Users still cannot login via LDAP. I’ve tested the following scenarios and none allow a superuser or standard user who is configured in Active Directory to have access to this server.
I restored the database to pre-4.1.1 upgrade which was 3.14.1. The LoginLDAP was 4.0.8. I tested 3.14.1 with LoginLDAP 4.0.9 and logins still worked. As soon as I upgrade Matomo and the database to 4.0.#, user cannot login with LDAP anymore.
The first test scenerios were as follows:
Matomo 4.0.0 upgrade with LoginLDAP 4.2.0. Received an error when trying to login “You are now accessing Matomo from https://*.domain.com/index.php but Matomo is configured to run at https://matomo-name.domain.com/index.php”. When I was connecting from Chrome and/or Safari, it was using the correct URL, so this error made no sense.
I continued to upgrade from 4.0.0 to 4.0.1 and incrementally to 4.0.5 when finally this error went away. I continued to upgrade from 4.0.5 to 4.1.0 and 4.1.1. I also update the LoginLDAP plugin from 4.2.0 to 4.3.0. I lastly tried downgrading our PHP from 7.4 to 7.2. None of these tests worked.
I was able to get to the login screen, but only a locally created user could login. No LDAP connections worked.
Also, when I checked the LDAP settings, the LoginLDAP plugin was active and showing the version 4.2.0. It also gave a warning, “NOTE: Since you updated from a pre-3.0.0 version, you should probably …” We did not upgrade from a pre-3.0.0 version. We were on 4.0.8 before going to Matomo 4.0.0 or higher.
Every time I logged into the Matomo container and ran " /usr/share/nginx/html/console loginldap:synchronize-users" it would sync the users. I even deleted a test user from the Matomo console and then re-ran the ldap sync and it was recreated with the appropriate permissions. The warning that the “undefined index: alias” is still there even though I upgraded to 4.2.0 during this testing.
All tests in the Matomo console succeed when trying to test or sync LDAP. Users just cannot login. Says “Error: Wrong Username and password combination.” I did use Chrome incognito mode and Safari. Cleared the cache in both as well.
Not sure what else to test with this. Please let me know if you have any suggestions.