1396490 – ldap user cannot login when email has an apostrophe character

Bug 1396490 - ldap user cannot login when email has an apostrophe character

Summary: ldap user cannot login when email has an apostrophe character

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat CloudForms Management Engine
Classification:	Red Hat
Component:	Appliance
Sub Component:
Version:	5.6.0
Hardware:	x86_64
OS:	Linux
Priority:	urgent
Severity:	urgent
Target Milestone:	GA
Target Release:	5.6.4
Assignee:	Tim Wade
QA Contact:	Matt Pusateri
Docs Contact:
URL:
Whiteboard:	ldap
Depends On:	1379420
Blocks:
TreeView+	depends on / blocked

Reported:	2016-11-18 13:35 UTC by Satoe Imaishi
Modified:	2019-12-16 07:24 UTC (History)
CC List:	11 users (show)
Fixed In Version:	5.6.4.0
Doc Type:	Release Note
Doc Text:	This update adds login support for user email addresses containing apostrophes.
Clone Of:	1379420
Environment:
Last Closed:	2017-03-09 17:04:22 UTC
Category:	---
Cloudforms Team:	CFME Core
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2017:0474	0	normal	SHIPPED_LIVE	CFME 5.6.4 bug fixes and enhancement update	2017-03-09 22:03:14 UTC

Comment 2 CFME Bot 2016-12-13 18:26:09 UTC

New commit detected on ManageIQ/manageiq/darga:
https://github.com/ManageIQ/manageiq/commit/b913c33bdcad5bc30ae8f280fda3cc0bb27c4ebb

commit b913c33bdcad5bc30ae8f280fda3cc0bb27c4ebb
Author:     Gregg Tanzillo <gtanzill>
AuthorDate: Thu Nov 17 17:21:11 2016 -0500
Commit:     Oleg Barenboim <chessbyte>
CommitDate: Tue Dec 13 13:21:12 2016 -0500

    Merge pull request #12729 from imtayadeway/fix/email-validation
    
    Allow apostrophes in email address
    (cherry picked from commit f728774fb1db4c4e48246f27dbb9f0f50a4162d8)
    
    https://bugzilla.redhat.com/show_bug.cgi?id=1396490

 app/models/user.rb       | 2 +-
 spec/models/user_spec.rb | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

Comment 3 Matt Pusateri 2017-02-15 18:52:37 UTC

While the original patch does indeed make authentication work. There is still a condition that creates two users in the database/webui.


Setup external auth, enable it as the mode. Log in as the UID of the LDAP user, user will show up under Users in UI.  Logout and login with email address of the user. another duplicate user will be created, when in fact they are the same user.

Comment 4 Matt Pusateri 2017-02-15 19:51:44 UTC

Actually, logging in with the email address fails to match the user's group, so it doesn't duplicate the user like in 5.7.1.1. But, still only partially fixed.

Comment 5 Dave Johnson 2017-02-17 20:32:34 UTC

Opened bug 1424620 to cover comment 3 and 4.

This needs some doctext around it

Comment 8 errata-xmlrpc 2017-03-09 17:04:22 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2017-0474.html

Note You need to log in before you can comment on or make changes to this bug.