Public bug reported: In an environment with an ldap server as identity backend, if a group is deleted out-of-band, the role assignment entry cannot be deleted as it checks for the existence of the group in the backend.
Therefore the assignments on groups cannot be deleted. There is already a parameter allow_no_user that handles these cases for users but it is not used at all for groups. ** Affects: keystone Importance: Undecided Assignee: Jose Castro Leon (jose-castro-leon) Status: In Progress -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Identity (keystone). https://bugs.launchpad.net/bugs/1751045 Title: The removal of a role on a non existing group throws an error Status in OpenStack Identity (keystone): In Progress Bug description: In an environment with an ldap server as identity backend, if a group is deleted out-of-band, the role assignment entry cannot be deleted as it checks for the existence of the group in the backend. Therefore the assignments on groups cannot be deleted. There is already a parameter allow_no_user that handles these cases for users but it is not used at all for groups. To manage notifications about this bug go to: https://bugs.launchpad.net/keystone/+bug/1751045/+subscriptions -- Mailing list: https://launchpad.net/~yahoo-eng-team Post to : yahoo-eng-team@lists.launchpad.net Unsubscribe : https://launchpad.net/~yahoo-eng-team More help : https://help.launchpad.net/ListHelp