From d3dc126d45c751f0ac52eb71946a7382cb5dc775 Mon Sep 17 00:00:00 2001
From: Ryan Petrello <rpetrell@redhat.com>
Date: Wed, 14 Nov 2018 14:09:14 -0500
Subject: [PATCH] truncate user first/last name if it exceeds 30 chars on LDAP
 auth

---
 awx/sso/backends.py | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/awx/sso/backends.py b/awx/sso/backends.py
index cb7d7f0e53..7b4bcfbafc 100644
--- a/awx/sso/backends.py
+++ b/awx/sso/backends.py
@@ -361,6 +361,16 @@ def on_populate_user(sender, **kwargs):
     # checking membership.
     ldap_user._get_groups().get_group_dns()
 
+    # If the LDAP user has a first or last name > $maxlen chars, truncate it
+    for field in ('first_name', 'last_name'):
+        max_len = User._meta.get_field(field).max_length
+        field_len = len(getattr(user, field))
+        if field_len > max_len:
+            setattr(user, field, getattr(user, field)[:max_len])
+            logger.warn(six.text_type(
+                'LDAP user {} has {} > max {} characters'
+            ).format(user.username, field, max_len))
+
     # Update organization membership based on group memberships.
     org_map = getattr(backend.settings, 'ORGANIZATION_MAP', {})
     for org_name, org_opts in org_map.items():