Bug 1302652
Summary: | packagekit prompts the password of an unrelated user to mine | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Nikos Mavrogiannopoulos <nmavrogi> |
Component: | sssd | Assignee: | Jakub Hrozek <jhrozek> |
Status: | CLOSED NOTABUG | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 23 | CC: | abokovoy, jhrozek, jonathan, klember, lslebodn, nmavrogi, pbrezina, preichl, rdieter, rharwood, rhughes, sbose, smparrish, ssorce |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-02-18 10:15:04 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Nikos Mavrogiannopoulos
2016-01-28 10:27:38 UTC
Reassigning to sssd, as this issue also exists if I use yum extender. Thus it is not related to package kit. I doubt it's related to sssd but Please provide steps to reproduce: In my case, command just fails it does not want to install any package. sh$ indent -linux common/common.c -bash: indent: command not found sh$ echo $? 127 Isn't this the expected behavior when you assign the 'Account Type' 'Administrator', i.e. adding the user to the wheel group, in the Gnome user manager? I also remember that Nikos uses a bit non-standard config with id_provider=proxy proxying to files, so it would also be nice to see the PAM config files.. I'm pretty sure it is not related to SSSD at all but a policykit feature. To reproduce make sure you have a user in the wheel group, stop sssd and call pkexec. pkexec will ask you for the password of the user from the wheel group. If there are multiple users in the wheel group the first one is used. So it will be good if Nikos can confirm it with output of command "getent group wheel" If it's true than workaround might be to change of users in wheel group. (In reply to Lukas Slebodnik from comment #2) > I doubt it's related to sssd but > > Please provide steps to reproduce: > In my case, command just fails it does not want to install any package. > > > sh$ indent -linux common/common.c > -bash: indent: command not found > sh$ echo $? > 127 run yum extender. (In reply to Lukas Slebodnik from comment #6) > So it will be good if Nikos can confirm it with output of command > "getent group wheel" > > If it's true than workaround might be to change of users in wheel group. $ getent group wheel wheel:x:10:test (In reply to Sumit Bose from comment #5) > I'm pretty sure it is not related to SSSD at all but a policykit feature. > > To reproduce make sure you have a user in the wheel group, stop sssd and > call pkexec. pkexec will ask you for the password of the user from the wheel > group. If there are multiple users in the wheel group the first one is used. Should then this be assigned to policykit? I doubt that this is an intended feature. (In reply to Nikos Mavrogiannopoulos from comment #9) > (In reply to Sumit Bose from comment #5) > > I'm pretty sure it is not related to SSSD at all but a policykit feature. > > > > To reproduce make sure you have a user in the wheel group, stop sssd and > > call pkexec. pkexec will ask you for the password of the user from the wheel > > group. If there are multiple users in the wheel group the first one is used. > > Should then this be assigned to policykit? I doubt that this is an intended > feature. My bad. It seems that my user is not in the wheel group but only in sudo group, thus the prompt is indeed the expected one. Policykit seems to do the right thing even in the wrong order. Sorry for the noise. |