To allow SSSD to support flat namespace of user and group names from trusted domains, FreeIPA needs to maintain an ordered list of trusted domains. This would allow setting priorities between domains in case there are users and groups with the same names in the trusted domains.
FreeIPA should provide a way to refer existing trusted domains and assign weights to them. SSSD then would fetch and build the list of trusted domains based on the their weights to allow a single flat namespace for user and group names (without qualifiers).
And such a list should probably be defined per ID View so that if there is a special set of hosts combined into a view you can define a list for them. This would match what people are used to with other vendors. If the value is not defined the one from the default ID View would be used. Just an thought...
SSSD counterpart: https://fedorahosted.org/sssd/ticket/3210
Metadata Update from @abbra: - Issue assigned to someone - Issue set to the milestone: 0.0 NEEDS_TRIAGE
Metadata Update from @pvoborni: - Custom field affects_doc reset - Custom field design adjusted to https://www.freeipa.org/page/V4/AD_User_Short_Names - Custom field tester adjusted to wanted - Issue close_status updated to: None
Metadata Update from @pvoborni: - Custom field affects_doc reset - Issue assigned to mbabinsk (was: someone) - Issue set to the milestone: FreeIPA 4.5 (was: 0.0 NEEDS_TRIAGE)
Metadata Update from @mbabinsk: - Custom field on_review adjusted to https://github.com/freeipa/freeipa/pull/573
master:
Leaving opened until webUI parts is pushed
Metadata Update from @mbasti: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
Log in to comment on this ticket.