The removal of a role on a non existing group throws an error
Bug #1751045 reported by
Jose Castro Leon
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
Medium
|
Jose Castro Leon |
Bug Description
In an environment with an ldap server as identity backend, if a group is deleted out-of-band, the role assignment entry cannot be deleted as it checks for the existence of the group in the backend.
Therefore the assignments on groups cannot be deleted.
There is already a parameter allow_no_user that handles these cases for users but it is not used at all for groups.
summary: |
- The removal of a role on a non existing group throws an error in LDAP + The removal of a role on a non existing group throws an error |
Changed in keystone: | |
assignee: | Jose Castro Leon (jose-castro-leon) → Lance Bragstad (lbragstad) |
Changed in keystone: | |
assignee: | Lance Bragstad (lbragstad) → Jose Castro Leon (jose-castro-leon) |
importance: | Undecided → Medium |
Changed in keystone: | |
assignee: | Jose Castro Leon (jose-castro-leon) → Lance Bragstad (lbragstad) |
Changed in keystone: | |
assignee: | Lance Bragstad (lbragstad) → Jose Castro Leon (jose-castro-leon) |
Changed in keystone: | |
milestone: | none → rocky-2 |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/546969
Review: https:/