New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Issue 5184 - memberOf does not work correctly with multiple include scopes #5185
Issue 5184 - memberOf does not work correctly with multiple include scopes #5185
Conversation
} | ||
if (!all_backends) { | ||
goto done; | ||
} |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
in case 'all_backend'==True, is there a risk that it goes to the internal search below (line 836). In such case is base_sdn valid and is it processing the base_sdn twice ?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This function is actually rather confusing. I've revised it again, and it passes CI tests, but please review...
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@tbordaz could you review this again? Remember there is second part to this that is waiting for this to be merged first.
eb5611d
to
0e3cc34
Compare
…copes Bug Description: MemberOf Plugin only looks at the first include scope, and the rest are ignored. So if multiple "memberOfEntryScope" attributes are set then the plugin will not work as expected. Fix Description: The fix is to read all the memberOfEntryScope attributes and update the group cache. relates: 389ds#5184 Reviewed by: tbordaz(Thanks!)
0e3cc34
to
0af29fe
Compare
can you add a test for a "broken" case like |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The patch looks good to me. I admit that this part of code handling scoping/exclude/only one backend is a bit messy but not sure how to write in a better way.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
ACK
Bug Description:
MemberOf Plugin only looks at the first include scope, and the rest are
ignored. So if multiple "memberOfEntryScope" attributes are set then the
plugin will not work as expected.
Fix Description:
The fix is to read all the memberOfEntryScope attributes and update the
group cache.
relates: #5184