goauthentik / authentik

The authentication glue you need.
https://goauthentik.io
Other
13.51k stars 903 forks source link

outpost/ldap: search filter not working with multiple objectClass #7835

Open vherrlein opened 11 months ago

vherrlein commented 11 months ago

Describe the bug When an LDAP search query is sent with multiple OR including objectClasses, the outpost LDAP filters on the latest objectClass attribute found within the query.

To Reproduce Use a query such as the following (| (&(objectclass=user)(uid=adm*)) (&(objectclass=group)(cn=adm*)) (&(objectclass=user)(mail=adm*)) (&(objectclass=group)(uid=adm*)) (&(objectclass=user)(sn=adm*)) )

Expected behavior It must return all users or groups which matches one of the following predicates:

Screenshots If applicable, add screenshots to help explain your problem.

Logs N/A

Version and Deployment (please complete the following information):

vherrlein commented 10 months ago

@BeryJu do you have an idea on how to implement that behavior ?

authentik-automation[bot] commented 8 months ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

vherrlein commented 8 months ago

The issue is still there …

vuongpn1995 commented 8 months ago

I has a same problem but still not fixed

authentik-automation[bot] commented 6 months ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

vherrlein commented 6 months ago

Issue still there

vherrlein commented 1 month ago

For information, that issue is still present on the version: 2024.8.3

As it's a confirmed bug, any plan to fix it ?