Uploaded image for project: 'Service Packs and Hot Fixes'
  1. Service Packs and Hot Fixes
  2. MNT-18238

Activiti not re-activating deleted LDAP users

    Details

    • Type: Service Pack Request
    • Status: Open (View Workflow)
    • Resolution: Unresolved
    • Affects Version/s: Alfresco Process Services 1.6.2
    • Fix Version/s: None
    • Component/s: APS Identify Manager
    • Labels:
      None
    • Bug Priority:
      Category 3
    • ACT Numbers:

      00630718

    • Sprint:
      Docs Sprint 18

      Description

      When a previously imported user is deleted from LDAP-AD and then later re-added to LDAP-AD, the reinstated user is not being shown as active in Activiti.

      From the code in AbstractExternalIdmSourceSyncService.java:

      // User exists already in database 
      if (user.getLastSyncTimeStampEpoch() == null 
      || ! user.getLastSyncTimeStampEpoch().equals(externalSrcUser.getLastModifiedTimeStamp().getTime())) { 
      
      user.setEmail(email); 
      user.setFirstName(firstName); 
      user.setLastName(lastName); 
      user.setTenantId(tenantId); 
      user.setLastSyncTimeStamp(externalSrcUser.getLastModifiedTimeStamp()); 
      user = userService.save(user); 
      
      if (password != null) { 
      userService.changePassword(user.getId(), password); 
      } 
      
      writeToSyncLog(syncLogWriter, LOG_TYPE_USER_UPDATED + userId + " properties were changed."); 
      

      Observed in Activiti 1.4.2.

      Steps to replicate:

      1. Install Activiti 1.4.2.
      2. Configure synchronization with LDAP-AD.
      3. Verify that the users are synched into Activiti.
      4. Delete a user from LDAP-AD.
      5. Perform a full re-sync.
      6. Note that the user was made inactive in Activiti.
      7. Add the user back into LDAP-AD.
      8. Perform a full re-sync.

      Observed:

      The user is not set as active this time after a full resync.

      Expected:

      The user when previously deleted should be set as active when the user is re-added to LDAP-AD after a full resync.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                hseritt Harlin Seritt [X] (Inactive)
              • Votes:
                1 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated: