Issue #2100: Missing permission memberof attribute - freeipa

freeipa

#2100 Missing permission memberof attribute

Closed: Fixed None Opened 12 years ago by edewata.

The CLI accepts creating a permission with a memberof attribute. However, the attribute is not returned in the response:

# ipa permission-add test --permissions=write --memberof=editors
-----------------------
Added permission "test"
-----------------------
  Permission name: test
  Permissions: write

It doesn't appear in the show comand either:

# ipa permission-show test --all --raw
  dn: cn=test,cn=permissions,cn=pbac,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com
  cn: test
  permissions: write
  objectclass: groupofnames
  objectclass: ipapermission
  objectclass: top

The attribute is actually stored in LDAP ACI:

aci: (targetfilter = "(memberOf=cn=editors,cn=groups,cn=accounts,dc=idm,dc=lab
 ,dc=bos,dc=redhat,dc=com)")(version 3.0;acl "permission:test";allow (write) u
 serdn = "ldap:///self";)

rcritten commented 12 years ago

attachment
freeipa-rcrit-912-permission.patch

rcritten commented 12 years ago

master: 64ee246

dpal commented 12 years ago

(In #2255) #2100 & #2101 are the fixes for this one.

Metadata Update from @edewata:
- Issue assigned to rcritten
- Issue set to the milestone: FreeIPA 3.0 Core Effort - 2011/12

7 years ago

Metadata

Assignee

rcritten

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 3.0 Core Effort - 2011/12

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

2255

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#2100 Missing permission memberof attribute Closed: Fixed None Opened 12 years ago by edewata.

Metadata

#2100 Missing permission memberof attribute

Closed: Fixed None Opened 12 years ago by edewata.