change ldap group lookup when using memberUid to match using name

according to rfc2307 which says the memberUid is a name (not a uid strangely enough) just going by http://manpages.ubuntu.com/manpages/natty/man5/sssd-ldap.5.html ldap_schema description and my broken install on ubuntu... I can't say what ldif I used except it was standard (I didn't write it) and ldapscripts and phpmyadmin all seem to want the field to be a name. Originally-Committed-As: 8ce68934aba3d016b645035bae1841eaccca9ef5
2025-09-07 05:14:24 +02:00 · 2011-06-06 23:05:24 -07:00 · 2011-06-06 23:05:24 -07:00 · 6229db6f95
commit 6229db6f95
parent c08e778ff7
1 changed files with 1 additions and 1 deletions
--- a/war/src/main/webapp/WEB-INF/security/LDAPBindSecurityRealm.groovy
+++ b/war/src/main/webapp/WEB-INF/security/LDAPBindSecurityRealm.groovy
@ -64,7 +64,7 @@ bindAuthenticator(BindAuthenticator2,initialDirContextFactory) {
 authoritiesPopulator(AuthoritiesPopulatorImpl, initialDirContextFactory, instance.groupSearchBase) {
    // see DefaultLdapAuthoritiesPopulator for other possible configurations
    searchSubtree = true;
-    groupSearchFilter = "(| (member={0}) (uniqueMember={0}) (memberUid={1}))";
+    groupSearchFilter = "(| (member={0}) (uniqueMember={0}) (memberUid={0}))";
 }

 authenticationManager(ProviderManager) {