diff options
| author | Sumit Bose <sbose@redhat.com> | 2016-08-30 17:30:10 +0200 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-09-01 13:48:59 +0200 |
| commit | 5bd3bef4a655fdfacd2f5df8a2343fe7bc68a771 (patch) | |
| tree | 255f1fa913c616c0511ae32a2819c91bda32a22f | |
| parent | 6f59bb822d1e54e178207be45e382f4ee173c434 (diff) | |
| download | sssd-5bd3bef4a655fdfacd2f5df8a2343fe7bc68a771.tar.gz sssd-5bd3bef4a655fdfacd2f5df8a2343fe7bc68a771.tar.xz sssd-5bd3bef4a655fdfacd2f5df8a2343fe7bc68a771.zip | |
sdap_initgr_nested_get_membership_diff: use fully-qualified names
I think this is a leftover from the change to use fully-qualified names
in sysdb. To verify this you can create a nested group in IPA. Without
this patch the id command will only show the groups the user is a direct
member of. With the patch the indirect groups memberships should be
shown as well.
https://fedorahosted.org/sssd/ticket/3163
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
| -rw-r--r-- | src/providers/ldap/sdap_async_initgroups.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/providers/ldap/sdap_async_initgroups.c b/src/providers/ldap/sdap_async_initgroups.c index 82c708c22..f9593f0df 100644 --- a/src/providers/ldap/sdap_async_initgroups.c +++ b/src/providers/ldap/sdap_async_initgroups.c @@ -1414,7 +1414,7 @@ sdap_initgr_nested_get_membership_diff(TALLOC_CTX *mem_ctx, group_name, parents_count); if (parents_count > 0) { - ret = sysdb_attrs_primary_name_list(dom, tmp_ctx, + ret = sysdb_attrs_primary_fqdn_list(dom, tmp_ctx, ldap_parentlist, parents_count, opts->group_map[SDAP_AT_GROUP_NAME].name, |