diff options
author | Rob Crittenden <rcritten@redhat.com> | 2008-03-26 23:19:54 -0400 |
---|---|---|
committer | Rob Crittenden <rcritten@redhat.com> | 2008-03-26 23:19:54 -0400 |
commit | c1ae716afc49a9d293498a5ee37955bcf7edd983 (patch) | |
tree | 6146e4a36f9080aa53552f36c81df9814aad8ed3 /ipa-server | |
parent | 503cea20c5634a2aa83331176e24054a6fbc528b (diff) | |
download | freeipa-c1ae716afc49a9d293498a5ee37955bcf7edd983.tar.gz freeipa-c1ae716afc49a9d293498a5ee37955bcf7edd983.tar.xz freeipa-c1ae716afc49a9d293498a5ee37955bcf7edd983.zip |
Normalize member DN's when determining whether they are in a group
as a direct or indirect member.
438387
Diffstat (limited to 'ipa-server')
-rw-r--r-- | ipa-server/xmlrpc-server/funcs.py | 6 |
1 files changed, 5 insertions, 1 deletions
diff --git a/ipa-server/xmlrpc-server/funcs.py b/ipa-server/xmlrpc-server/funcs.py index 4c346698c..879ff6bee 100644 --- a/ipa-server/xmlrpc-server/funcs.py +++ b/ipa-server/xmlrpc-server/funcs.py @@ -1787,9 +1787,13 @@ class IPAServer: if isinstance(real_members, basestring): real_members = [real_members] + # Normalize all the dns + for i in range(len(real_members)): + real_members[i] = ipaserver.ipaldap.IPAdmin.normalizeDN(real_members[i]) + entries = [0] for e in results: - if e.dn not in real_members: + if ipaserver.ipaldap.IPAdmin.normalizeDN(e.dn) not in real_members: if membertype == 2: entries.append(self.convert_entry(e)) else: |