Use valid LDAP search base in migration plugin

One find_entry_by_attr call did not set a search base leading to LDAP search call with zero search base. This leads to false negative results from LDAP.
author: Martin Kosek <mkosek@redhat.com> 2013-07-26 13:39:42 +0200
committer: Martin Kosek <mkosek@redhat.com> 2013-07-26 13:42:22 +0200
commit: a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0 (patch)
tree: 631b01d842930fa0bb151a0b26718bb4d6a9884e
parent: 22681013b27a66b90f3fc4ac2cf5ff8587f0c478 (diff)
download: freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.tar.gz
freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.tar.xz
freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/ipalib/plugins/migration.py b/ipalib/plugins/migration.py
index f57f0957..83bf40db 100644
--- a/ipalib/plugins/migration.py
+++ b/ipalib/plugins/migration.py
@@ -207,7 +207,8 @@ def _pre_migrate_user(ldap, pkey, dn, entry_attrs, failed, config, ctx, **kwargs
     principal = u'%s@%s' % (pkey, api.env.realm)
     try:
         ldap.find_entry_by_attr(
-            'krbprincipalname', principal, 'krbprincipalaux', ['']
+            'krbprincipalname', principal, 'krbprincipalaux', [''],
+            DN(api.env.container_user, api.env.basedn)
         )
     except errors.NotFound:
         entry_attrs['krbprincipalname'] = principal
author	Martin Kosek <mkosek@redhat.com>	2013-07-26 13:39:42 +0200
committer	Martin Kosek <mkosek@redhat.com>	2013-07-26 13:42:22 +0200
commit	a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0 (patch)
tree	631b01d842930fa0bb151a0b26718bb4d6a9884e
parent	22681013b27a66b90f3fc4ac2cf5ff8587f0c478 (diff)
download	freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.tar.gz freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.tar.xz freeipa.git-a789d70f395f4c5cb8bd26c7bde8e39f325fe3e0.zip