Hi Apache ManifoldCF user listI’m experimenting with Apache ManifoldCF 2.3, Elasticsearch 1.74 and the corresponding Elasticsearch plugin (v 2.0.1) which I use to index the network Windows shares of our company.
I set up Apache Manifold using authorization services together with an Active Directory.Using the Apache ManifoldCF authentication services with separated domain name and user name does somehow not work for our active directory configuration, so the when the following service call is made http://localhost:8081/mcf-authority-service/UserACLs?username=msi&domain=ourdomain.com , the authentication service does not return any ACL list. I tried to do different combinations of domain names or netbios names together with user names. Or just username without domain name. No success!However, the only thing that is working is when calling the authorization service with http://localhost:8081/mcf-authority-service/UserACLsemail@example.com , i.e., using the user principal name as username. In this case the service returns the correct set of ACLs.Unfortuanately, the elasticsearch plugin for Apache ManifoldCF authentication service does not allow one to hand over a username in the form of the user principal name, e.g. firstname.lastname@example.org. This is due to the fact that the @ sign is not allowed to be encoded in the user name. My current work around (which works) is to adapt the elasticsearch plugin to accept the @ sign in the user name. However, this is not a nice solution. Is there a better (built-in) solution, or did I just something miss regarding the authencation service?Regards