https://bugzilla.redhat.com/show_bug.cgi?id=783307 (Red Hat Enterprise Linux 6)
Description of problem: ipa delegation-add works if --membergroup entry does not exist. It should fail in this scenario like it does when --group entry does not exist. # ipa group-find dnegroup ---------------- 0 groups matched ---------------- ---------------------------- Number of entries returned 0 ---------------------------- # ipa delegation-add newdelegation --membergroup=dnegroup --group=ipausers --attrs=l -------------------------------- Added delegation "newdelegation" -------------------------------- Delegation name: newdelegation Permissions: write Attributes: l Member user group: dnegroup User group: ipausers Version-Release number of selected component (if applicable): ipa-server-2.2.0-101.20120118T0229zgitbb854ce.el6.x86_64 ipa-admintools-2.2.0-101.20120118T0229zgitbb854ce.el6.x86_64 389-ds-base-libs-1.2.9.14-1.el6.x86_64 389-ds-base-1.2.9.14-1.el6.x86_64 How reproducible: always Steps to Reproduce: 1. make sure dnegroup group does not exist (ipa group-find dnegroup) 2. ipa delegation-add newdelegation --membergroup=dnegroup --group=ipausers --attrs=l Actual results: delegation newdelegation is created: # ipa delegation-add newdelegation --membergroup=dnegroup --group=ipausers --attrs=l -------------------------------- Added delegation "newdelegation" -------------------------------- Delegation name: newdelegation Permissions: write Attributes: l Member user group: dnegroup User group: ipausers Expected results: delegation-add command should fail similar to how it does when --group entry does not exist. Additional info:
master: 616d543[[BR]] ipa-2-2: 93a1a38
Metadata Update from @mkosek: - Issue assigned to ohamada - Issue set to the milestone: FreeIPA 2.2 Core Effort - 2012/02
Login to comment on this ticket.