Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

LDAP registry and URBridge are not un-escaping double quotation and apostrophes from the XPATH search expression #10697

Closed
jvanhill opened this issue Feb 3, 2020 · 0 comments · Fixed by #10700
Closed

LDAP registry and URBridge are not un-escaping double quotation and apostrophes from the XPATH search expression #10697

jvanhill opened this issue Feb 3, 2020 · 0 comments · Fixed by #10700
Assignees
@jvanhill
Labels
release bug This bug is present in a released version of Open Liberty release:20003

Comments

@jvanhill
Copy link
Contributor

jvanhill commented Feb 3, 2020

When a WIM search operation with a search expression that includes escaped apostrophes or escaped quotation marks, the LDAP registry and UR bridge (which calls UserRegistries such as Basic Registry and custom UserRegistries) are not un-escaping the escaped characters in the XPath expression. This can lead to expressions that result in incorrect search results.

For example the search expression:

@xsi:type='Group' and (cn = "*""*")

may result in the LDAP search filter:

((&objectclass=groupofnames)(cn=*""*))

and/or the UserRegistry search expression:

*""*

Note that these errors can only be encountered when doing searches with the 'filter' parameter for SCIM searches.
@jvanhill jvanhill added the release bug This bug is present in a released version of Open Liberty label Feb 3, 2020
@jvanhill jvanhill self-assigned this Feb 3, 2020
jvanhill pushed a commit to jvanhill/open-liberty that referenced this issue Feb 3, 2020
Issue OpenLiberty#10697: LDAP and URBridge need to unescape escaped q…
bda9332 
…uotation and apostrophes in the XPath search expression.
@jvanhill jvanhill mentioned this issue Feb 3, 2020
Merged
jvanhill pushed a commit that referenced this issue Feb 4, 2020
Merge pull request #10700 from jvanhill/10697-XPathEscaping
64e15da 
Issue #10697: LDAP and URBridge need to unescape escaped quotation an…
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jvanhill jvanhill

Labels
release bug This bug is present in a released version of Open Liberty release:20003
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Issue #10697: LDAP and URBridge need to unescape escaped quotation an… jvanhill/open-liberty
2 participants
@jvanhill @LibbyBot