search

BookStackApp / BookStack

A platform to create documentation/wiki content built with PHP & Laravel
https://www.bookstackapp.com/
MIT License
15.49k stars 1.95k forks source link

Updating "thumbnailPhoto" on LDAP/AD does not get reflected in Bookstack after login #5066

Open BloodyIron opened 5 months ago

BloodyIron commented 5 months ago

Describe the Bug

I'm integrating my Bookstack instance with Active Directory, and I'm using the attribute "thumbnailPhoto" for the Environment Variable "LDAP_THUMBNAIL_ATTRIBUTE".

When the user is initially provisioned, by logging in, the account's "User Avatar" is successfully populated from "thumbnailPhoto" from the AD/LDAP domain.

However, once the account is provisioned, the authentication ecosystem seems to never check if this attribute has changed on the user. When I change the contents of this attribute for a user that is already provisioned in Bookstack via AD/LDAP, those changes are not reflected automatically, even after multiple log-outs and log-ins.

Steps to Reproduce

  1. Login with LDAP/AD user that already has contents for "thumbnailPhoto", but this user has not logged into Bookstack before.
  2. Confirm the user has received the correct "thubmnailPhoto" contents for their Bookstack account (use your eyeballs).
  3. Change the contents of "thumbnailPhoto" for this account in AD.
  4. Logout/login multiple times, observing the "User Avatar" does not change.
  5. Proceed to github repo to report bug.

Expected Behaviour

If the thumbnailPhoto has changed on the AD/LDAP side, this should be reflected upon next login of said user into Bookstack.

Screenshots or Additional Context

No response

Browser Details

No response

Exact BookStack Version

v24.05.2