Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1441262
Description of problem: When a user with sufficient permissions creates a group using ipa group-add and then deletes it again with group-del ipa gives an Insufficient access error, but still deletes the group. Version-Release number of selected component (if applicable): Name : ipa-server Arch : x86_64 Version : 4.4.0 Release : 14.el7.centos.6 How reproducible: Every time Steps to Reproduce: 1. create a user with Indirect Member of role: User Administrator 2. kinit user_admin 3. ipa group-add gtest ------------------- Added group "gtest" ------------------- Group name: gtest GID: 1850000008 4. ipa group-del gtest Actual results: ipa: ERROR: Insufficient access: ipa group-show gtest ipa: ERROR: gtest: group not found Expected results: --------------------- Deleted group "gtest" --------------------- Additional info: works ok with user admin
Metadata Update from @pvoborni: - Custom field rhbz adjusted to https://bugzilla.redhat.com/show_bug.cgi?id=1441262
Metadata Update from @mbasti: - Issue assigned to mbasti
Metadata Update from @pvoborni: - Issue priority set to: major - Issue set to the milestone: FreeIPA 4.7
Metadata Update from @mbasti: - Assignee reset
Metadata Update from @abbra: - Issue assigned to abbra
PR: https://github.com/freeipa/freeipa/pull/1886
master:
Metadata Update from @cheimes: - Issue close_status updated to: fixed - Issue status updated to: Closed (was: Open)
ipa-4-6:
ipa-4-8:
Login to comment on this ticket.