Details
-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 3.3.1
-
Fix Version/s: 3.4.0
-
Labels:
-
Story Points:2
-
Release Note:Yes
-
Sprint:Core Team - Sprint 95
Description
Reproduce steps:
- Go to "security/users" in the UI
- Change the "source" to LDAP
- Hit enter in the "filter by user ID" box without inputting any data
Observe that all user ID's from the LDAP server are retrieved, and for each one the full user record is retrieved. This will result in a UI timeout if the LDAP server has a large number of users, or possibly even an OOM.
Expected: The UI should limit the number of users retrieved in some way. This could be a paged result set. Or it could be as simple as only retrieving at most some arbitrary number o users, such as 1000.
Attachments
Issue Links
- relates
-
NEXUS-21389 REST /security/users resource is documented to return max 100 users but can return more
-
- New
-