diff options
author | Sumit Bose <sbose@redhat.com> | 2015-04-22 16:57:37 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2015-04-29 11:40:34 +0200 |
commit | 85287a6b897d818d279171a83aa3c8a0de66f13b (patch) | |
tree | 05d79087a6e2ae19366bfe230c26472c5d4f1cfd /src/tests | |
parent | 45a089a7bcf54e27fb46dc1a2c08c21ac07db96a (diff) | |
download | sssd-85287a6b897d818d279171a83aa3c8a0de66f13b.tar.gz sssd-85287a6b897d818d279171a83aa3c8a0de66f13b.tar.xz sssd-85287a6b897d818d279171a83aa3c8a0de66f13b.zip |
IPA: allow initgroups by SID for AD users
If a user from a trusted AD domain is search with the help of an
override name the SID from the override anchor is used to search the
user in AD. Currently the initgroups request only allows searches by
name. With this patch a SID can be used as well.
Resolves https://fedorahosted.org/sssd/ticket/2632
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
(cherry picked from commit f70a1adbfc30b9acc302027439fb8157e0c6ea2a)
Diffstat (limited to 'src/tests')
-rw-r--r-- | src/tests/sysdb-tests.c | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/src/tests/sysdb-tests.c b/src/tests/sysdb-tests.c index 7c2c6d208..0185beeaf 100644 --- a/src/tests/sysdb-tests.c +++ b/src/tests/sysdb-tests.c @@ -3577,6 +3577,10 @@ START_TEST(test_sysdb_get_real_name) ret = sysdb_attrs_add_string(user_attrs, SYSDB_UPN, "foo@bar"); fail_unless(ret == EOK, "sysdb_attrs_add_string failed."); + ret = sysdb_attrs_add_string(user_attrs, SYSDB_SID_STR, + "S-1-5-21-123-456-789-111"); + fail_unless(ret == EOK, "sysdb_attrs_add_string failed."); + ret = sysdb_store_user(test_ctx->domain, "RealName", NULL, 22345, 0, "gecos", "/home/realname", "/bin/bash", @@ -3592,7 +3596,13 @@ START_TEST(test_sysdb_get_real_name) ret = sysdb_get_real_name(test_ctx, test_ctx->domain, "foo@bar", &str); fail_unless(ret == EOK, "sysdb_get_real_name failed."); fail_unless(strcmp(str, "RealName") == 0, "Expected [%s], got [%s].", - "foo@bar", str); + "RealName", str); + + ret = sysdb_get_real_name(test_ctx, test_ctx->domain, + "S-1-5-21-123-456-789-111", &str); + fail_unless(ret == EOK, "sysdb_get_real_name failed."); + fail_unless(strcmp(str, "RealName") == 0, "Expected [%s], got [%s].", + "RealName", str); } END_TEST |