Check if the group exists

When setting default group, we should check if the group exists. If not, it could lead to some issues with adding new users after the new default group is set. https://fedorahosted.org/freeipa/ticket/504
author: Jan Zeleny <jzeleny@redhat.com> 2010-12-06 17:08:10 +0100
committer: Rob Crittenden <rcritten@redhat.com> 2010-12-06 11:25:25 -0500
commit: 19049d1a64d55921980103cbb3ce36d40fc9ffff (patch)
tree: cf17bfffb15a9e730616a154d269a664bdba5947
parent: 9a5d4f2e18d0804662a469b916266db901484317 (diff)
download: freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.tar.gz
freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.tar.xz
freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.zip
1 files changed, 6 insertions, 0 deletions
diff --git a/ipalib/plugins/config.py b/ipalib/plugins/config.py
index 482b06bf8..79db77e98 100644
--- a/ipalib/plugins/config.py
+++ b/ipalib/plugins/config.py
@@ -149,6 +149,12 @@ class config_mod(LDAPUpdate):
                 entry_attrs['ipamigrationenabled'] = 'TRUE'
             else:
                 entry_attrs['ipamigrationenabled'] = 'FALSE'
+        if 'ipadefaultprimarygroup' in entry_attrs:
+            group=entry_attrs['ipadefaultprimarygroup']
+            try:
+                api.Command['group_show'](group)
+            except errors.NotFound:
+                raise errors.NotFound(message=unicode("The group doesn't exist"))
         return dn
 
 api.register(config_mod)
author	Jan Zeleny <jzeleny@redhat.com>	2010-12-06 17:08:10 +0100
committer	Rob Crittenden <rcritten@redhat.com>	2010-12-06 11:25:25 -0500
commit	19049d1a64d55921980103cbb3ce36d40fc9ffff (patch)
tree	cf17bfffb15a9e730616a154d269a664bdba5947
parent	9a5d4f2e18d0804662a469b916266db901484317 (diff)
download	freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.tar.gz freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.tar.xz freeipa-19049d1a64d55921980103cbb3ce36d40fc9ffff.zip