From 6e2caa37ab5ec171eccdc46e84ae8fc8aae18d10 Mon Sep 17 00:00:00 2001
From: Jongyoul Lee <jongyoul@gmail.com>
Date: Sat, 17 Feb 2024 23:56:30 +0900
Subject: [PATCH] [HOTFIX] Escape Ldap search filters

---
 .../src/main/java/org/apache/zeppelin/realm/LdapRealm.java       | 1 +
 1 file changed, 1 insertion(+)

diff --git a/zeppelin-server/src/main/java/org/apache/zeppelin/realm/LdapRealm.java b/zeppelin-server/src/main/java/org/apache/zeppelin/realm/LdapRealm.java
index 0da5ba55939..e1d6d694c73 100644
--- a/zeppelin-server/src/main/java/org/apache/zeppelin/realm/LdapRealm.java
+++ b/zeppelin-server/src/main/java/org/apache/zeppelin/realm/LdapRealm.java
@@ -942,6 +942,7 @@ userSearchAttributeName, expandTemplate(getUserSearchAttributeTemplate(),
   }
 
   // Implements the necessary escaping to represent an attribute value as a String as per RFC 4514.
+  // https://github.com/apache/tomcat/blob/main/java/org/apache/catalina/realm/JNDIRealm.java#L2921
   protected String escapeAttributeValue(String input) {
     if (input == null) {
       return null;