-
New Feature
-
Resolution: Fixed
-
Major
-
None
-
all
Sometimes (as in my case) the email of a user cannot be easily constructed from the SVN login name or the active directory login name. When using AD as the authentication mechanism, it would be nice to look up the user's email address from it for all notifications sent out.
This avoids requiring people from configuring LDAP Email Plugin as a helper to get this working properly which admittedly defeats the whole purpose of having a nice simple AD plugin so we don't have to deal with the nightmare of configuring LDAP against AD.
- is duplicated by
-
JENKINS-7253 Fetch mailaddress from active directory
-
- Resolved
-
[JENKINS-6648] Lookup user email from Active Directory when using AD as the authentication mechanism
Thanks for the patch. I looked at the code, and I have a few comments.
I'm bit worried about retaining a reference to a COM object via IADsUser. COM objects are fragile in terms of threading and memory related things, so I think it's better to call emailAddress() on the spot and just pass around that e-mail address.
This also allows ActiveDirectoryUnixAuthenticationProvider to look up the e-mail address and pass it correctly.
n16er
added a comment - Here is a new patch incorporating your suggestions. Note however that for Unix users using AD or when the domain is specified, no email will be looked up since the UserDetails.loadUserByUserName() still throws a UserNotFoundException.
Incidentally, your comment on that method about using SPNEGO/Kerberos got me thinking and I was wondering you have looked at JOSSO as a possible SSO solution.
n16er
added a comment - Here is a new patch incorporating your suggestions. Note however that for Unix users using AD or when the domain is specified, no email will be looked up since the UserDetails.loadUserByUserName() still throws a UserNotFoundException .
Incidentally, your comment on that method about using SPNEGO/Kerberos got me thinking and I was wondering you have looked at JOSSO as a possible SSO solution. Code changed in jenkins
User: Kohsuke Kawaguchi
Path:
src/main/java/hudson/plugins/active_directory/ActiveDirectoryAuthenticationProvider.java
src/main/java/hudson/plugins/active_directory/ActiveDirectoryMailAddressResolverImpl.java
src/main/java/hudson/plugins/active_directory/ActiveDirectoryUnixAuthenticationProvider.java
src/main/java/hudson/plugins/active_directory/ActiveDirectoryUserDetail.java
http://jenkins-ci.org/commit/active-directory-plugin/5c1a366c9ad0585941879038f82c809765d6bb99
Log:
JENKINS-6648 Look up e-mail address from AD.
Code changed in jenkins
User: Kohsuke Kawaguchi
Path:
src/main/java/hudson/plugins/active_directory/ActiveDirectoryAuthenticationProvider.java
src/main/java/hudson/plugins/active_directory/ActiveDirectoryUnixAuthenticationProvider.java
src/main/java/hudson/plugins/active_directory/ActiveDirectoryUserDetail.java
http://jenkins-ci.org/commit/active-directory-plugin/46165c12e4fee0a458df64d18319175d675cd989
Log:
[FIXED JENKINS-6648] when logged in, proactively copy information from AD to Jenkins
Compare: https://github.com/jenkinsci/active-directory-plugin/compare/5598fd2...46165c1
Integrated in 
plugins_active-directory #40
JENKINS-6648 Look up e-mail address from AD.
[FIXED JENKINS-6648] when logged in, proactively copy information from AD to Jenkins
Kohsuke Kawaguchi :
Files :
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryMailAddressResolverImpl.java
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryUnixAuthenticationProvider.java
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryUserDetail.java
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryAuthenticationProvider.java
Kohsuke Kawaguchi :
Files :
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryAuthenticationProvider.java
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryUnixAuthenticationProvider.java
- src/main/java/hudson/plugins/active_directory/ActiveDirectoryUserDetail.java
The attached patch will now determine email addresses from AD in windows.