| Description | sogo does not correctly decompose members of LDAP groups, if there is more than one with the same email address.
the second time sogo searches LDAP for the group to do the actual decomposing, it ignores the configured LDAP filter and searches only for the group's email. if there are more results than one, it doesn't get the members of the group. |
|---|
| Additional Information | we have a tree of ou's like this:
intern+-personen
+-sendmail (mailing lists)
+-sogo+-groups (sogo groups)
+-ressources
+-locations
LDAP debug info:
---> here I search for the group in the "Add Attendees" window:
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 fd=17 ACCEPT from IP=127.0.0.1:45720 (IP=0.0.0.0:389)
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=0 BIND dn="" method=128
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=0 RESULT tag=97 err=0 text=
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=1 SRCH base="ou=intern,dc=example,dc=com" scope=2 deref=0 filter="(&(|(sn=support)(cn=support)(uid=support)(mail=support))(&(objectClass=KuPPerson)(KuPaktiv=aktiv)(mail=*)(!(ou:dn:=sendmail))))"
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=1 SRCH attr=objectClass cn uid mail title company o displayname modifytimestamp mozillahomestate mozillahomeurl homeurl st region mozillacustom2 custom2 mozillahomecountryname description notes department departmentnumber ou orgunit mobile cellphone carphone mozillacustom1 custom1 mozillanickname xmozillanickname mozillaworkurl workurl fax facsimiletelephonenumber telephonenumber mozillahomestreet mozillasecondemail xmozillasecondemail mozillacustom4 custom4 nsaimid nscpaimscreenname street streetaddress postofficebox homephone cn commonname givenname mozillahomepostalcode mozillahomelocalityname mozillaworkstreet2 mozillausehtmlmail xmozillausehtmlmail mozillahomestreet2 postalcode zip c countryname pager pagerphone mail sn surname mozillacustom3 custom3 l locality birthyear serialnumber calfburl proxyaddresses msExchHomeServerName kind multiplebookings
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text=
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 op=2 UNBIND
Feb 14 14:31:02 odalix slapd[7094]: conn=1018 fd=17 closed
---> here I save the appointment:
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 fd=17 ACCEPT from IP=127.0.0.1:45724 (IP=0.0.0.0:389)
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=0 BIND dn="" method=128
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=0 RESULT tag=97 err=0 text=
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=1 SRCH base="ou=intern,dc=example,dc=com" scope=2 deref=0 filter="(mail=support@example.com)"
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=1 SRCH attr=objectClass cn uid mail title company o displayname modifytimestamp mozillahomestate mozillahomeurl homeurl st region mozillacustom2 custom2 mozillahomecountryname description notes department departmentnumber ou orgunit mobile cellphone carphone mozillacustom1 custom1 mozillanickname xmozillanickname mozillaworkurl workurl fax facsimiletelephonenumber telephonenumber mozillahomestreet mozillasecondemail xmozillasecondemail mozillacustom4 custom4 nsaimid nscpaimscreenname street streetaddress postofficebox homephone cn commonname givenname mozillahomepostalcode mozillahomelocalityname mozillaworkstreet2 mozillausehtmlmail xmozillausehtmlmail mozillahomestreet2 postalcode zip c countryname pager pagerphone mail sn surname mozillacustom3 custom3 l locality birthyear serialnumber calfburl proxyaddresses msExchHomeServerName kind multiplebookings member uniqueMember memberUid memberOf
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=1 SEARCH RESULT tag=101 err=0 nentries=2 text=
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 op=2 UNBIND
Feb 14 14:31:12 odalix slapd[7094]: conn=1019 fd=17 closed
"nentries=2" is because it finds both the mailing list and the sogo group support@example.com, but ou=sendmail is not a group supported by sogo.
I have to configure the BASE DN to be the whole "intern" tree, because the users accounts are below "personen". |
|---|
