-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Test LDAP settings before saving #11446
Comments
This would be a great testing tool inside LDAP auth that will test if a connection can be established and also pull a single register. Would save endless hours in debugging |
It appears we already have an endpoint defined on the backend that tests the LDAP connection before saving the settings: metabase/src/metabase/api/ldap.clj Lines 88 to 108 in f93680a
Unfortunately the frontend component seems to be hitting |
As I wrote in #16187 (comment), entering arbitrary field settings passes without any validation (apart from the one that the port should be numeric). Is this a desired behavior? Wrote a repro #16205 that reflects this. |
Closing this issue since I just merged #16187 which hooks up the settings form to the correct endpoint that tests the LDAP connection. This only happens properly when LDAP has been enabled with the toggle at the top of the form, but we should have a separate issue to refactor the UI since the on/off toggle is unintuitive. This is the issue @nemanjaglumac observed. FYI @paoliniluis, hopefully this helps with debugging LDAP problems :) |
When an admin user enters incorrect/invalid LDAP configuration values, those values are still quietly saved, without being validated.
It would potentially save admins a lot of time if they were able to get feedback about the validity of the settings they entered, instead of having to test manually by attempting an LDAP login.
I can think of two ways in which this could be accomplished:
In both cases, validation should include testing that the specified LDAP server can be connected to, with the provided credentials, and queried.
The text was updated successfully, but these errors were encountered: