LDAP auth username case sensitive #367

hamsterbacke · 2020-11-13T12:21:40Z

I use the LDAP auth for login and allowed_users with the sAMAccountName.
The login is working successfull but sometimes the user can't see the scripts that it should be allowed to via allowed_users config.
I figured, that the case of the username on login is used for matching against allowed_users.
They logged in with "Bob" instead of bob and that prevents correct matching in allowd_users array.

As a quick fix I edited the file "auth/auth_ldap.py" and added .lower() in line 110:
username = request_handler.get_argument('username').lower()

I guess this case problem is affecting every login method.

The text was updated successfully, but these errors were encountered:

bugy · 2020-11-13T17:34:37Z

True, thanks for reporting!

bugy · 2020-11-18T21:48:19Z

Fixed, now all authorization checks should be case-insensitive (for any auth provider)

hamsterbacke changed the title ~~LDAP auth username case sensetive~~ LDAP auth username case sensitive Nov 13, 2020

bugy added the bug label Nov 13, 2020

bugy added this to the 1.17.0 milestone Nov 13, 2020

bugy added a commit that referenced this issue Nov 18, 2020

#367 made user authorization case-insensitive

85f923c

bugy added the resolved label Nov 18, 2020

bugy closed this as completed Mar 16, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

LDAP auth username case sensitive #367

LDAP auth username case sensitive #367

hamsterbacke commented Nov 13, 2020

bugy commented Nov 13, 2020

bugy commented Nov 18, 2020

LDAP auth username case sensitive #367

LDAP auth username case sensitive #367

Comments

hamsterbacke commented Nov 13, 2020

bugy commented Nov 13, 2020

bugy commented Nov 18, 2020