User:sync 'OCA\User_LDAP\User_Proxy' --uid=UID BUG


#1

Introduction

Hello,

I try to sync a single account with the new option -u=UID [–uid=UID].
I think the UID is either the username or the uuid-string e.g. dc3254d2-fecd-1037-99a3-83ba3acsd455
I tried all Attributes but nothing will work. And also the output looks like:

!! I am using a Samba 4.8.2 Active Directory Domain Controller (Primary) and connected it with owncloud. !!

The Bug

sudo -u apache php occ user:sync -v ‘OCA\User_LDAP\User_Proxy’ --uid=maske28
–> maske28 is the sAMAccountName or uid.
The Output looks like:

If unknown users are found, what do you want to do with their accounts? (removing the account will also remove its data)
[0] disable
[1] remove
[2] ask later

2 (i selected 2, ask later )
Syncing maske28 …
These accounts that are no longer available in the backend:
maske28, , (no longer exists in the backend)
What do you want to do with their accounts? (removing the account will also remove its data)
[0] disable
[1] remove

I think it is not normal that i get maske28, , <-- 2 spaces seperated with commas.
What does the command try to do?

If i use the lastname of the user maske28 which is maske, the sync is successfull, but only if the lastname is unique in LDAP-Backend.

Server configuration

CentOS 7:

httpd Apache/2.4.6

**Database: Ver 14.14 Distrib 5.6.42 **

PHP version: 5.6.39

ownCloud version: 10.0.10 (stable) (see ownCloud admin page)

**Updated from an older ownCloud or fresh install: Yes **

**Where did you install ownCloud from: Official CentOS Repo **

Signing status (ownCloud 9.0 and above): No errors have been found.

The content of config/config.php:
{
“system”: {
“instanceid”: “oc298yszf40o”,
“passwordsalt”: “REMOVED SENSITIVE VALUE”,
“secret”: “REMOVED SENSITIVE VALUE”,
“trusted_domains”: [
my.domain.com
],
“datadirectory”: “/var/www/html/owncloud/data”,
“overwrite.cli.url”: “http://my.domain.com”,
“dbtype”: “mysql”,
“version”: “10.0.10.4”,
“dbname”: “ownclouddb”,
“dbhost”: “localhost”,
“dbtableprefix”: “oc_”,
“dbuser”: “REMOVED SENSITIVE VALUE”,
“dbpassword”: “REMOVED SENSITIVE VALUE”,
“logtimezone”: “UTC”,
“installed”: true,
“filelocking.enabled”: “true”,
“memcache.locking”: “\OC\Memcache\Redis”,
“redis”: {
“host”: “localhost”,
“port”: 6379,
“timeout”: 0
},
“memcache.local”: “\OC\Memcache\Redis”,
“theme”: “owntheme”,
“mail_smtpmode”: “smtp”,
“mail_from_address”: “REMOVED SENSITIVE VALUE”,
“mail_domain”: “REMOVED SENSITIVE VALUE”,
“mail_smtphost”: “REMOVED SENSITIVE VALUE”,
“updatechecker”: false,
“ldapIgnoreNamingRules”: false,
“loglevel”: 3,
“maintenance”: false,
“preview_libreoffice_path”: “/usr/bin/libreoffice”,
“singleuser”: false
}
}

List of activated apps:
Enabled:

  • activity: 2.4.1
  • calendar: 1.6.1
  • comments: 0.3.0
  • configreport: 0.1.1
  • contacts: 1.5.5
  • dav: 0.4.0
  • federatedfilesharing: 0.3.1
  • federation: 0.1.0
  • files: 1.5.1
  • files_external: 0.7.1
  • files_pdfviewer: 0.10.0
  • files_sharing: 0.11.0
  • files_texteditor: 2.3.0
  • files_trashbin: 0.9.1
  • files_versions: 1.3.0
  • files_videoplayer: 0.9.8
  • firstrunwizard: 1.1
  • gallery: 16.1.1
  • market: 0.3.0
  • notifications: 0.3.5
  • provisioning_api: 0.5.0
  • systemtags: 0.3.0
  • templateeditor: 0.4.0
  • updatenotification: 0.2.1
  • user_ldap: 0.13.0
    Disabled:
  • encryption
  • external
  • user_external

**Are you using external storage, if yes which one: No **

Are you using encryption: no

Are you using an external user-backend, if yes which one: LDAP

LDAP configuration (delete this part if not used)

±------------------------------±----------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Configuration | |
±------------------------------±----------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| hasMemberOfFilterSupport | 1 |
| hasPagedResultSupport | |
| homeFolderNamingRule | |
| lastJpegPhotoLookup | 0 |
| ldapAgentName | CN=ldap,CN=Users,dc=my,dc=domain,dc=com |
| ldapAgentPassword | *** |
| ldapAttributesForGroupSearch | |
| ldapAttributesForUserSearch | |
| ldapBackupHost | |
| ldapBackupPort | |
| ldapBase | dc=my,dc=domain,dc=com |
| ldapBaseGroups | dc=my,dc=domain,dc=com |
| ldapBaseUsers | dc=my,dc=domain,dc=com |
| ldapCacheTTL | 600 |
| ldapConfigurationActive | 1 |
| ldapDynamicGroupMemberURL | |
| ldapEmailAttribute | mail |
| ldapExperiencedAdmin | 0 |
| ldapExpertUUIDGroupAttr | |
| ldapExpertUUIDUserAttr | entryuuid |
| ldapExpertUsernameAttr | |
| ldapGroupDisplayName | cn |
| ldapGroupFilter | (&(|(objectclass=group))(|(cn=owncloud))) |
| ldapGroupFilterGroups | owncloud |
| ldapGroupFilterMode | 1 |
| ldapGroupFilterObjectclass | groupOfNames |
| ldapGroupMemberAssocAttr | memberUid |
| ldapHost | ldap://IP.IP.IP.IP |
| ldapIgnoreNamingRules | |
| ldapLoginFilter | (&(&(|(objectclass=organizationalPerson))(|(memberof=cn=owncloud,ou=Groups,dc=my,dc=domain,dc=com)))(|(sAMAccountName=%uid)(|(mailPrimaryAddress=%uid)(mail=%uid)))) |
| ldapLoginFilterAttributes | |
| ldapLoginFilterEmail | 1 |
| ldapLoginFilterMode | 1 |
| ldapLoginFilterUsername | 1 |
| ldapNestedGroups | 0 |
| ldapOverrideMainServer | |
| ldapPagingSize | 500 |
| ldapPort | 389 |
| ldapQuotaAttribute | postOfficeBox |
| ldapQuotaDefault | 2000000000 |
| ldapTLS | 0 |
| ldapUserDisplayName | cn |
| ldapUserDisplayName2 | |
| ldapUserFilter | (&(|(objectclass=organizationalPerson))) |
| ldapUserFilterGroups | |
| ldapUserFilterMode | 0 |
| ldapUserFilterObjectclass | organizationalPerson |
| ldapUserName | samaccountname |
| ldapUuidGroupAttribute | auto |
| ldapUuidUserAttribute | auto |
| turnOffCertCheck | 0 |
| useMemberOfToDetectMembership | 1 |
±------------------------------±----------------------------------------------------------------------------------------------------------------------------------------------------------------------+

Thanks in advanced!


#2

Hey,

if you think this is an issue within ownCloud then i think you could open an issue at https://github.com/owncloud/core/issues.

From what i know the forums here is mostly frequented by users (like me). I think the chances that issues which needs to be fixed somewhere in the code of ownCloud and which are reported in this forums are getting lost are quite high.


#3

Hey tom42,

thank you, I did that.