MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2025-11-08 21:24:55 -05:00
Code Issues Packages Projects Releases Wiki Activity

fix: remove LDAP groups claim and store them on server (#9637)

Browse Source 
Groups information shall be now stored as part of the
credential data structure, this is a more idiomatic
way to support large LDAP groups.

Avoids the complication of setups where LDAP groups
can be in the range of 150+ which may lead to excess
HTTP header size > 8KiB, to reduce such an occurrence
we shall save the group information on the server as
part of the credential data structure.

Bonus change support multiple mapped policies, across
all types of users.
This commit is contained in:
Harshavardhana
2020-05-20 11:33:35 -07:00
committed by GitHub
parent 6656fa3066
commit 189c861835
5 changed files with 125 additions and 128 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
cmd/iam-object-store.go
View File

@@ -140,7 +140,7 @@ func (iamOS *IAMObjectStore) migrateUsersConfigToV1(ctx context.Context, isSTS b
// then the parsed auth.Credentials will have
// the zero value for the struct.
var zeroCred auth.Credentials
if cred == zeroCred {
if cred.Equal(zeroCred) {
// nothing to do
continue
}