Group membership attribute is hard-coded when using 'user_enable_emulation'
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Identity (keystone) |
Fix Released
|
High
|
Nathan Kinder | ||
Kilo |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
The 'group_
---
def _get_enabled(self, object_id):
dn = self._id_
query = '(member=%s)' % dn <---- Here
with self.get_
try:
enabled_value = conn.search_
query, ['cn'])
except ldap.NO_
return False
else:
return bool(enabled_value)
---
As a result, when integrating Keystone with an LDAP back-end and using the 'enabled_
Changed in keystone: | |
assignee: | nobody → Nathan Kinder (nkinder) |
tags: | added: liberty-backport-potential |
tags: | added: kilo-backport-potential |
Changed in keystone: | |
importance: | Undecided → High |
Changed in keystone: | |
milestone: | none → mitaka-1 |
Changed in keystone: | |
status: | Fix Committed → Fix Released |
Fix proposed to branch: master /review. openstack. org/244173
Review: https:/