Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-20080

LDAP Dynamic method should search for nested groups in the LDAP groups associated to the user

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: LDAP
    • Labels:
      None

      Description

      The request is to have Dynamic able to fetch the groups (and therefore internal Artifactory permissions) of "nested groups" (drilling up the group membership tree).

      At this point in time, there are 2 main LDAP methods, Static and Dynamic:

      Static: Checks an attribute on an LDAP group for the user membership, Artifactory will link these to internal the permissions assigned to that group.

      • For Active Directory - you can provide a specific attribute that will calculate (server side) and return the nested groups hierarchy.

      Dynamic: The user holds the groups that he is part of (also by matching an attribute). However, this will not be able to bring back the nested groups even if they are part of the groups specified in the user "memberOf" (active directory) 

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                ariels Ariel Seftel
              • Votes:
                1 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated: