Hi,
I am currently giving sssd a try on openSUSE. While I could successfully build
it, I ran into a problem with LDAP backend and the initgroups() call when
using "ldapSchema = rfc2307bis". sssd created wrong search filters. The
attached patch should fix that problem.
--
regards,
Ralf
From 8254d50d2ee58fc04efbfdd834187422f252431f Mon Sep 17 00:00:00 2001
From: Ralf Haferkamp <rha...@suse.de>
Date: Thu, 3 Sep 2009 14:20:21 +0200
Subject: [PATCH] Fix initgroups search filter when using rfc2307bis
sdap_get_initgr_process() was using the wrong sdap_id_map struct
when creating the searchfilter for the initgroups() call.
---
server/providers/ldap/sdap_async.c | 4 ++--
1 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/server/providers/ldap/sdap_async.c b/server/providers/ldap/sdap_async.c
index 852c6d2..de8276d 100644
--- a/server/providers/ldap/sdap_async.c
+++ b/server/providers/ldap/sdap_async.c
@@ -1831,9 +1831,9 @@ static void sdap_get_initgr_process(struct tevent_req *subreq)
}
state->filter = talloc_asprintf(state, "(&(%s=%s)(objectclass=%s))",
- state->opts->user_map[SDAP_AT_GROUP_MEMBER].name,
+ state->opts->group_map[SDAP_AT_GROUP_MEMBER].name,
user_dn,
- state->opts->user_map[SDAP_OC_GROUP].name);
+ state->opts->group_map[SDAP_OC_GROUP].name);
talloc_free(msg);
break;
--
1.6.3.3
_______________________________________________
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel
