Merge pull request #2690 from ryanpetrello/ldap-long-name

truncate user first/last name if it exceeds 30 chars on LDAP auth Reviewed-by: https://github.com/softwarefactory-project-zuul[bot]
2026-01-22 15:08:03 -03:30 · 2018-11-14 22:29:43 +00:00 · 2018-11-14 22:29:43 +00:00 · 7345512785
commit 7345512785
parent c0c358b640 d3dc126d45
1 changed files with 10 additions and 0 deletions
--- a/awx/sso/backends.py
+++ b/awx/sso/backends.py
@ -361,6 +361,16 @@ def on_populate_user(sender, **kwargs):
    # checking membership.
    ldap_user._get_groups().get_group_dns()

+    # If the LDAP user has a first or last name > $maxlen chars, truncate it
+    for field in ('first_name', 'last_name'):
+        max_len = User._meta.get_field(field).max_length
+        field_len = len(getattr(user, field))
+        if field_len > max_len:
+            setattr(user, field, getattr(user, field)[:max_len])
+            logger.warn(six.text_type(
+                'LDAP user {} has {} > max {} characters'
+            ).format(user.username, field, max_len))
+
    # Update organization membership based on group memberships.
    org_map = getattr(backend.settings, 'ORGANIZATION_MAP', {})
    for org_name, org_opts in org_map.items():