rpms / ipa

Clone
Source Code
GIT

Blame SOURCES/0003-Remove-posixAccount-from-service_find-search-filter-2f9cbff_rhbz#1731437.patch

c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-beta c8-beta-stream-DL1 c8-beta-stream-client c8-stream-DL1 c8-stream-client c8s-stream-DL1 c8s-stream-client c9 c9-beta
  1.   645cee1e2c9b5eb37bdeede34be4bbf61be04e23
  2.   SOURCES
  3.   0003-Remove-posixAccount-from-service_find-search-filter-2f9cbff_rhbz#1731437.patch
Blob History Raw
e8574e 
From 2f9cbffb6e57ded2d0107f457241f33b17869a96 Mon Sep 17 00:00:00 2001
e8574e 
From: Rob Crittenden <rcritten@redhat.com>
e8574e 
Date: Jul 19 2019 19:16:16 +0000
e8574e 
Subject: Remove posixAccount from service_find search filter
e8574e
e8574e
e8574e 
This will allow cifs principals to be found. They were suppressed
e8574e 
because they include objectclass=posixAccount.
e8574e
e8574e 
This is a bit of a historical anomaly. This was included in the
e8574e 
filter from the initial commit (though it was person, not
e8574e 
posixAccount). I believe it was a mistake from the beginning but
e8574e 
it wasn't noticed because it didn't cause any obvious issues.
e8574e
e8574e 
https://pagure.io/freeipa/issue/8013
e8574e
e8574e 
Reviewed-By: Alexander Bokovoy <abbra@users.noreply.github.com>
e8574e
e8574e 
---
e8574e
e8574e 
diff --git a/ipaserver/plugins/service.py b/ipaserver/plugins/service.py
e8574e 
index f58fe4b..c118b80 100644
e8574e 
--- a/ipaserver/plugins/service.py
e8574e 
+++ b/ipaserver/plugins/service.py
e8574e 
@@ -889,7 +889,6 @@ class service_find(LDAPSearch):
e8574e 
         assert isinstance(base_dn, DN)
e8574e 
         # lisp style!
e8574e 
         custom_filter = '(&(objectclass=ipaService)' \
e8574e 
-                          '(!(objectClass=posixAccount))' \
e8574e 
                           '(!(|(krbprincipalname=kadmin/*)' \
e8574e 
                               '(krbprincipalname=K/M@*)' \
e8574e 
                               '(krbprincipalname=krbtgt/*))' \
e8574e

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation