-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 09/09/2010 09:14 AM, Ralf Haferkamp wrote:
Hi,
Is it really the intended behaviour of the sssd LDAP backend (I am
running the current code from the master branch) to only return the group
members that are already cached in sysdb and to silently ignore
everything else? E.g. when I start sssd with empty caches and do a
"getent group <random-ldap-group>" I will only get back the group without
any members. Somehow I think this can't be intended :)
I have started working on a patch to let sssd look up the non-cached
users via LDAP (and save them into the cache). Find it attached. Note:
That patch is not really complete (e.g. it doesn't handle rfc2307 groups
correctly). But before putting more effort into this I like to make sure
that I am not trying to fix a "feature" here.
No, it is not intentional that groups should be missing users. This is
definitely a bug. Please file a ticket upstream.
I'll take a look at this patch soon, but I can't promise that I'll get
to it this week (I'm a bit swamped).
- --
Stephen Gallagher
RHCE 804006346421761
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora -
http://enigmail.mozdev.org/
iEYEARECAAYFAkyI3pQACgkQeiVVYja6o6O8CQCfUwXPg7yy7iqfN2R4oz1C6Hqe
3J8AoKy/Y0CU3IyfaNEQjLIEwJ3LNX7H
=1yoq
-----END PGP SIGNATURE-----