizzz added 4. to release Ready to be released and/or waiting for tests to finish and removed 3. to review Waiting for reviews labels Sep 24, 2021
@blizzz blizzz merged commit e8f76b0 into master Sep 24, 2021
@blizzz blizzz deleted the fix/28653/ldap-long-user-group-ids branch September 24, 2021 20:53
@blizzz
Copy link
Member Author

blizzz commented Sep 27, 2021

/backport to stable22

@blizzz
Copy link
Member Author

blizzz commented Sep 27, 2021

/backport to stable21

@blizzz
Copy link
Member Author

blizzz commented Sep 27, 2021

/backport to stable20

@backportbot-nextcloud
Copy link

The backport to stable20 failed. Please do this backport manually.

This was referenced Sep 27, 2021
Merged
Merged
@PVince81
Copy link
Member

stable20: #28971

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nickvergessen nickvergessen nickvergessen approved these changes

@ChristophWurst ChristophWurst ChristophWurst approved these changes

@ArtificialOwl ArtificialOwl Awaiting requested review from ArtificialOwl

@skjnldsv skjnldsv Awaiting requested review from skjnldsv

@CarlSchwan CarlSchwan Awaiting requested review from CarlSchwan

@PVince81 PVince81 Awaiting requested review from PVince81

Assignees
No one assigned
Labels
4. to release Ready to be released and/or waiting for tests to finish bug feature: ldap
Projects
None yet
Milestone
Nextcloud 23
Development

Successfully merging this pull request may close these issues.

LDAP: when a value for a user/group id is too long, it should be hashed
4 participants
@blizzz @PVince81 @nickvergessen @ChristophWurst