LDAP Searches in Sharing Returning Duplicates and Disabled User Objects

[mac-tech]

Nextcloud 14 in production here.

Users are synchronized from AD/LDAP, Groups enabled. Logins work well, sharing to within and outside the domain does as well.

When sharing files and folders, the autocomplete for user/group objects populates with every user and group object both the entire LDAP domain and local users which leads to duplicates in the list. Also, disabled LDAP accounts still show up (we move disabled LDAP accounts under another OU but keep them to prevent recycling of identical usernames and email addresses).

An LDAP search constraint, either filtering disabled users and/or with a limited search subtree would prevent disabled user accounts from showing up (and admins from receiving calls from irritated users).

[nextcloud-bot]

GitMate.io thinks possibly related issues are #6491 (Duplicate Shared folders), #6807 (Sharing dialog returns duplicate entries), #11540 (User search), #3503 (Error with disabled LDAP user), and #12168 (Error when sharing with LDAP user).

[skjnldsv]

As I cannot reproduce the original issue anymore, I will close this ticket. If this is still happening please make sure to upgrade to the latest version. After that, feel free to reopen.