Page MenuHomePhabricator
Create Task
Maniphest T4137

user_externalaccount table goes out of sync when user try to login before adding it using "import from LDAP"
Closed, DuplicatePublic
Actions

Description

LDAP provider is setup
User/Password provider (created) but disabled.
LDAP provider does NOT allow registration, i.e. an admin needs to import the user.
The user try to login before the admin does anything, and fails.
The admin try to add the user using the "Import from LDAP" screen
The following error comes up:

Failed to add USERNAME
#1062: Duplicate entry 'ldap-self-USERNAME' for key 'account_details'

Even though an error message is displayed the user is added to list of users.
The user CANNOT login!!!

The only way I found to solve this was to remove the user using the "Delete User" screen and then manually delete the table record for that user from user_externalaccount

Revisions and Commits

rP Phabricator
ClosedD11357 People - add application policy on user creation

Related Objects
Search...

Event Timeline

noyeitan2 created this task.Nov 20 2013, 7:59 PM
noyeitan2 assigned this task to epriestley.
noyeitan2 raised the priority of this task from to Needs Triage.
noyeitan2 updated the task description. (Show Details)
noyeitan2 added a subscriber: noyeitan2.
epriestley edited this Maniphest Task.Jan 2 2014, 4:28 PM
btrahan added projects: Auth, LDAP.May 23 2014, 5:46 PM
btrahan added a subscriber: btrahan.
epriestley added subscribers: anish, chad, epriestley.Jul 12 2014, 2:19 PM

◀ Merged tasks: T5470.

epriestley added a subtask: T5953: Build a modular user account batch importer.Aug 25 2014, 12:56 AM
tuxoff added a subscriber: tuxoff.Sep 8 2014, 9:56 AM
epriestley added a project: Support Impact.Oct 3 2014, 4:23 AM

Support Impact This is just completely broken and possibly destroys or mangles data.

chasemp added a subscriber: chasemp.Oct 6 2014, 1:55 AM
chad triaged this task as Low priority.Nov 2 2014, 11:02 PM
epriestley mentioned this in T6479: Manual account creation without Username+Password auth unclear to users and administrators.Nov 13 2014, 11:47 PM
cburroughs added a subscriber: cburroughs.Nov 14 2014, 1:32 PM
epriestley added a revision: D11357: People - add application policy on user creation.Jan 12 2015, 10:52 PM
btrahan mentioned this in rPe85dfcbeeeb3: People - add application policy on user creation.Jan 12 2015, 11:18 PM
epriestley closed this task as a duplicate of T4279: Improve auth/LDAP import tools to assist in linking/merging accounts and migrations across providers.May 4 2015, 1:35 PM
eadler mentioned this in T5953: Build a modular user account batch importer.Feb 16 2016, 8:48 PM
Phabricator · Built by Phacility