#1559 [RFE] Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names

Created 4 years ago by simo
Modified 3 months ago

It would be useful if we culd expose SID->Name resolution as a special case through the getpwnam()/getpwgroup() interfaces, by simply passing in a SID a string.

This will allow a number of components to do SID->Name resolution cheaply using a well-known existing interface and keep the cache in a single place within SSSD. The FreeIPA server could also benefit from this approach and defer to SSSD for SID->Name resolution.

I do not see a simple way to do Name->SID resolution through nsswitch interfaces, but that operation is less common and we can deal with it separately if needed.

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.10 beta
rhbz: => 0
summary: Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names => [RFE] Use the getpwnam()/getgrnam() interface as a gateway to resolve SID to Names

Fields changed

priority: major => critical

Fields changed

owner: somebody => simo
status: new => assigned

Fields changed

design: =>
design_review: => 0
fedora_test_page: =>
selected: => Want

Fields changed

owner: simo => sbose
status: assigned => new

Fields changed

review: => 0

The first batch of patches landed in master:

  • 2962b3d1e072ff2ebbe343095812dad697d6bf1d
  • 44c379a27a2d8de0ad933ebb2558b5e82b05fd56
  • b5afbc39c09baaef57b5300b636307e277c59d66
  • 1e72a17f6527d47968032fc928f489dad10705ea
  • 498dcbdfdfffa1aee65d53e83c7eafd5e3b084a5
  • f427b36b0cecc426856ab3f77a9c684ac355659d
  • f0944fdd627bd684ff36c9670dc857ffdedc343f
  • 206329d3901738036352f2ac1e8d7804f728861d
  • 1ae6d34788fd6ac2278be52b60d77c77073d98f3
  • 5a6e3cb57cf2d8d4118b58be0574cccea171ca19
  • 2648ec1017d37c0840294352b69fc87047da0368
  • 4668b4765530cf37289235e483f301100cc1ae21

The patches that implement the library itself and its plugin interface were pushed to master:

  • c080a11e9e88f35e40aff4e476cabbd971833019
  • 2a9af1f71887f02935e2fb6ad5023afba5b6d43e
  • 6eadbf9dab2ad9a9463dc23e91c9e2fc804c1e9b
  • e2f6326ea56217afab7623c542a237ee84eb74da

resolution: => fixed
status: new => closed

Fields changed

changelog: => IPA Web UI is able to display real names not only SIDs.
design: => N/A ((not visible to end user at the moment)

Fields changed

design: N/A ((not visible to end user at the moment) => N/A (not visible to end user at the moment)

Fields changed

design: N/A (not visible to end user at the moment) => https://fedorahosted.org/sssd/wiki/DesignDocs/NSSResponderIDMappingCalls

3 months ago

Metadata Update from @simo:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.10 beta

Login to comment on this ticket.

enhancement

SSSD

1.9.0

0

Want

0

https://bugzilla.redhat.com/show_bug.cgi?id=887035

0

0

IPA Web UI is able to display real names not only SIDs.

https://fedorahosted.org/sssd/wiki/DesignDocs/NSSResponderIDMappingCalls

cancel