LDAPS User Search Username is a required field, not optional #637

miclettej · 2021-09-16T15:36:53Z

Bug description
Tracks community-edition ticket: vmware-tanzu/community-edition#1777

In the UI, the LDAPS User Search Username is marked as OPTIONAL. This is incorrect - it is REQUIRED. Without it, Pinniped package fails to reconcile

Affected product area (please put an X in all that apply)

Expected behavior
User Search Username (e.g. userPrincipalName) and User Search Filter field should be required in UI

Steps to reproduce the bug

Version (include the SHA if the version is not obvious)
Eretria

Environment where the bug was observed (cloud, OS, etc)

Relevant Debug Output (Logs, manifests, etc)
% kubectl logs dex-999b6f97c-ssdlc -n tanzu-system-auth
{"level":"info","msg":"config using log level: info","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config issuer: https://0.0.0.0:30167","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"kubernetes client apiVersion = dex.coreos.com/v1","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"creating custom Kubernetes resources","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource authcodes.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource authcodes.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource authrequests.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource authrequests.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource oauth2clients.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource oauth2clients.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource signingkeies.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource signingkeies.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource refreshtokens.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource refreshtokens.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource passwords.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource passwords.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource offlinesessionses.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource offlinesessionses.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource connectors.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource connectors.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource devicerequests.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource devicerequests.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"checking if custom resource devicetokens.dex.coreos.com has been created already...","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"The custom resource devicetokens.dex.coreos.com already available, skipping create","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config storage: kubernetes","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config static client: pinniped","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config connector: ldap","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config response types accepted: [code]","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config skipping approval screen","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config signing keys expire after: 1h30m0s","time":"2021-09-16T11:16:23Z"}
{"level":"info","msg":"config id tokens valid for: 5m0s","time":"2021-09-16T11:16:23Z"}
failed to initialize server: server: Failed to open connector ldap: failed to open connector: failed to create connector ldap: ldap: missing required field "userSearch.username"

miclettej added area/ux UX related area/ui Specific UI issue/enhancement labels Sep 16, 2021

miclettej assigned raymondz1 Sep 16, 2021

raymondz1 mentioned this issue Sep 16, 2021

IPv6 for vSphere support on kickstart UI #641

Closed

5 tasks

raymondz1 mentioned this issue Oct 5, 2021

IPv6 for vSphere support on kickstart UI #775

Merged

5 tasks

saji-pivotal modified the milestone: 2021-December Oct 14, 2021

miclettej assigned yminnew Oct 14, 2021

miclettej added this to the v0.9.0 milestone Oct 14, 2021

yminnew mentioned this issue Oct 18, 2021

Ldaps user search #903

Closed

saji-pivotal modified the milestones: v0.9.0, 2021-November Oct 18, 2021

yminnew mentioned this issue Oct 22, 2021

remove the OPTIONAL label from both Username and Filter for LDAP user… #953

Merged

miclettej closed this as completed in #953 Oct 26, 2021

kcoriordan mentioned this issue Nov 3, 2021

Doc - Minor correction for identity management doc 2 vmware-tanzu/community-edition#2440

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

LDAPS User Search Username is a required field, not optional #637

LDAPS User Search Username is a required field, not optional #637

miclettej commented Sep 16, 2021 •

edited

Loading

LDAPS User Search Username is a required field, not optional #637

LDAPS User Search Username is a required field, not optional #637

Comments

miclettej commented Sep 16, 2021 • edited Loading

miclettej commented Sep 16, 2021 •

edited

Loading