apollo icon indicating copy to clipboard operation
apollo copied to clipboard
verified publisher icon apolloconfig

apollo接入ladp后,创建应用后无法选择应用负责人

Open ollylu opened this issue 11 months ago • 2 comments

描述bug 我接入了ladp 我可以登录进来,并且是系统管理员,但创建应用时无法选择到任何负责人,包括我自己

Image

这是我的ladp配置 请问哪里有问题吗 spring: ldap: base: "dc=XXXX,dc=com" username: "cn=ldapsearch,cn=users,dc=XXXX,dc=com" password: "XXXX" searchFilter: "(sAMAccountName={0})" urls: - "ldap://ldap.XXXX.cn:389"

ldap:
  mapping:
    objectClass: "inetOrgPerson"
    loginId: "sAMAccountName"
    userDisplayName: "cn"
    email: "mail"
  filter: # 配置过滤,目前只支持 memberOf
    memberOf: "cn=rd_sw_cld_ops,cn=Users,dc=XXXX,dc=com"

简洁明了地描述一下bug

复现

通过如下步骤可以复现:

期望

简介明了地描述你希望正常情况下应该发生什么

截图

如果可以,附上截图来描述你的问题

额外的细节和日志

  • 版本:
  • 错误日志
  • 配置:
  • 平台和操作系统

ollylu avatar May 15 '25 07:05 ollylu

Hello @ollylu! I'm here to help you with bugs, answer questions, and assist you in becoming a contributor while you wait for a human maintainer. Let's tackle this issue together! 🚀

在 Apollo 中配置 LDAP 后,无法在应用创建表单中选择应用负责人,可能与 LDAP 配置中的过滤条件有关。请检查以下几点:

  1. memberOf 过滤器:确保 memberOf 属性中的组名和路径是正确的,并且用户确实属于该组。当前配置为 cn=rd_sw_cld_ops,cn=Users,dc=XXXX,dc=com,请确认用户在此组中。

  2. LDAP 用户可见性:Apollo 使用 searchFiltermemberOf 过滤器来确定哪些用户可见。确保 searchFilter (sAMAccountName={0}) 能够正确匹配用户的登录 ID。

  3. 用户属性映射:确保 userDisplayName 和其他属性(如 loginIdemail)正确映射到 LDAP 中的相应属性。

  4. LDAP 连接:确认 LDAP 连接信息(如 baseusernamepasswordurls)正确无误,并且 Apollo 能够成功连接到 LDAP 服务器。

如果以上检查无误,建议在 LDAP 服务器上验证用户的 memberOf 属性,确保用户确实属于指定的组。这样可以确保用户在应用创建表单中可见。

To continue talking to Dosu, mention @dosu.

Help Dosu learn! Give it feedback: Great Response | Irrelevant Answer | Incorrect Sources | Too Verbose | Hallucination | Bug Report | Other

dosubot[bot] avatar May 15 '25 07:05 dosubot[bot]

This issue has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in 7 days unless it is tagged "help wanted" or other activity occurs. Thank you for your contributions.

stale[bot] avatar Jun 14 '25 10:06 stale[bot]

This issue has been automatically closed because it has not had activity in the last 7 days. If this issue is still valid, please ping a maintainer and ask them to label it as "help wanted". Thank you for your contributions.

stale[bot] avatar Jul 19 '25 07:07 stale[bot]