Am Mon, Jan 06, 2025 at 02:27:30PM -0000 schrieb mvogt1--- via FreeIPA-users: > Hello, > > I found out today, that a user can login with its email. (which was new for > me, btw) > > Now I have this user with a very long E-Mail (32+chars) > > - But after he logins, the RHEL9 system truncates the valid login E-Mail to a > 32 char invalid one. > > I haven't found a way to get the numerical userid, by the truncated name, if > its a long email > and my script fails with the error below. > > Is it possible to disable this E-Mail based login option? > > best regards, > > > The setup is: > > - IPA, version: 4.12.2 (server) > - RHEL 9 client > - login via gdm (system default)
Hi, thank you for the report. Can you check if the behavior is different when you log in from a text terminal, i.e press CRTL-ALT-F4 at the GDM screen to switch to a text terminal and log in? Additionally, what id the output of the `id` command after the user logged in with GDM? I assume the behavior you see is specific to GDM because GDM (correctly) does not try to check if the user exists on the system by calling getpwnam() like basically any other login service. This means it will keep using the given name and does not replace it with the canonical name like the other services. I thought the SSSD's PAM module pam_sss does handle this case but I couldn't find a matching code part after a short look. So it would be good to understand if this is really specific to GDM. bye, Sumit > > For example, if I do a login with my E-Mail address (stored on the IPA > server) and I have a long domainname like > > - [email protected] > > the tools on the client (like users,who,ps,w) truncates the name to 32 chars: > > - [email protected] > > I have a python script which checks if a logged in users is not a system > account, and the works > on the uids, example code: > > > import psutil > from pwd import getpwnam > > users=psutil.users() > > for user in users: > login=user.name > print(login) > if getpwnam(login).pw_uid > 1000: > print("user") > > KeyError: "getpwnam(): name not found: ' [email protected]" > -- > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue -- _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
