Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

Authentication issue post RTC-5.x to RTC6.x upgrade

Questions
Tags
Users
Badges
aastha khatri
(22721) May 11 '21, 10:49 a.m.

In RTC-5.x when a user raises a request for our application access the user's mail is fetched from LDAP, converted into lower case, and then added to the RTC database with lowercase userId post assigning roles and licenses. All the users in our application are having lowercase userIds.
Case insensitive -- false

Post Upgrade to RTC-6.x

1. User Authentication Issue
Login doesn't work for the users with userIds not matching with their mail as per LDAP entry.
case insensitive --false
I dont know how the authentication mechanism changes from tomcat to liberty ideally post upgrade the authentication should have worked for all users.

0 votes

Comments
Ralph Schoon
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER May 11 '21, 11:54 a.m.
Iam not aware of a mechanism that makes LDAP user ID lowercase. My assumption was always it needs to be the same case or the case insensitive needs to be on.

You could have a lowercase id in LDAP for a working mapping. It is possible to change the ID's in Jazz - or you could do that in LDAP. https://rsjazz.wordpress.com/2012/10/12/changing-the-jazz-user-id-using-the-rtc-plain-java-client-libraries/

I would open a case with support.

aastha khatri
May 11 '21, 12:26 p.m.

Please see my response below.

1 answer
677 views
0 votes

One answer

Permanent link
aastha khatri
(22721) May 11 '21, 12:26 p.m.
Hi Ralf,
So below is the background.
In RTC-5 with tomcat our application enforced lower case useridĀ  in RTC database by saving the contributors records using the RTC plain client libraries as you mentioned above. So for example say
LDAP entry -- TEST@ibm.com

The above id was converted to test@ibm.com and then saved as contributor in RTC with developer license. So now the user use to login with test@ibm.com. As part part of LDAP nightly sync RTC user to create one more user with id TEST@ibm.com
So RTC repository has two user ids
test@ibm.com -- active with licenses -- user uses this id
TEST@ibm.com -- active but no license -- We use to archive this as it was of no use
But post upgrade to RTC-6 when user is trying to login with test@ibm.com ,he is getting mapped to the TEST@ibm.com (same case as ldap) instead of test@ibm.com(which worked with rtc-5). He is shown the error
Your id TEST@ibm.com is archived.
Instead he should be allowed to login as it was working with RTC-5.
We tried to change the case insensitive to true but its throwing errorĀ  I guess because we have duplicated user ids existing.
We tried updating the user with smaller case test@ibm.com to capital TEST@ibm.com post upgrade but that breaks some functionalities like personal dashboard , mini dashboard.
Thanks

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details

Question asked: May 11 '21, 10:49 a.m.

Question was seen: 677 times

Last updated: May 11 '21, 12:26 p.m.

Confirmation Cancel Confirm