Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-17674

Expand SecurityRealm to support case insensitivity better

    XMLWordPrintable

Details

    • Improvement
    • Status: Resolved (View Workflow)
    • Major
    • Resolution: Fixed
    • core
    • None

    Description

      Some {{SecurityRealm}}s are case insensitive, notably Active Director, but the current core abstraction assumes that user names and group names are totally case sensitive.

      In JENKINS-12607, I attempted a fix to canonicalize the names to lower case, but this resulted in massive regression because various parts of Jenkins (such as AuthorizationStrategy stores information keyed by the user name, and changing the user name breaks them.

      We need to expand abstractions in the core (perhaps by even patching Acegi?) so that authorization code would naturally steer toward doing proper comparison.

      Attachments

        Issue Links

          depends on

          New Feature - A new feature of the product, which has yet to be developed. JENKINS-22247 Provide an extension point to define user id case sensitivity contract

          • Major - Major loss of function.
          • Resolved
          is blocking

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-4550 User ID in Security is case sensitive

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. JENKINS-4354 Make Hudson user names case insensitive

          • Major - Major loss of function.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-12607 Active directory user names should not be case sensitive.

          • Blocker - Blocks development and/or testing work, production could not run.
          • Open

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-12594 Active Directory groups are Case Senstive

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-3218 Hudson LDAP authentification is Case Sensitive

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-6377 Hudson Enforcing Unusual Case-Sensitivity for Login

          • Major - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-12180 Active Directory Plugin - Adding AD Group Throws BadCredentialsException

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. JENKINS-4354 Make Hudson user names case insensitive

          • Major - Major loss of function.
          • Resolved

          Activity

            Ascending order - Click to sort in descending order
            hnain Harpreet Nain added a comment -

            This is a great pain point for us.. would be nice to have it resolved soon

            hnain Harpreet Nain added a comment - This is a great pain point for us.. would be nice to have it resolved soon
            oleg_nenashev Oleg Nenashev added a comment -

            JENKINS-22247 resolve the issue (jenkins-1.566+)

            oleg_nenashev Oleg Nenashev added a comment - JENKINS-22247 resolve the issue (jenkins-1.566+)

            People

              Unassigned Unassigned
              kohsuke Kohsuke Kawaguchi
              Votes:
              6 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: