Details
-
Bug
-
Resolution: Unresolved
-
Minor
-
None
-
2.4.0
-
None
-
TIER container 2.4.0-80-u51-w10-p11-20191118
Description
In LdapGroupProvisioner.java, in function createGroup, when it finds the values for the membership attribute, it does not honor needsTargetSystemUsers = FALSE, and categorically sets LdapUser ldapUser = getTargetSystemUser(subject). This call to getTargetSystemUser fails, and the group never ends up being created.
Perhaps add a branch in the loop over initialMembers around line 348, like:
if (!config.needsTargetSystemUsers()) {
String membershipAttributeValue = evaluateJexlExpression("MemberAttributeValue", config.getMemberAttributeValueFormat(), subject, null, grouperGroup, null);
if ( membershipAttributeValue != null )
}
else
(I don't know if config.needsTargetSystemUsers() is the right thing to check; I'm not very familiar with the code base).