Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-18961

LDAP plugin does not support nested groups

XMLWordPrintable

    • Icon: Improvement Improvement
    • Resolution: Unresolved
    • Icon: Major Major
    • ldap-plugin
    • None
    • OpenLDAP/slapd

      I have a group in LDAP called "Jira Administrators" and I have a user called test.user.

      If I put test.user directly in the Jira Administrators, then authentication and authorization works fine. The user has full administrator access to Jenkins.

      But if I put test.user into a group called "Administrators" and then put that group as a member of the "Jira Administrators" group, then test.user can log in but gets treated like an anonymous; it has no permission to do anything an administrator should be able to do.

        1. Screen Shot 2016-12-01 at 08.26.55.png
          Screen Shot 2016-12-01 at 08.26.55.png
          155 kB

          [JENKINS-18961] LDAP plugin does not support nested groups

          Mark Haase created issue -
          R. Tyler Croy made changes -
          Workflow Original: JNJira [ 150408 ] New: JNJira + In-Review [ 177640 ]
          Félix Belzunce Arcos made changes -
          Issue Type Original: Bug [ 1 ] New: Improvement [ 4 ]
          Félix Belzunce Arcos made changes -
          Attachment New: Screen Shot 2016-12-01 at 08.26.55.png [ 35052 ]
          Oleg Nenashev made changes -
          Assignee Original: Kohsuke Kawaguchi [ kohsuke ]

            Unassigned Unassigned
            mehaase Mark Haase
            Votes:
            11 Vote for this issue
            Watchers:
            18 Start watching this issue

              Created:
              Updated: