Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-17674

Expand SecurityRealm to support case insensitivity better

    Details

    • Type: Improvement
    • Status: Resolved (View Workflow)
    • Priority: Major
    • Resolution: Fixed
    • Component/s: core
    • Labels:
      None
    • Similar Issues:

      Description

      Some {{SecurityRealm}}s are case insensitive, notably Active Director, but the current core abstraction assumes that user names and group names are totally case sensitive.

      In JENKINS-12607, I attempted a fix to canonicalize the names to lower case, but this resulted in massive regression because various parts of Jenkins (such as AuthorizationStrategy stores information keyed by the user name, and changing the user name breaks them.

      We need to expand abstractions in the core (perhaps by even patching Acegi?) so that authorization code would naturally steer toward doing proper comparison.

        Attachments

          Issue Links

            Activity

            Hide
            hnain Harpreet Nain added a comment -

            This is a great pain point for us.. would be nice to have it resolved soon

            Show
            hnain Harpreet Nain added a comment - This is a great pain point for us.. would be nice to have it resolved soon
            Hide
            oleg_nenashev Oleg Nenashev added a comment -

            JENKINS-22247 resolve the issue (jenkins-1.566+)

            Show
            oleg_nenashev Oleg Nenashev added a comment - JENKINS-22247 resolve the issue (jenkins-1.566+)

              People

              • Assignee:
                Unassigned
                Reporter:
                kohsuke Kohsuke Kawaguchi
              • Votes:
                6 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: