Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Does ldap groups work with openldap? #23373

Closed
night-gold opened this issue Mar 8, 2023 · 3 comments
Closed

Does ldap groups work with openldap? #23373

night-gold opened this issue Mar 8, 2023 · 3 comments
Labels
issue/needs-feedback For bugs, we need more details. For features, the feature must be described in more detail

Comments

@night-gold
Copy link

Description

I'm trying to link groups to gitea organization/teams.

For tests purposes I tried to link the ldap admins to a test "Admins" organization with an "Admins" team that I created.

Users synchronisation is working so I thought this option should work as well but I can't really found any clear description of this feature or how I should fill it, you never know I may be doing something wrong. My current configuration look like that:
image

Currently the logs look like that when I try so synchronise:
Failed group search using filter[(member=UIDVALUEOFUSER)]: LDAP Result Code 34 "Invalid DN Syntax": invalid DN

I have seen some strange things like people adding a plugin (memberof) to their openldap to make something works, not sure it applies in that case, can't find a definitive doc about that.
There is also a script to force the sync outside of gitea conf: gitea-group-sync but from what I can read in it... seems like it's not compatible with the gitea API after the version 1.16.x ...

It's a bit confusing and I don't know what I should be using to synchronise my ldap groups.

I may have miss a doc hidden somewhere and if that is the case I'm sorry but I can't find an answer currently.

Gitea Version

1.17.3

Can you reproduce the bug on the Gitea demo site?

No

Log Gist

No response

Screenshots

No response

Git Version

2.30.2

Operating System

Debian

How are you running Gitea?

We are running the gitea package downloaded from dl.gitea.io and are using systemd to run it as a service.

Database

PostgreSQL
@svenseeberg
Copy link
Contributor

svenseeberg commented Mar 24, 2023
edited
Loading

In Gitea 1.19 the group sync does not seem to work at all. I cannot see any queries related to the group sync in my OpenLDAP logs. However, the admin group sync seems to work. I'll investigate a little.

*edit: my problem is actually #23615

@wxiaoguang
Copy link
Contributor

OpenLDAP is a standard LDAP server so Gitea should work with it.

1.17 is quite old and new Gitea has fixed a lot of LDAP related bugs. Could you try the latest version?

@wxiaoguang wxiaoguang added issue/needs-feedback For bugs, we need more details. For features, the feature must be described in more detail and removed type/bug labels Apr 23, 2023
@wxiaoguang
Copy link
Contributor

Feel free to reopen if there is still any problem.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Jun 17, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
issue/needs-feedback For bugs, we need more details. For features, the feature must be described in more detail
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@wxiaoguang @svenseeberg @night-gold