LDAP sync incorrectly assigns user attributes #3656

New Issue

Closed

opened 2025-11-02 05:20:42 -06:00 by GiteaMirror · 5 comments

GiteaMirror commented 2025-11-02 05:20:42 -06:00

Owner

Copy Link

Originally created by @polymeter on GitHub (Jul 23, 2019).

• Gitea version (or commit ref): 1.9.0-rc2 (also reproduced on 1.8.3)
• Git version: 2.20.1
• Operating system: Debian 10 (buster)
• Database (use [x]):
  • PostgreSQL
  • MySQL
  • MSSQL
  • SQLite
• Can you reproduce the bug at https://try.gitea.io:
  • Yes (provide example URL)
  • No
  • Not relevant

Description

I have an auth source with LDAP via BindDN configured. When User Sync is enabled and runs, the profile fields are always set to

• Full name = username
• Email = username@localhost

for all LDAP users, although proper values are available. This happens for existing users (fields are overwritten) as well as newly created ones.

For new (not yet synced) users, the fields are correctly populated on first login, so the LDAP config seems to be fine.

Originally created by @polymeter on GitHub (Jul 23, 2019). - Gitea version (or commit ref): 1.9.0-rc2 (also reproduced on 1.8.3) - Git version: 2.20.1 - Operating system: Debian 10 (buster) - Database (use `[x]`): - [ ] PostgreSQL - [ ] MySQL - [ ] MSSQL - [x] SQLite - Can you reproduce the bug at https://try.gitea.io: - [ ] Yes (provide example URL) - [ ] No - [x] Not relevant ## Description I have an auth source with LDAP via BindDN configured. When User Sync is enabled and runs, the profile fields are always set to * Full name = *username* * Email = *username*@<!-- -->localhost for all LDAP users, although proper values are available. This happens for existing users (fields are overwritten) as well as newly created ones. For new (not yet synced) users, the fields are correctly populated on first login, so the LDAP config seems to be fine.

GiteaMirror added the issue/stale label 2025-11-02 05:20:42 -06:00

GiteaMirror closed this issue 2025-11-02 05:20:43 -06:00

GiteaMirror commented 2025-11-02 05:20:43 -06:00

Author

Owner

Copy Link

@roycec commented on GitHub (Aug 30, 2019):

I encounter a similar problem (not using user sync). I can once correct the mail domain, but when I try to change something else in the profile, I get the error

e-mail already in use

When I delete the user, in hope to recreate it with a new login, I'm not able to log in at all

2019/08/30 16:14:44 ...dels/login_source.go:707:UserSignIn() [W] Failed to login 'user.name' via 'LDAP': e-mail already in use [email: user.name@ourcompany.de]
2019/08/30 16:14:44 routers/user/auth.go:165:SignInPost() [I] Failed authentication attempt for user.name from 10.xx.xx.xx

Gitea version: 1.9.1
OS version: RHEL 7.6
Database: MySQL

PS: This was a fresh install and in my case this also happens when I log in the first time

@roycec commented on GitHub (Aug 30, 2019): I encounter a similar problem (not using user sync). I can once correct the mail domain, but when I try to change something else in the profile, I get the error > e-mail already in use When I delete the user, in hope to recreate it with a new login, I'm not able to log in at all ``` 2019/08/30 16:14:44 ...dels/login_source.go:707:UserSignIn() [W] Failed to login 'user.name' via 'LDAP': e-mail already in use [email: user.name@ourcompany.de] 2019/08/30 16:14:44 routers/user/auth.go:165:SignInPost() [I] Failed authentication attempt for user.name from 10.xx.xx.xx ``` Gitea version: 1.9.1 OS version: RHEL 7.6 Database: MySQL PS: This was a fresh install and in my case this also happens when I log in the first time

GiteaMirror commented 2025-11-02 05:20:43 -06:00

Author

Owner

Copy Link

@roycec commented on GitHub (Aug 30, 2019):

ok, I found an "error" in my side ... the user I created as admin had the same email address than another (LDAP) user. So there was a dupicate mail address already configured. I think this solved my issue.

@roycec commented on GitHub (Aug 30, 2019): ok, I found an "error" in my side ... the user I created as admin had the same email address than another (LDAP) user. So there was a dupicate mail address already configured. I think this solved my issue.

GiteaMirror commented 2025-11-02 05:20:43 -06:00

Author

Owner

Copy Link

@lunny commented on GitHub (Sep 15, 2019):

@polymeter could you also check if you have a duplicated email addresses.

@lunny commented on GitHub (Sep 15, 2019): @polymeter could you also check if you have a duplicated email addresses.

GiteaMirror commented 2025-11-02 05:20:43 -06:00

Author

Owner

Copy Link

@stale[bot] commented on GitHub (Nov 14, 2019):

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.

@stale[bot] commented on GitHub (Nov 14, 2019): This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs during the next 2 weeks. Thank you for your contributions.

GiteaMirror commented 2025-11-02 05:20:44 -06:00

Author

Owner

Copy Link

@stale[bot] commented on GitHub (Nov 28, 2019):

This issue has been automatically closed because of inactivity. You can re-open it if needed.

@stale[bot] commented on GitHub (Nov 28, 2019): This issue has been automatically closed because of inactivity. You can re-open it if needed.

GiteaMirror referenced this issue 2025-11-02 12:26:02 -06:00

[PR #3802] [MERGED] Fixed 0 closed issues not show 50% closed on activty page #17088

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

release/v1.25

release/v1.24

release/v1.23

release/v1.22

release/v1.21

release/v1.20

release/v1.19

release/v1.18

release/v1.17

release/v1.16

release/v1.15

release/v1.14

release/v1.13

release/v1.12

release/v1.11

release/v1.10

release/v1.9

release/v1.8

v1.25.3

v1.25.2

v1.25.1

v1.25.0

v1.24.7

v1.25.0-rc0

v1.26.0-dev

v1.24.6

v1.24.5

v1.24.4

v1.24.3

v1.24.2

v1.24.1

v1.24.0

v1.23.8

v1.24.0-rc0

v1.25.0-dev

v1.23.7

v1.23.6

v1.23.5

v1.23.4

v1.23.3

v1.23.2

v1.23.1

v1.23.0

v1.23.0-rc0

v1.24.0-dev

v1.22.6

v1.22.5

v1.22.4

v1.22.3

v1.22.2

v1.22.1

v1.22.0

v1.23.0-dev

v1.22.0-rc1

v1.21.11

v1.22.0-rc0

v1.21.10

v1.21.9

v1.21.8

v1.21.7

v1.21.6

v1.21.5

v1.21.4

v1.21.3

v1.21.2

v1.20.6

v1.21.1

v1.21.0

v1.21.0-rc2

v1.21.0-rc1

v1.20.5

v1.22.0-dev

v1.21.0-rc0

v1.20.4

v1.20.3

v1.20.2

v1.20.1

v1.20.0

v1.19.4

v1.21.0-dev

v1.20.0-rc2

v1.20.0-rc1

v1.20.0-rc0

v1.19.3

v1.19.2

v1.19.1

v1.19.0

v1.19.0-rc1

v1.20.0-dev

v1.19.0-rc0

v1.18.5

v1.18.4

v1.18.3

v1.18.2

v1.18.1

v1.18.0

v1.17.4

v1.18.0-rc1

v1.19.0-dev

v1.18.0-rc0

v1.17.3

v1.17.2

v1.17.1

v1.17.0

v1.17.0-rc2

v1.16.9

v1.17.0-rc1

v1.18.0-dev

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.11

v1.17.0-dev

v1.16.0-rc1

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.14.7

v1.15.0

v1.15.0-rc3

v1.14.6

v1.15.0-rc2

v1.14.5

v1.16.0-dev

v1.15.0-rc1

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.7

v1.14.0-rc2

v1.13.6

v1.13.5

v1.14.0-rc1

v1.15.0-dev

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.6

v1.13.0-rc2

v1.14.0-dev

v1.13.0-rc1

v1.12.5

v1.12.4

v1.12.3

v1.12.2

v1.12.1

v1.11.8

v1.12.0

v1.11.7

v1.12.0-rc2

v1.11.6

v1.12.0-rc1

v1.13.0-dev

v1.11.5

v1.11.4

v1.11.3

v1.10.6

v1.12.0-dev

v1.11.2

v1.10.5

v1.11.1

v1.10.4

v1.11.0

v1.11.0-rc2

v1.10.3

v1.11.0-rc1

v1.10.2

v1.10.1

v1.10.0

v1.9.6

v1.9.5

v1.10.0-rc2

v1.11.0-dev

v1.10.0-rc1

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc2

v1.10.0-dev

v1.9.0-rc1

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc3

v1.7.6

v1.8.0-rc2

v1.7.5

v1.8.0-rc1

v1.9.0-dev

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc3

v1.6.4

v1.7.0-rc2

v1.6.3

v1.7.0-rc1

v1.7.0-dev

v1.6.2

v1.6.1

v1.6.0

v1.6.0-rc2

v1.5.3

v1.6.0-rc1

v1.6.0-dev

v1.5.2

v1.5.1

v1.5.0

v1.5.0-rc2

v1.5.0-rc1

v1.5.0-dev

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc3

v1.4.0-rc2

v1.3.3

v1.4.0-rc1

v1.3.2

v1.3.1

v1.3.0

v1.3.0-rc2

v1.3.0-rc1

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc2

v1.1.4

v1.2.0-rc1

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

v0.9.99

Labels

Clear labels

$20

$250

$50

$500

backport/done

💎 Bounty

docs-update-needed

good first issue

hacktoberfest

issue/bounty

issue/confirmed

issue/critical

issue/duplicate

issue/needs-feedback

issue/not-a-bug

issue/regression

issue/stale

issue/workaround

lgtm/need 2

modifies/api

modifies/translation

outdated/backport/v1.18

outdated/theme/markdown

outdated/theme/timetracker

performance/bigrepo

performance/cpu

performance/memory

performance/speed

pr/breaking

proposal/accepted

proposal/rejected

pr/wip

pull-request

Mirrored from GitHub Pull Request

reviewed/wontfix

💰 Rewarded

skip-changelog

status/blocked

topic/accessibility

topic/api

topic/authentication

topic/build

topic/code-linting

topic/commit-signing

topic/content-rendering

topic/deployment

topic/distribution

topic/federation

topic/gitea-actions

topic/issues

topic/lfs

topic/mobile

topic/moderation

topic/packages

topic/pr

topic/projects

topic/repo

topic/repo-migration

topic/security

topic/theme

topic/ui

topic/ui-interaction

topic/ux

topic/webhooks

topic/wiki

type/bug

type/deprecation

type/docs

type/enhancement

type/feature

type/miscellaneous

type/proposal

type/question

type/refactoring

type/summary

type/testing

type/upstream

No Label issue/stale

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/gitea#3656