LDAP Bridge: Non-alphanumeric character problem with CN queries?

Douglas · 2013-06-10 04:28:06 UTC

I'm used to adding users to groups and granting them permissions by searching on our LDAP bridge with an appropriate query. I've just come across one that caused a problem - the change button on the linking screen wouldn't activate, so I ended up having to find the user in the LDAP bridge and link then that way.

Filing the identifying details off, the LDAP search looked like:

42:CN=Firstname d'Surname,OU=Users,DC=domain,DC=tld,DC=country

Can single quotes and other non-alphanumeric characters (e.g. accented characters) in the CN be a problem for the LDAP bridge asset? If so, is there a way to escape them?

Ashish_Karelia · 2013-06-10 22:03:01 UTC

What is the Matrix version you are on? There has been a few bug fixes to similar issues. Not sure if they affect you or if the issue you are mentioning is a new bug.

One that come to mind is #4736 ldap entries with apostrophes can cause issues on linking screen

Ash

Douglas · 2013-06-12 05:11:27 UTC

Hi Ash. We're running 4.10.4.

Ashish_Karelia · 2013-06-13 22:26:06 UTC

That seem like a very recent version of Matrix.

So is the issue just with asset finder's change button or does the the permission granting doesn't work either.

If you can give me a few detailed steps of what is happening, I will give it a go on my local system to see if this is a new bug or if it has any workaround.

Also I presume you are using LDAP Active Directory?

Alternately you can raise a ticket with Squiz Support and they can have a look for you in the issue.

Ash

Douglas · 2013-06-18 03:56:24 UTC

Hi Ash, the issue is just with the asset map / asset finder change button. Permission granting appears to work per the testing I can do with login as. And yes, we're using AD as our LDAP source.