Insufficient field validation in LDAP Profile Settings

Description

The Name field in User Mapping step of Profile Settings accepts either 1+ LDAP fields, or an LDAP query. One of the LDAP fields _cannot_ be an LDAP query.

Valid:

  • {cn}

  • {givenName} {sn}

  • {givenName} {sn} {department}

  • (|({displayName})({cn}))

  • (|({givenName})({displayName})({cn}))

Invalid:

  • {givenName} {sn} [(|({department})(None))] 

 

If an invalid Name mapping is given, the Name is incorrectly shown in Admin's Users/Groups page, and searching for other users in Spark is completely broken. Field validation shouldn't let me enter an unsupported configuration.

 

Environment

Active Directory

Assignee

Guus der Kinderen

Reporter

Dan Caseley

Labels

None

Expected Effort

None

Ignite Forum URL

None

Components

Affects versions

Priority

Minor
Configure