Loading...

This issue is archived. You can view it, but you can't modify it. Learn more

XML

Word

Printable

Type: New Feature
Resolution: Fixed
Priority: Major
Component/s: core
Labels:
- api
- issue-exported-to-github

The current core implementation does not define a proper contract for case insensitivity leading to all sorts of bugs, e.g.

~~JENKINS-22057~~
JENKINS-12607
~~JENKINS-3218~~
~~JENKINS-9771~~
~~JENKINS-6377~~
~~JENKINS-20125~~
~~JENKINS-18009~~

Also there are a lot of issues showing a fundamental misunderstanding of why Jenkins originally used a semi-case insensitive username... (hint the real reason is because windows filesystem is case insensitive)

People seem to think that user ids are case insensitive... despite

unix logins being case sensitive

email addresses being case sensitive (yes they are allowed to be... read the RFC... the destination server is allowed to treat them as case sensitive... though the RFC does say a polite version of "only a fool would actually do that" it is allowed by the spec, so you cannot assume that foo@acme.org is the same person as Foo@acme.org... you can however assume that foo@acme.org and foo@ACME.ORG are the same person as is foo@aCmE.OrG because domain names are not case sensitive)

As such, without a plugable strategy the case sensitive/insensitivity of Jenkins is fundamentally broken.

is blocking

JENKINS-20832 Provide support of case-insensitive userId handling

In Review

JENKINS-4354 Make Hudson user names case insensitive

Resolved

JENKINS-17674 Expand SecurityRealm to support case insensitivity better

Resolved

JENKINS-23805 Add support for case insensitive auth realms to matrix auth

Resolved

is duplicated by

JENKINS-33569 Case-Sensitivity Issue with Project-based Matrix Authorization Strategy

Resolved

JENKINS-6520 Case insensitivity option for authorization

Resolved

is related to

JENKINS-12607 Active directory user names should not be case sensitive.

Open

JENKINS-3218 Hudson LDAP authentification is Case Sensitive

Resolved

JENKINS-6377 Hudson Enforcing Unusual Case-Sensitivity for Login

Resolved

JENKINS-9771 LDAP group search is not case sensitive, but ACL determination is case sensitive

Resolved

JENKINS-22057 configure button lost after user login with capital username

Resolved

JENKINS-20125 Help file issue for "User names are case sensitive" setting

Resolved

JENKINS-18009 Issue getting user ID and resolving permissions

Closed

JENKINS-30349 Security Realm Overall/Read not working as expected

Resolved

JENKINS-24859 LDAP cresentials with sAMAccountName including uppercase letter does not work with Global Security

Resolved

JENKINS-33569 Case-Sensitivity Issue with Project-based Matrix Authorization Strategy

Resolved

JENKINS-20340 Allow case insensitive user matching

Closed

relates to

JENKINS-19409 Support case-insensitive mode for user IDs

Resolved

(1 is duplicated by, 11 is related to, 1 relates to)

Assignee:: Unassigned
Reporter:: Stephen Connolly

Created:: 2014-03-18 14:33
Updated:: Yesterday 17:43
Resolved:: 2014-05-22 20:37
Archived:: Yesterday 17:43

Details

Description

Attachments

Issue Links

Activity

People

Dates