Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Filter User Now Getting Returned as Member of a Group - Change in Behavior as of 11/21 #1331

Closed
sssd-bot opened this issue May 2, 2020 · 0 comments
Closed

Filter User Now Getting Returned as Member of a Group - Change in Behavior as of 11/21 #1331

sssd-bot opened this issue May 2, 2020 · 0 comments
Labels
Closed: Fixed Issue was closed as fixed.

Comments

@sssd-bot
Copy link

sssd-bot commented May 2, 2020

Cloned from Pagure issue: https://pagure.io/SSSD/sssd/issue/289

  • Created at 2009-11-23 19:36:32 by jgalipea
  • Closed as Fixed
  • Assigned to simo

Description
The default behavior with getent group was always to not returned filtered users as group members. As of Nov. 21st this behavior has changed and the associated automated test is failing.[[BR]]

520|0 58 13377 1 1|START localdomain_061: Filtered user as member of Group - Trac Issue 108
520|0 58 13377 1 2|Restarting SSSD service
520|0 58 13377 1 3|SSSD service restarted
520|0 58 13377 1 4|Filtered user found in database but was not returned by getent as expected.
520|0 58 13377 1 5|memberof attribute value for name=jenny,cn=users,cn=LOCAL,cn=sysdb is as expected: name=test,cn=groups,cn=LOCAL,cn=sysdb
520|0 58 13377 1 6|LOCAL domain jenny memberof attribute is correct.
520|0 58 13377 1 7|memberof attribute value for name=jimi,cn=users,cn=LOCAL,cn=sysdb is as expected: name=test,cn=groups,cn=LOCAL,cn=sysdb
520|0 58 13377 1 8|LOCAL domain jimi memberof attribute is correct.
520|0 58 13377 1 9|Unfiltered user was returned as member of the group.
520|0 58 13377 1 10|ERROR: User jenny is filtered and was returned as member of group test
520|0 58 13377 1 11|TestCaseResult localdomain_061 FAIL

Comments

Comment from simo at 2009-11-23 20:19:53

Ok this is interesting.
I never thought of the name filters in conjunction with a local provider.

Filters were always intended as a way to block unwanted names from a remote provider, because you can remove local users if you don't want them.

I wonder if we should make the name filters per provider instead ?

Comment from sgallagh at 2009-11-30 17:31:39

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.0
owner: somebody => simo

Comment from simo at 2009-11-30 18:13:05

Fixed in: 089077a

milestone: SSSD 1.0 => SSSD 1.0 RC
resolution: => fixed
status: new => closed

Comment from sgallagh at 2009-11-30 19:37:42

Correcting FixedIn field.

fixedin: => 1.0.0rc
milestone: SSSD 1.0 RC => SSSD 1.0

Comment from dpal at 2012-01-19 02:28:34

Fields changed

rhbz: => 0

Comment from jgalipea at 2017-02-24 14:40:01

Metadata Update from @jgalipea:

  • Issue assigned to simo
  • Issue set to the milestone: SSSD 1.0
@sssd-bot sssd-bot added the Closed: Fixed Issue was closed as fixed. label May 2, 2020
@sssd-bot sssd-bot closed this as completed May 2, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Closed: Fixed Issue was closed as fixed.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@sssd-bot