Don't allow the admin user to be removed using the XML-RPC Interface.

If a site really wants it gone then can delete it via LDAP. 439281
author: Rob Crittenden <rcritten@redhat.com> 2008-03-28 15:28:28 -0400
committer: Rob Crittenden <rcritten@redhat.com> 2008-03-28 15:28:28 -0400
commit: b7924139d895c7ebe019fbfc9c85fed3baae642e (patch)
tree: 9f9ba4ac56ecb9c7a3209fe903e7d44371d0fbe2 /ipa-server/xmlrpc-server/funcs.py
parent: 034d9d6753c22db6fb38a9cf85f550a0b376ca9f (diff)
download: freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.tar.gz
freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.tar.xz
freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/ipa-server/xmlrpc-server/funcs.py b/ipa-server/xmlrpc-server/funcs.py
index 11b4e9fb5..5190b09f7 100644
--- a/ipa-server/xmlrpc-server/funcs.py
+++ b/ipa-server/xmlrpc-server/funcs.py
@@ -1105,6 +1105,8 @@ class IPAServer:
         """
         if not isinstance(uid,basestring) or len(uid) == 0:
             raise ipaerror.gen_exception(ipaerror.INPUT_INVALID_PARAMETER)
+        if uid == "admin":
+            raise ipaerror.gen_exception(ipaerror.INPUT_ADMIN_REQUIRED)
         user = self.get_user_by_uid(uid, ['dn', 'uid', 'objectclass'], opts)
         if user is None:
             raise ipaerror.gen_exception(ipaerror.LDAP_NOT_FOUND)
author	Rob Crittenden <rcritten@redhat.com>	2008-03-28 15:28:28 -0400
committer	Rob Crittenden <rcritten@redhat.com>	2008-03-28 15:28:28 -0400
commit	b7924139d895c7ebe019fbfc9c85fed3baae642e (patch)
tree	9f9ba4ac56ecb9c7a3209fe903e7d44371d0fbe2 /ipa-server/xmlrpc-server/funcs.py
parent	034d9d6753c22db6fb38a9cf85f550a0b376ca9f (diff)
download	freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.tar.gz freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.tar.xz freeipa-b7924139d895c7ebe019fbfc9c85fed3baae642e.zip