Learn more about these different git repos.
Other Git URLs
Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1519287
Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.
If a sudo rule has the same name as a sudoUser attribute value, just once qualified and once unqualified, storing the sudo rule errors out, because internally, both values are qualified, but then sssd attempts to save both values.
SSSD should instead only save each qualified name once.
Rule example:
# testrule, sudoers, win.trust.test dn: CN=testrule,OU=sudoers,DC=win,DC=trust,DC=test objectClass: top objectClass: sudoRole cn: testrule distinguishedName: CN=testrule,OU=sudoers,DC=win,DC=trust,DC=test instanceType: 4 whenCreated: 20171205205338.0Z whenChanged: 20171205205414.0Z uSNCreated: 12777 uSNChanged: 12778 name: testrule objectGUID:: Wq5MFckz7UyO1EViJXZkrQ== objectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=win,DC=trust,DC=test dSCorePropagationData: 16010101000000.0Z sudoUser: tuser@win.trust.test sudoUser: tuser
Metadata Update from @jhrozek: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1519287
Metadata Update from @jhrozek: - Issue set to the milestone: SSSD 2.0 - Issue tagged with: bug, easyfix
Metadata Update from @jhrozek: - Issue priority set to: major
Metadata Update from @jhrozek: - Issue set to the milestone: SSSD 1.16.2 (was: SSSD 2.0)
Metadata Update from @jhrozek: - Issue assigned to jhrozek
I have a local patch, I just need to run some beaker tests before submitting a PR.
Even though the beaker tests passed, I'm afraid I can't submit the PR until another issue gets fixed, so I'm moving the ticket to 1.16.3
Metadata Update from @jhrozek: - Issue set to the milestone: SSSD 1.16.3 (was: SSSD 1.16.2)
PR: https://github.com/SSSD/sssd/pull/609
Metadata Update from @jhrozek: - Issue tagged with: PR
Metadata Update from @jhrozek: - Issue close_status updated to: Fixed - Issue status updated to: Closed (was: Open)
SSSD is moving from Pagure to Github. This means that new issues and pull requests will be accepted only in SSSD's github repository.
This issue has been cloned to Github and is available here: - https://github.com/SSSD/sssd/issues/4619
If you want to receive further updates on the issue, please navigate to the github issue and click on subscribe button.
subscribe
Thank you for understanding. We apologize for all inconvenience.
Login to comment on this ticket.