Uploaded image for project: 'Red Hat build of Keycloak'
  1. Red Hat build of Keycloak
  2. RHBK-1655

[GHI#31196] The check for userdn in test ldap should consider that AD proxy user can be in non DN format

XMLWordPrintable

    • False
    • Hide

      None

      Show
      None
    • False

      Before reporting an issue

      [X] I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.

      Area

      ldap

      Describe the bug

      Test ldap fails if the user dn is specified in email format and not in DN format. It's a regression of #30434.

      Version

      25.0.1

      Regression

      [X] The issue is a regression

      Expected behavior

      The test ldap should ok.

      Actual behavior

      It fails because the admin dn is not in DN format.

      How to Reproduce?

      Configure a ldap using AD but in the bind dn set the email of the user. For example use admin@sample.com instead of the DN cn=admin,cn=users,dc=sample.dc=com. Save and test. The second test does not work because it's checking if the user dn is the same than the configured one as a DN (and it's not a DN).

      Anything else?

      No response

            Unassigned Unassigned
            pvlha Pavel Vlha
            Keycloak Core IAM
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: