Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

shortcut in reading nested group members when IN_CHAIN is available #21559

Merged
merged 2 commits into from
Aug 11, 2020
Merged

shortcut in reading nested group members when IN_CHAIN is available #21559

merged 2 commits into from
Aug 11, 2020

Conversation

blizzz
Copy link
Member

@blizzz blizzz commented Jun 24, 2020

Currently, to support members in nested groups, we cycle through them. Some LDAP server do implement the LDAP_MATCHING_RULE_IN_CHAIN (aka 1.2.840.113556.1.4.1941) extensible matcher (AD, Samba 4), which would speed up reading of group members drastically.

This matcher can not be used blindly, as server that do not implement it, return empty results. To avoid testing every time, the state is saved in the configuration, so that when working in servers that do not support this mechanism, it is not being attempted all over again.

@blizzz blizzz added this to the Nextcloud 20 milestone Jun 24, 2020
@blizzz
Copy link
Member Author

blizzz commented Jun 24, 2020

/backport to stable19

@blizzz
Copy link
Member Author

blizzz commented Jun 24, 2020

/backport to stable18

@blizzz blizzz force-pushed the fix/noid/ldap-group-shortcut-ad branch 2 times, most recently from 180922c to e7edb1b Compare June 24, 2020 11:23
ChristophWurst
ChristophWurst approved these changes Jun 24, 2020
View reviewed changes
Copy link
Member

@ChristophWurst ChristophWurst left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🐘

@blizzz blizzz force-pushed the fix/noid/ldap-group-shortcut-ad branch from e7edb1b to 5d85fe0 Compare June 24, 2020 13:13
@blizzz blizzz requested a review from juliushaertl June 24, 2020 13:14
@MorrisJobke
Copy link
Member

Let's wait for #16737 first and then rebase this one here.

@MorrisJobke MorrisJobke mentioned this pull request Aug 11, 2020
Merged
57 tasks
@blizzz
Copy link
Member Author

blizzz commented Aug 11, 2020

Let's wait for #16737 first and then rebase this one here.

@MorrisJobke ping :)

@blizzz
Copy link
Member Author

blizzz commented Aug 11, 2020

ah wait, while looking at another issue where this can help with, i found some more improvments

@blizzz blizzz added 2. developing Work in progress and removed 3. to review Waiting for reviews labels Aug 11, 2020
@blizzz
LDAP: shortcut in reading nested group members when IN_CHAIN is avail…
7ea262d 
…able

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
@blizzz blizzz force-pushed the fix/noid/ldap-group-shortcut-ad branch from 5d85fe0 to f34be91 Compare August 11, 2020 16:54
@blizzz blizzz added 3. to review Waiting for reviews and removed 2. developing Work in progress labels Aug 11, 2020
@blizzz
do not flip available state to unavailable, allow empty results
7eb6d8d 
- the detection relies that the first, requested result is not empty
- it might be empty though – groups without members
- protect switching from available to unavailable
  - switching the other way around was also not envisaged either

Signed-off-by: Arthur Schiwon <blizzz@arthur-schiwon.de>
@blizzz blizzz force-pushed the fix/noid/ldap-group-shortcut-ad branch from f34be91 to 7eb6d8d Compare August 11, 2020 17:03
@faily-bot

This comment has been minimized.

Sign in to view
MorrisJobke
MorrisJobke approved these changes Aug 11, 2020
View reviewed changes
Copy link
Member

@MorrisJobke MorrisJobke left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code looks good 👍

@blizzz blizzz merged commit 88fcc05 into master Aug 11, 2020
@blizzz blizzz deleted the fix/noid/ldap-group-shortcut-ad branch August 11, 2020 22:22
This was referenced Aug 11, 2020
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MorrisJobke MorrisJobke MorrisJobke approved these changes

@ChristophWurst ChristophWurst ChristophWurst approved these changes

@rullzer rullzer Awaiting requested review from rullzer

@jasonbayton jasonbayton Awaiting requested review from jasonbayton

@JSoko JSoko Awaiting requested review from JSoko

@skjnldsv skjnldsv Awaiting requested review from skjnldsv

@juliushaertl juliushaertl Awaiting requested review from juliushaertl

Assignees
No one assigned
Labels
3. to review Waiting for reviews bug enhancement feature: ldap
Projects
None yet
Milestone
Nextcloud 20
Development

Successfully merging this pull request may close these issues.
4 participants
@blizzz @MorrisJobke @ChristophWurst @juliushaertl