#603 ipa permission-mod fails removing permission
Closed: Fixed None Opened 13 years ago by admiyo.

Input:
[ayoung@ipa ~]$ ipa permission-add test-perm --desc "Test Permission" --permissions='add, delete' --type 'hostgroup'

Output:


Added permission "test-perm"

Permission name: test-perm
Description: Test Permission
Permissions: add, delete
Type: hostgroup

Input:
[ayoung@ipa ~]$ ipa permission-mod test-perm --desc "Test Permission" --permissions='add' --type 'hostgroup'

output:
ipa: ERROR: This entry already exists

There doesn't seem to be a way to remove a permission other than this.


It was always trying to update description when provided even if it hadn't changed.

I noticed that a pure aci-only update (such as changing the permissions) would result in an EmptyModList because the permission object itself wasn't updated. I had half coded that originally, I finished the job here.

Metadata Update from @admiyo:
- Issue assigned to rcritten
- Issue set to the milestone: FreeIPA 2.0 - 2010/12 (FC)

7 years ago

Login to comment on this ticket.

Metadata