90 lines
3.5 KiB
Diff
90 lines
3.5 KiB
Diff
From 06468b2f604c56b02231904072cb57412966a701 Mon Sep 17 00:00:00 2001
|
|
From: Florence Blanc-Renaud <flo@redhat.com>
|
|
Date: Mon, 5 Jul 2021 09:51:41 +0200
|
|
Subject: [PATCH] stageuser: add ipauserauthtypeclass when required
|
|
|
|
The command
|
|
ipa stageuser-add --user-auth-type=xxx
|
|
is currently failing because the objectclass ipauserauthtypeclass
|
|
is missing from the created entry.
|
|
|
|
There is code adding the missing objectclass in the
|
|
pre_common_callback method of user_add, and this code should
|
|
be common to user_add and stageuser_add. In order to avoid code
|
|
duplication, it makes more sense to move the existing code to
|
|
pre_common_callback of baseuser_add, that is called by both
|
|
classes.
|
|
|
|
Fixes: https://pagure.io/freeipa/issue/8909
|
|
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
|
|
Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
|
|
---
|
|
ipaserver/plugins/baseuser.py | 3 +++
|
|
ipaserver/plugins/user.py | 4 ----
|
|
2 files changed, 3 insertions(+), 4 deletions(-)
|
|
|
|
diff --git a/ipaserver/plugins/baseuser.py b/ipaserver/plugins/baseuser.py
|
|
index ae16a978a..6035228f1 100644
|
|
--- a/ipaserver/plugins/baseuser.py
|
|
+++ b/ipaserver/plugins/baseuser.py
|
|
@@ -539,6 +539,9 @@ class baseuser_add(LDAPCreate):
|
|
if entry_attrs.get('ipatokenradiususername', None):
|
|
add_missing_object_class(ldap, u'ipatokenradiusproxyuser', dn,
|
|
entry_attrs, update=False)
|
|
+ if entry_attrs.get('ipauserauthtype', None):
|
|
+ add_missing_object_class(ldap, u'ipauserauthtypeclass', dn,
|
|
+ entry_attrs, update=False)
|
|
|
|
def post_common_callback(self, ldap, dn, entry_attrs, *keys, **options):
|
|
assert isinstance(dn, DN)
|
|
diff --git a/ipaserver/plugins/user.py b/ipaserver/plugins/user.py
|
|
index 6f7facb53..e4ee572b2 100644
|
|
--- a/ipaserver/plugins/user.py
|
|
+++ b/ipaserver/plugins/user.py
|
|
@@ -617,10 +617,6 @@ class user_add(baseuser_add):
|
|
'ipauser' not in entry_attrs['objectclass']:
|
|
entry_attrs['objectclass'].append('ipauser')
|
|
|
|
- if 'ipauserauthtype' in entry_attrs and \
|
|
- 'ipauserauthtypeclass' not in entry_attrs['objectclass']:
|
|
- entry_attrs['objectclass'].append('ipauserauthtypeclass')
|
|
-
|
|
rcl = entry_attrs.get('ipatokenradiusconfiglink', None)
|
|
if rcl:
|
|
if 'ipatokenradiusproxyuser' not in entry_attrs['objectclass']:
|
|
--
|
|
2.31.1
|
|
|
|
From 4a5a0fe7d25209a41a2eadd159f7f4c771e5d7fc Mon Sep 17 00:00:00 2001
|
|
From: Florence Blanc-Renaud <flo@redhat.com>
|
|
Date: Mon, 5 Jul 2021 10:22:31 +0200
|
|
Subject: [PATCH] XMLRPC test: add a test for stageuser-add --user-auth-type
|
|
|
|
Related: https://pagure.io/freeipa/issue/8909
|
|
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
|
|
Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
|
|
---
|
|
ipatests/test_xmlrpc/test_stageuser_plugin.py | 6 ++++++
|
|
1 file changed, 6 insertions(+)
|
|
|
|
diff --git a/ipatests/test_xmlrpc/test_stageuser_plugin.py b/ipatests/test_xmlrpc/test_stageuser_plugin.py
|
|
index 5586fc607..bc606b093 100644
|
|
--- a/ipatests/test_xmlrpc/test_stageuser_plugin.py
|
|
+++ b/ipatests/test_xmlrpc/test_stageuser_plugin.py
|
|
@@ -343,6 +343,12 @@ class TestStagedUser(XMLRPC_test):
|
|
result = command()
|
|
assert result['count'] == 1
|
|
|
|
+ def test_create_withuserauthtype(self, stageduser):
|
|
+ stageduser.ensure_missing()
|
|
+ command = stageduser.make_create_command(
|
|
+ options={u'ipauserauthtype': u'password'})
|
|
+ command()
|
|
+
|
|
|
|
@pytest.mark.tier1
|
|
class TestCreateInvalidAttributes(XMLRPC_test):
|
|
--
|
|
2.31.1
|
|
|