First Last Prev Next    This bug is not in your last search results.
Bug 39552 - Allow all UMC service providers in /etc/ldap/sasl2/slapd.conf
Allow all UMC service providers in /etc/ldap/sasl2/slapd.conf
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: SAML
UCS 4.1
Other Linux
: P5 normal (vote)
: UCS 4.1
Assigned To: Stefan Gohmann
Erik Damrose
: interim-2
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2015-10-15 11:02 CEST by Stefan Gohmann
Modified: 2015-11-17 12:12 CET (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Gohmann univentionstaff 2015-10-15 11:02:01 CEST 
We need to add all UMC servers as allowed saml_trusted_sp in /etc/ldap/sasl2/slapd.conf. Otherwise UMC is unable to make a LDAP connection to the ldap/master with the SAML assertion.
Comment 1 Stefan Gohmann univentionstaff 2015-10-16 16:10:29 CEST 
I've added the listener module umc-service-providers.py  which saves the UMC servers in umc/saml/trusted/sp/*. The variables are used as saml_trusted_sp in etc/ldap/sasl2/slapd.conf: r64548 + r64550

I've also added a small test case:
 82_saml/26_saml_umc_sp_server
Comment 2 Erik Damrose univentionstaff 2015-11-03 15:52:29 CET 
OK: all UMC servers are present in sasl2/slapd.conf
OK: testcase
OK: changelog
> Verified
Comment 3 Stefan Gohmann univentionstaff 2015-11-17 12:12:16 CET 
UCS 4.1 has been released:
 https://docs.software-univention.de/release-notes-4.1-0-en.html
 https://docs.software-univention.de/release-notes-4.1-0-de.html

If this error occurs again, please use "Clone This Bug".
First Last Prev Next    This bug is not in your last search results.