diff options
author | Jakub Hrozek <jhrozek@redhat.com> | 2012-11-25 22:25:37 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2012-12-05 23:32:18 +0100 |
commit | fe9516c6cc4e41b00bc7b88431fc42250d98041f (patch) | |
tree | 8ea60fd1ac87e6dd0f39ea67352317034aa314aa /src/sysv/gentoo | |
parent | e3961dfa29324af5b6b9645fd7485c9035bdb18b (diff) | |
download | sssd-fe9516c6cc4e41b00bc7b88431fc42250d98041f.tar.gz sssd-fe9516c6cc4e41b00bc7b88431fc42250d98041f.tar.bz2 sssd-fe9516c6cc4e41b00bc7b88431fc42250d98041f.zip |
MEMBEROF: Implement delete operation for ghost users
https://fedorahosted.org/sssd/ticket/1668
The memberof plugin did only expand the ghost users attribute to
parents when adding a nested group, but didn't implement the reverse
operation.
This bug resulted in users being reported as group members even
after the direct parent went away as the expanded ghost attributes were
never removed from the parent entry.
When a ghost entry is removed from a group, all its parent groups are
expired from the cache by setting the expire timestamp to 1. Doing so
would force the SSSD to re-read the group next time it is requested in
order to make sure its members are really up-to-date.
Diffstat (limited to 'src/sysv/gentoo')
0 files changed, 0 insertions, 0 deletions