[
https://issues.apache.org/jira/browse/GUACAMOLE-2051?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17951845#comment-17951845
]
sbcbus commented on GUACAMOLE-2051:
-----------------------------------
[~mjumper] I got further and it seems from 1.6 onwards, the attributes are
being decoded as one. This is using the same comma-separated attributes in
guacamole.properties.
Example from debug log in 1.5.5:
{noformat}
17:50:49.855 [http-nio-8080-exec-5] DEBUG o.a.d.l.c.api.LdapNetworkConnection -
MSG_04104_SENDING_REQUEST (MessageType : SEARCH_REQUEST
Message ID : 3
SearchRequest
baseDn : '<redacted>'
filter : '(objectClass=*)'
scope : base object
typesOnly : false
Size Limit : no limit
Time Limit : no limit
Deref Aliases : deref Always
attributes : 'OSUrdpWS01', 'OSUrdpWS02', 'OSUrdpWS03', 'cn'{noformat}
Example from debug log in 1.6-rc1::
{noformat}
17:40:41.677 [http-nio-8080-exec-4] DEBUG o.a.d.l.c.api.LdapNetworkConnection -
MSG_04104_SENDING_REQUEST (MessageType : SEARCH_REQUEST
Message ID : 3
SearchRequest
baseDn : '<redacted>'
filter : '(objectClass=*)'
scope : base object
typesOnly : false
Size Limit : no limit
Time Limit : no limit
Deref Aliases : deref Always
attributes : 'OSUrdpWS01,OSUrdpWS02,OSUrdpWS03,cn'{noformat}
What would have changed and did this not show up for your in your testing this
way? I literally switched between the 1.5.5 image I have and the built
1.6.0-rc1 docker image with same config and everything and that is why 1.5.5
works still.
> LDAP user attributes do not work when specified in ldap-servers.yml, at all
> with 1.6.0+
> ---------------------------------------------------------------------------------------
>
> Key: GUACAMOLE-2051
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-2051
> Project: Guacamole
> Issue Type: Bug
> Components: guacamole-auth-ldap
> Affects Versions: 1.5.5
> Environment: Docker
> Reporter: sbcbus
> Priority: Major
>
> 2 issues, but both related in the end. It made it a bit difficult to
> troubleshoot due to the variance.
> +In 1.5.5:+
> It seems "user-attributes:" does not work when specified in ldap-servers.yml.
> We recently had a change where we added an additional LDAP source so moved
> the entire config to there. Our connections that rely on custom attributes
> for the connection host name stopped working. *Uncommenting
> ldap-user-attributes: ... in guacamole.properties is a workaround.*
>
> +1.6.0:+
> The attributes do not seem to work *at all* in latest staging/1.6.0 branch.
> ldap-user-attributes: customAttributeName nor specifying it in ldap-users.yml
> as user-attributes: customAttributeName. Guacd logs shows the error as
> incorrect host name/dns error seemingly confirming it not being read.
> Reverting docker back to 1.5.5 results in case above.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
