[JIRA] Created: (JENKINS-9771) LDAP group search is not case sensitive, but ACL determination is case sensitive

LDAP group search is not case sensitive, but ACL determination is case sensitive
--------------------------------------------------------------------------------

                 Key: JENKINS-9771
                 URL: https://issues.jenkins-ci.org/browse/JENKINS-9771
             Project: Jenkins
          Issue Type: Bug
          Components: security
    Affects Versions: current
         Environment: OS: Solaris 10 10/09 s10s_u8wos_08a SPARC
JRE 1.6.0_18-b07
Tomcat 5.5.28
            Reporter: jlpinardon


Let's assume that we have a LDAP group named Project_Builders, and Jenkins ACLs are configured for Project_builders.
Once saved, the configuration shows that the group has been found (group icon).
But people from the group cannot connect.Once the name is entered with the exact character's case, people can connect.

As far as the LDAP based ACL control is case sensitive, the LDAP search should also be case sensitive. So, in such a situation, the icon should have been the error icon.

--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

       

    [ https://issues.jenkins-ci.org/browse/JENKINS-9771?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=148976#comment-148976 ]

jlpinardon commented on JENKINS-9771:
-------------------------------------

Moreover, the behaviour is quite different with users.
Search in LDAP is still case insentive, but ACL setting is also case insensitive. So a "SOMEONE" user declared with admin rights in Jenkins will be accepted in the configuration  and this time will also be able to connect with admin rights !

This is much more critical, because it could offer unwished possibilties to unwished people.

--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira