Skip to content

[FIX] Fix LDAP login by REST API, normal login and 2FA as well.#11731

Closed
MarcosSpessatto wants to merge 4 commits intodevelopfrom
fix-rest-ldap-login
Closed

[FIX] Fix LDAP login by REST API, normal login and 2FA as well.#11731
MarcosSpessatto wants to merge 4 commits intodevelopfrom
fix-rest-ldap-login

Conversation

@MarcosSpessatto
Copy link
Copy Markdown
Contributor

@MarcosSpessatto MarcosSpessatto commented Aug 9, 2018
edited by rodrigok
Loading

Closes #5499
Closes #4961
Closes #7642
Closes #11411

and partially: #11570

@MarcosSpessatto MarcosSpessatto added this to the 0.69.0 milestone Aug 9, 2018
@MarcosSpessatto MarcosSpessatto self-assigned this Aug 9, 2018
@engelgabriel engelgabriel temporarily deployed to rocket-chat-pr-11731 August 9, 2018 19:18 Inactive
@MarcosSpessatto MarcosSpessatto mentioned this pull request Aug 9, 2018
Closed
@suportecri1
Copy link
Copy Markdown

suportecri1 commented Aug 15, 2018

waiting for it so much!

Marcos Defendi added 2 commits August 17, 2018 15:23
rodrigok
rodrigok previously approved these changes Aug 20, 2018
View reviewed changes
sampaiodiego
sampaiodiego requested changes Aug 21, 2018
View reviewed changes
Copy link
Copy Markdown
Member

@sampaiodiego sampaiodiego left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This apparently breaks login via web to users with 2FA enabled even if login fallback enabled.

@toimtoimtoim
Copy link
Copy Markdown

toimtoimtoim commented Oct 1, 2018
edited
Loading

It would be really nice to see this resolved, merged and released. We have LDAP in our corporate infrastructure and this problem blocks us creating CI bots using REST API.

currently only working way to use LDAP is to use undocumented features as

curl -s -H "Content-type:application/json" \
      ${ROCKET_URL}/api/v1/login \
      -d "{\"ldap\": true, \"username\": \"${ROCKET_USER}\", \"ldapPass\": \"${ROCKET_PASSWORD}\", \"ldapOptions\":{} }"

@theorenck theorenck modified the milestones: 0.69.0, Short-term Dec 12, 2018
@MarcosSpessatto
Copy link
Copy Markdown
Contributor Author

MarcosSpessatto commented Jan 14, 2019

We must have this PR merged before working again on this one.
Depends of: #11726
Refs: #11570 (comment)

@engelgabriel engelgabriel modified the milestones: Short-term, 3.1.0 Feb 19, 2020
@engelgabriel engelgabriel modified the milestones: 3.1.0, 3.2.0 Apr 20, 2020
@engelgabriel
Copy link
Copy Markdown
Member

engelgabriel commented May 7, 2020

We may have fixed these issues on our latest refactoring. @rodrigok will check and update the PR and related issues.

@engelgabriel engelgabriel modified the milestones: 3.2.0, 3.3.0 May 9, 2020
@rodrigok rodrigok modified the milestones: 3.3.0, 3.4.0 May 21, 2020
@StarScream902
Copy link
Copy Markdown

StarScream902 commented Jun 3, 2020

I have the same problem with the login of Jenkins plugin for rocketchat to rocketchat server. But, the plugin connects, when rocketchat is set up without LDAP.
And I found this hidden login payload too

curl -s -H "Content-type:application/json" \
      ${ROCKET_URL}/api/v1/login \
      -d "{\"ldap\": true, \"username\": \"${ROCKET_USER}\", \"ldapPass\": \"${ROCKET_PASSWORD}\", \"ldapOptions\":{} }"

And this solution Is not suitable for me, because I need the working plugin

@rodrigok rodrigok modified the milestones: 3.4.0, 3.5.0 Jun 20, 2020
@TBG-FR
Copy link
Copy Markdown
Contributor

TBG-FR commented Oct 15, 2020

Any updates on this ?

@pierre-lehnen-rc pierre-lehnen-rc modified the milestones: 3.5.0, 3.9.0 Nov 9, 2020
@pierre-lehnen-rc pierre-lehnen-rc mentioned this pull request Nov 9, 2020
Merged
@engelgabriel engelgabriel deleted the fix-rest-ldap-login branch March 29, 2022 21:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sampaiodiego sampaiodiego sampaiodiego requested changes

@rodrigok rodrigok rodrigok left review comments

Assignees

@pierre-lehnen-rc pierre-lehnen-rc

Labels

stat: conflict

Projects

None yet

Milestone

3.9.0

10 participants

@MarcosSpessatto @suportecri1 @toimtoimtoim @engelgabriel @StarScream902 @TBG-FR @rodrigok @sampaiodiego @theorenck @pierre-lehnen-rc