From 477cb0304c9fc25d40604de5d49e080ff03938e3 Mon Sep 17 00:00:00 2001 From: Stephen Gallagher Date: Thu, 16 Feb 2012 09:26:33 -0500 Subject: LDAP: Ignore group member users that do not have name attributes Instead of failing the group lookup, just skip them. This was impacting some users of ActiveDirectory where not all users had the appropriate attributes. https://fedorahosted.org/sssd/ticket/1169 --- src/providers/ldap/sdap_async_groups.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'src/providers/ldap') diff --git a/src/providers/ldap/sdap_async_groups.c b/src/providers/ldap/sdap_async_groups.c index 061a99c8e..aefe35385 100644 --- a/src/providers/ldap/sdap_async_groups.c +++ b/src/providers/ldap/sdap_async_groups.c @@ -1685,8 +1685,8 @@ static errno_t sdap_nested_group_populate_users(struct sysdb_ctx *sysdb, opts->user_map[SDAP_AT_USER_NAME].name, &username); if (ret != EOK) { - DEBUG(1, ("User entry %d has no name attribute\n", i)); - goto done; + DEBUG(1, ("User entry %d has no name attribute. Skipping\n", i)); + continue; } ret = sysdb_attrs_get_el(users[i], SYSDB_ORIG_DN, &el); -- cgit