upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-04-06 17:47:41 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 31
nextcloud/apps
History
Roland Tapken c2d8a36d9a
user_ldap: Filter groups after nexted groups 
Currently groupsMatchFilter is called before nested groups are resolved.
This basicly breaks this feature since it is not possible to inherit
membership in a group from another group.

Minimal example:

  Group filter: (&(objectClass=group),(cn=nextcloud))
  Nested groups: enabled

  cn=nextcloud,ou=Nextcloud,ou=groups,dn=company,dn=local
    objectClass: group

  cn=IT,ou=groups,dn=company,dn=local
    objectClass: group
    memberOf: cn=nextcloud,ou=Nextcloud,ou=groups,dn=company,dn=local

  cn=John Doe,ou=users,dn=company,dn=local
    objectClass: person
    memberOf: cn=IT,ou=groups,dn=company,dn=local

Since 'cn=IT,ou=groups,dn=company,dn=local' doesn't match the group
filter, John wouldn't be a member of group 'nextcloud'.

This patch fixes this by filtering the groups after all nested groups
have been collected. If nested groups is disabled the result will be the
same as without this patch.

Signed-off-by: Roland Tapken <roland@bitarbeiter.net>
2019-03-05 11:07:35 +01:00
..
accessibility Merge pull request #14499 from nextcloud/fix/svg-api/dark-mode 2019-03-04 17:39:24 +01:00
admin_audit Check if array element is present before access 2019-02-22 11:41:20 +01:00
cloud_federation_api adjust json to match the definition 2019-02-20 10:35:14 +01:00
comments [tx-robot] updated from transifex 2019-02-27 01:12:05 +00:00
dav Merge pull request #14514 from nextcloud/fix/no_debug_output 2019-03-04 21:26:20 +01:00
encryption [tx-robot] updated from transifex 2019-03-01 01:12:36 +00:00
federatedfilesharing [tx-robot] updated from transifex 2019-03-01 01:12:36 +00:00
federation [tx-robot] updated from transifex 2019-03-01 01:12:36 +00:00
files Remove the upload and memory setting 2019-03-04 12:14:22 +01:00
files_external Merge pull request #14480 from cowai/reconnect-db-notify 2019-03-04 21:36:12 +01:00
files_sharing Build 2019-03-04 08:47:10 +01:00
files_trashbin Only fetch size of this storage without mount points - ref #14412 2019-03-01 12:05:18 +01:00
files_versions set availableSpace to 0 if userFolder not found 2019-03-02 13:55:11 +01:00
lookup_server_connector Fix missing $config dependency in RetryJob 2019-03-05 10:08:27 +01:00
oauth2 Build 2019-03-04 08:47:10 +01:00
provisioning_api Merge pull request #13412 from nextcloud/forward-password-policy 2019-01-30 11:12:02 +01:00
sharebymail [tx-robot] updated from transifex 2019-03-01 01:12:36 +00:00
systemtags [tx-robot] updated from transifex 2019-02-21 01:12:02 +00:00
testing Bump versions of server and the requirements of apps 2018-11-23 10:28:40 +01:00
theming [tx-robot] updated from transifex 2019-03-01 01:12:36 +00:00
twofactor_backupcodes Build 2019-03-04 08:47:10 +01:00
updatenotification Build 2019-03-04 08:47:10 +01:00
user_ldap user_ldap: Filter groups after nexted groups 2019-03-05 11:07:35 +01:00
workflowengine [tx-robot] updated from transifex 2019-02-28 01:12:39 +00:00