[KNOX-644] Limit/page results of LDAP group membership search - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Critical
Resolution: Fixed
Affects Version/s: 0.6.0
Fix Version/s: 0.10.0
Component/s: Server
Labels:
None

Description

Some users are finding that they have >1000 groups that would be returned given how Knox currently implements group lookup. ActiveDirectory currently limits search results to 1000 items and this causes failures that require workarounds at the client side. Ideally Knox's LDAP group search implementation would either limit/filter the results or page the result set that are unavoidably large.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

KNOX-644.patch
31/Jul/16 02:20
28 kB
Kevin Risden
create_groups_ldif.py
31/Jul/16 02:26
0.7 kB
Kevin Risden
paging.patch
31/Jul/16 05:49
34 kB
Kevin Risden
ad_setup.ps1
31/Jul/16 05:51
0.7 kB
Kevin Risden
KNOX-644-paging.patch
31/Jul/16 15:18
10 kB
Kevin Risden

Issue Links

is related to

KNOX-508 knox to uptake Apache DS 2.0.0-M16 or later

Closed

Activity

People

Assignee:: Kevin Risden

Reporter:: Kevin Minder

Votes:: 3 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 07/Jan/16 16:06

Updated:: 28/Mar/19 14:17

Resolved:: 02/Oct/16 18:38