Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-17674

Expand SecurityRealm to support case insensitivity better

    XMLWordPrintable

Details

    • Improvement
    • Status: Resolved (View Workflow)
    • Major
    • Resolution: Fixed
    • core
    • None

    Description

      Some {{SecurityRealm}}s are case insensitive, notably Active Director, but the current core abstraction assumes that user names and group names are totally case sensitive.

      In JENKINS-12607, I attempted a fix to canonicalize the names to lower case, but this resulted in massive regression because various parts of Jenkins (such as AuthorizationStrategy stores information keyed by the user name, and changing the user name breaks them.

      We need to expand abstractions in the core (perhaps by even patching Acegi?) so that authorization code would naturally steer toward doing proper comparison.

      Attachments

        Issue Links

          Activity

            hnain Harpreet Nain added a comment -

            This is a great pain point for us.. would be nice to have it resolved soon

            hnain Harpreet Nain added a comment - This is a great pain point for us.. would be nice to have it resolved soon
            oleg_nenashev Oleg Nenashev added a comment -

            JENKINS-22247 resolve the issue (jenkins-1.566+)

            oleg_nenashev Oleg Nenashev added a comment - JENKINS-22247 resolve the issue (jenkins-1.566+)

            People

              Unassigned Unassigned
              kohsuke Kohsuke Kawaguchi
              Votes:
              6 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: