#4372 Users cannot access private groups
Closed: Fixed None Opened 7 years ago by mkosek.

$ kinit fbar
Password for fbar@EXAMPLE.COM:

# ipa group-find --private
----------------
0 groups matched
----------------
----------------------------
Number of entries returned 0
----------------------------

The problem is that UPG do not have ipausergroup which is in ACI filter. We should filter ACI by posixGroup instead.


Actually we should filter by groupofnames or nestedGroup; not all groups are posix.

master:

  • 02b5074 permission plugin: Join --type objectclass filters with OR
  • ac8539b Add posixgroup to groups' permission object filter

Metadata Update from @mkosek:
- Issue assigned to pviktori
- Issue set to the milestone: FreeIPA 4.0 - 2014/06

5 years ago

Login to comment on this ticket.

Metadata