freeipa

Clone
Source Code
GIT

e2d6938 AD user without override receive InternalServerError with API

Authored and Committed by frenaud 4 years ago
raw patch tree parent
1 file changed. 1 lines added. 1 lines removed.
ipaserver/rpcserver.py
file modified
+1 -1 
    AD user without override receive InternalServerError with API
    
    When ipa commands are used by an Active Directory user that
    does not have any idoverride-user set, they return the
    following error message which can be misleading:
    $ kinit aduser@ADDOMAIN.COM
    $ ipa ping
    ipa: ERROR: cannot connect to 'https://master.ipa.com/ipa/json': Internal Server Error
    
    The fix properly handles ACIError exception received when
    creating the context, and now the following message can be seen:
    
    $ kinit aduser@ADDOMAIN.COM
    $ ipa ping
    ipa: ERROR: cannot connect to 'https://master.ipa.com/ipa/json': Unauthorized
    
    with the following log in /var/log/httpd/error_log:
    ipa: INFO: 401 Unauthorized: Insufficient access:  Invalid credentials
    
    Fixes: https://pagure.io/freeipa/issue/8163
    Reviewed-By: Alexander Bokovoy <abbra@users.noreply.github.com>
file modified
+1 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.