#1559 [RFE] Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names

Created 5 years ago by simo
Modified 11 months ago

It would be useful if we culd expose SID->Name resolution as a special case through the getpwnam()/getpwgroup() interfaces, by simply passing in a SID a string.

This will allow a number of components to do SID->Name resolution cheaply using a well-known existing interface and keep the cache in a single place within SSSD. The FreeIPA server could also benefit from this approach and defer to SSSD for SID->Name resolution.

I do not see a simple way to do Name->SID resolution through nsswitch interfaces, but that operation is less common and we can deal with it separately if needed.

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10 beta
rhbz: => 0
summary: Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names => [RFE] Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names

Fields changed

priority: major => critical

Fields changed

owner: somebody => simo
status: new => assigned

Fields changed

design: =>
design_review: => 0
fedora_test_page: =>
selected: => Want

Fields changed

owner: simo => sbose
status: assigned => new

Fields changed

review: => 0

The patches that implement the library itself and its plugin interface were pushed to master:

resolution: => fixed
status: new => closed

Fields changed

changelog: => IPA Web UI is able to display real names not only SIDs.
design: => N/A ((not visible to end user at the moment)

Fields changed

design: N/A ((not visible to end user at the moment) => N/A (not visible to end user at the moment)

Fields changed

design: N/A (not visible to end user at the moment) => https://fedorahosted.org/sssd/wiki/DesignDocs/NSSResponderIDMappingCalls

11 months ago

Metadata Update from @simo:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.10 beta

Login to comment on this ticket.

enhancement

SSSD

1.9.0

Want

0

0

https://bugzilla.redhat.com/show_bug.cgi?id=887035

0

0

IPA Web UI is able to display real names not only SIDs.

https://fedorahosted.org/sssd/wiki/DesignDocs/NSSResponderIDMappingCalls

cancel