From 09c95bc31fabf4323e785e77e349b630dca1d8e9 Mon Sep 17 00:00:00 2001
From: Jo <joao.guerreiro@grafana.com>
Date: Wed, 10 Aug 2022 08:20:23 +0000
Subject: [PATCH] TeamSync: Fix team syncing out of orgs mapped by auth method
 (#53257)

---
 pkg/api/ldap_debug.go            | 4 +++-
 pkg/services/ldap/ldap_groups.go | 4 ++--
 2 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/pkg/api/ldap_debug.go b/pkg/api/ldap_debug.go
index 000a42ee436..9cca979ee6b 100644
--- a/pkg/api/ldap_debug.go
+++ b/pkg/api/ldap_debug.go
@@ -331,6 +331,7 @@ func (hs *HTTPServer) GetUserFromLDAP(c *models.ReqContext) response.Response {
 		unmappedUserGroups[strings.ToLower(userGroup)] = struct{}{}
 	}
 
+	orgIDs := []int64{} // IDs of the orgs the user is a member of
 	orgRolesMap := map[int64]models.RoleType{}
 	for _, group := range serverConfig.Groups {
 		// only use the first match for each org
@@ -343,6 +344,7 @@ func (hs *HTTPServer) GetUserFromLDAP(c *models.ReqContext) response.Response {
 			u.OrgRoles = append(u.OrgRoles, LDAPRoleDTO{GroupDN: group.GroupDN,
 				OrgId: group.OrgId, OrgRole: group.OrgRole})
 			delete(unmappedUserGroups, strings.ToLower(group.GroupDN))
+			orgIDs = append(orgIDs, group.OrgId)
 		}
 	}
 
@@ -355,7 +357,7 @@ func (hs *HTTPServer) GetUserFromLDAP(c *models.ReqContext) response.Response {
 		return response.Error(http.StatusBadRequest, "An organization was not found - Please verify your LDAP configuration", err)
 	}
 
-	u.Teams, err = hs.ldapGroups.GetTeams(user.Groups)
+	u.Teams, err = hs.ldapGroups.GetTeams(user.Groups, orgIDs)
 	if err != nil {
 		return response.Error(http.StatusBadRequest, "Unable to find the teams for this user", err)
 	}
diff --git a/pkg/services/ldap/ldap_groups.go b/pkg/services/ldap/ldap_groups.go
index 3406947660b..a3e6053e575 100644
--- a/pkg/services/ldap/ldap_groups.go
+++ b/pkg/services/ldap/ldap_groups.go
@@ -3,7 +3,7 @@ package ldap
 import "github.com/grafana/grafana/pkg/models"
 
 type Groups interface {
-	GetTeams(groups []string) ([]models.TeamOrgGroupDTO, error)
+	GetTeams(groups []string, orgIDs []int64) ([]models.TeamOrgGroupDTO, error)
 }
 
 type OSSGroups struct{}
@@ -12,6 +12,6 @@ func ProvideGroupsService() *OSSGroups {
 	return &OSSGroups{}
 }
 
-func (*OSSGroups) GetTeams(_ []string) ([]models.TeamOrgGroupDTO, error) {
+func (*OSSGroups) GetTeams(_ []string, _ []int64) ([]models.TeamOrgGroupDTO, error) {
 	return nil, nil
 }