Uploaded image for project: 'Apache Airflow'
  1. Apache Airflow
  2. AIRFLOW-702

LDAP Auth Case Sensitive Regex

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.8.0
    • Component/s: security, webserver
    • Labels:
      None
    • Environment:
      Connecting to Windows Active Directory

      Description

      In the groups_user function in ldap_auth.py the regex is set to the following:

      regex = re.compile("cn=([^,]).")

      This is used to grab any groups by searching for sections of the form:

      "cn=LDAP_Group"

      However, Windows Active Directory returns groups in the form:

      "CN=LDAP_Group"

      This isn't caught by this regex, so throws an error when it tries to find it. An easy fix would be to make this regex case insensitive. I do not believe slackening this up will cause any issues.

        Attachments

          Activity

            People

            • Assignee:
              robin.miller@affiliate.oliverwyman.com Robin Miller
              Reporter:
              robin.miller@affiliate.oliverwyman.com Robin Miller
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 1h
                1h
                Remaining:
                Remaining Estimate - 1h
                1h
                Logged:
                Time Spent - Not Specified
                Not Specified