[Freeipa-devel] [PATCH] 355 Avoid internal error when user is not Trust admin
Martin Kosek
mkosek at redhat.com
Mon Feb 4 15:22:03 UTC 2013
On 01/24/2013 12:01 PM, Martin Kosek wrote:
> When user tries to perform any action requiring communication with
> trusted domain, IPA server tries to retrieve a trust secret on his
> behalf to be able to establish the connection. This happens for
> example during group-add-member command when external user is
> being resolved in the AD.
>
> When user is not member of Trust admins group, the retrieval crashes
> and reports internal error. Catch this exception and rather report
> properly formatted ACIError.
>
> ----
>
> I hit this error after updating to the latest FreeIPA version with the AD CVE
> fixed.
>
> Martin
>
I filed a ticket to not loose this fix and patch. Attaching an updated patch
with ticket URL in description.
Martin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-mkosek-355-2-avoid-internal-error-when-user-is-not-trust-admin.patch
Type: text/x-patch
Size: 2959 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20130204/104fa3cf/attachment.bin>
More information about the Freeipa-devel
mailing list