diff options
author | Jan Zeleny <jzeleny@redhat.com> | 2012-06-13 08:14:40 -0400 |
---|---|---|
committer | Stephen Gallagher <sgallagh@redhat.com> | 2012-06-13 10:01:13 -0400 |
commit | e3319541af46d8b0de7e0b865c37904cf6216b58 (patch) | |
tree | 142926d5496f2017cf13e38b6c6a4bbe653ae931 /src/providers/krb5/krb5_utils.c | |
parent | 2c62da337e31217d03f5bf0f768b574d166bb2fe (diff) | |
download | sssd-e3319541af46d8b0de7e0b865c37904cf6216b58.tar.gz sssd-e3319541af46d8b0de7e0b865c37904cf6216b58.tar.bz2 sssd-e3319541af46d8b0de7e0b865c37904cf6216b58.zip |
Fix an issue in ghost users
There was an issue with ghost members in nested groups. Consider a
scenario with two groups A and B, B being member of A and having some
ghost members. In such case SSSD stored both groups, then added
membership between them and then added ghost members to the group B.
The problem was that adding ghost members to group B didn't propagate
these ghost members to group A. This functionality could have been
solved by memberof plugin but the logic is far more complicated that
changes this patch introduces.
The change is simple: add ghost members at the same time as the group is
created, even if groups are supposed to be stored in two passes. That
way ghost members will be present at the time A -> B membership is
created and they will be propagated as expected.
Diffstat (limited to 'src/providers/krb5/krb5_utils.c')
0 files changed, 0 insertions, 0 deletions