#2471 RHEL6.6 sssd (1.11) fails if IPA permissions and roles have the same name
Closed: Fixed None Opened 6 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 6): Bug 1154042

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

It appears that we dereference also permissions and roles and if any two object have the same name, we fail.

Fields changed

blockedby: =>
blocking: =>
changelog: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
mark: no => 0
owner: somebody => pbrezina
review: True => 0
selected: =>
testsupdated: => 0

This is a regression in the 1.11.x line. Putting the ticket into the 1.11 milestone.

milestone: NEEDS_TRIAGE => SSSD 1.11.8

This bug is introduced by "IPA: process non-posix nested groups" dfb34c6c82ed5014599bf70de6791e6d79106fc2. Since this commit we try to process roles, permissions and priviledges as groups since those objects have objectClass groupOfNames.

Fields changed

patch: 0 => 1

resolution: => fixed
status: new => closed

Metadata Update from @jhrozek:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.11.8

4 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/3513

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.