Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1188195
Description of problem: Use user-mod to set fax number. Kinit as user and try to user-show. Fax number set previously is missing when queried as user. Version-Release number of selected component (if applicable): ipa-server-4.1.0-17.el7.x86_64 How reproducible: Always Steps to Reproduce: 1. kinit admin 2. ipa user-add user0001 --first=user0001 --last=user0001 --password 3. ipa user-mod user0001 --fax=777-777-7777 4. kinit user0001 5. ipa user-show user0001 --all Actual results: "ipa user-show user0001 --all" does not list the fax number. Expected results: "ipa user-show user0001 --all" should list the fax number. Additional info: [root@apollo ~]# ipa user-mod user0001 --fax=777-777-7777 ------------------------ Modified user "user0001" ------------------------ User login: user0001 First name: user0001 Last name: user0001 Home directory: /home/user0001 Login shell: /bin/sh Email address: user0001@idmqe.lab.eng.bos.redhat.com UID: 1610000001 GID: 1610000001 Fax Number: 777-777-7777 Account disabled: False Password: True Member of groups: ipausers Kerberos keys available: True [root@apollo ~]# [root@apollo ~]# echo Secret_123 | kinit user0001 Password for user0001@IDMQE.LAB.ENG.BOS.REDHAT.COM: [root@apollo ~]# ipa user-find user0001 --fax=777-777-7777 --------------- 0 users matched --------------- ---------------------------- Number of entries returned 0 ---------------------------- [root@apollo ~]# [root@apollo ~]# ipa user-show user0001 --all dn: uid=user0001,cn=users,cn=accounts,dc=idmqe,dc=lab,dc=eng,dc=bos,dc=redhat ,dc=com User login: user0001 First name: user0001 Last name: user0001 Full name: user0001 user0001 Display name: user0001 user0001 Initials: uu Home directory: /home/user0001 GECOS: user0001 user0001 Login shell: /bin/sh Kerberos principal: user0001@IDMQE.LAB.ENG.BOS.REDHAT.COM Email address: user0001@idmqe.lab.eng.bos.redhat.com UID: 1610000001 GID: 1610000001 Account disabled: False Password: True Member of groups: ipausers Kerberos keys available: True ipauniqueid: 4d5472b0-aabe-11e4-b2a7-0015172f2b30 krblastpwdchange: 20150202094641Z krbpasswordexpiration: 20150503094641Z objectclass: ipaSshGroupOfPubKeys, ipaobject, mepOriginEntry, person, top, ipasshuser, inetorgperson, organizationalperson, krbticketpolicyaux, krbprincipalaux, inetuser, posixaccount [root@apollo ~]# Now, kinit as admin: [root@apollo ~]# echo Secret123 | kinit admin Password for admin@IDMQE.LAB.ENG.BOS.REDHAT.COM: [root@apollo ~]# ipa user-show user0001 --all dn: uid=user0001,cn=users,cn=accounts,dc=idmqe,dc=lab,dc=eng,dc=bos,dc=redhat ,dc=com User login: user0001 First name: user0001 Last name: user0001 Full name: user0001 user0001 Display name: user0001 user0001 Initials: uu Home directory: /home/user0001 GECOS: user0001 user0001 Login shell: /bin/sh Kerberos principal: user0001@IDMQE.LAB.ENG.BOS.REDHAT.COM Email address: user0001@idmqe.lab.eng.bos.redhat.com UID: 1610000001 GID: 1610000001 Fax Number: 777-777-7777 Account disabled: False Password: True Member of groups: ipausers Kerberos keys available: True ipauniqueid: 4d5472b0-aabe-11e4-b2a7-0015172f2b30 krbextradata: AAKBR89Ua2FkbWluZEBJRE1RRS5MQUIuRU5HLkJPUy5SRURIQVQuQ09NAA== krblastpwdchange: 20150202094641Z krblastsuccessfulauth: 20150202095810Z krbloginfailedcount: 0 krbpasswordexpiration: 20150503094641Z krbticketflags: 128 mepmanagedentry: cn=user0001,cn=groups,cn=accounts,dc=idmqe,dc=lab,dc=eng,dc= bos,dc=redhat,dc=com objectclass: ipaSshGroupOfPubKeys, ipaobject, mepOriginEntry, person, top, ipasshuser, inetorgperson, organizationalperson, krbticketpolicyaux, krbprincipalaux, inetuser, posixaccount [root@apollo ~]# Missing attributes for normal user: Fax Number: 777-777-7777 krbextradata: AAKBR89Ua2FkbWluZEBJRE1RRS5MQUIuRU5HLkJPUy5SRURIQVQuQ09NAA== krblastsuccessfulauth: 20150202095810Z krbloginfailedcount: 0 krbpasswordexpiration: 20150503094641Z krbticketflags: 128 mepmanagedentry: cn=user0001,cn=groups,cn=accounts,dc=idmqe,dc=lab,dc=eng,dc= bos,dc=redhat,dc=com Other missing attributes seems fine to not be listed for user, however, fax is something that user should be able to see.
4.1.3 was released.
master:
ipa-4-1:
Metadata Update from @mkosek: - Issue assigned to tbabej - Issue set to the milestone: FreeIPA 4.1.4
Login to comment on this ticket.