[Bug] New user logins to default Org instead of mapped in ldap.toml #7200

Open
AlexMaksimkin opened this Issue Jan 10, 2017 · 1 comment

Projects

None yet

3 participants

@AlexMaksimkin

We use LDAP auth with org mapping:
[[servers.group_mappings]]
group_dn = "grafana_editor"
org_role = "Editor"
org_id = 3

After new user logins for the first time(thru LDAP) - current organization for him still "1" but he don't have a rights for default Org and that cause error "Org missing" in main menu(near user name and avatar).
Only after manual change of current organization to mapped in ldap value(id = 3) it works as expected.

Is there any ways to force set current Org for first time logged user same as mapped in ldap.toml?
Or (best way) to fist organization for which user have an access?

ver: grafana-3.1.1-1470047149
Thanks

@Ostaer
Ostaer commented Jan 17, 2017

I have pulzzed on this too,I have try to match wildcard,
[[servers.group_mappings]]
group_dn = "*"
org_role = "Viewer"
org_id = 1

Now the new user will login with default org_id = 1,
but when I enable the group mapping functions, The role will be synced every time the user logs in, so it will over any changes in web GUI

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment