Uploaded image for project: 'Grouper'
  1. Grouper
  2. GRP-2612

Can not create ldap group when target system users are not required

    XMLWordPrintable

Details

    • Bug
    • Resolution: Unresolved
    • Minor
    • None
    • 2.4.0
    • provisioning
    • None
    • TIER container 2.4.0-80-u51-w10-p11-20191118

    Description

      In LdapGroupProvisioner.java, in function createGroup, when it finds the values for the membership attribute, it does not honor needsTargetSystemUsers = FALSE, and categorically sets LdapUser ldapUser = getTargetSystemUser(subject). This call to getTargetSystemUser fails, and the group never ends up being created. 

      Perhaps add a branch in the loop over initialMembers around line 348, like:

      if (!config.needsTargetSystemUsers()) {
      String membershipAttributeValue = evaluateJexlExpression("MemberAttributeValue", config.getMemberAttributeValueFormat(), subject, null, grouperGroup, null);
      if ( membershipAttributeValue != null )

      { membershipValues.add(membershipAttributeValue); }

      }
      else

      { ... code using getTargetSystemUser() }

      (I don't know if config.needsTargetSystemUsers() is the right thing to check; I'm not very familiar with the code base).

      Attachments

        Activity

          People

            chris.hyzer@at.internet2.edu Chris Hyzer (upenn.edu)
            zachary.hansonhart@at.internet2.edu Zachary Hanson-hart
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: