Bug 1445421

Summary: Auth MIQLDAP Email field not updated when changed on LDAP server
Product: Red Hat CloudForms Management Engine Reporter: Matt Pusateri <mpusater>
Component: ApplianceAssignee: Joe Vlcek <jvlcek>
Status: CLOSED NOTABUG QA Contact: Matt Pusateri <mpusater>
Severity: low Docs Contact:
Priority: medium    
Version: 5.8.0CC: abellott, cpelland, jhardy, jvlcek, obarenbo
Target Milestone: GA   
Target Release: cfme-future   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard: auth:miqldap:ad:freeipa:openldap
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-10-09 19:07:42 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: CFME Core Target Upstream Version:
Embargoed:

Description Matt Pusateri 2017-04-25 16:01:56 UTC 
Description of problem:
Auth - MIQLDAP - Openldap Email field not update when changed on LDAP server - Definitely happens when not using "get groups from LDAP". 


Version-Release number of selected component (if applicable):
5.8.0.11-beta2  Probably 5.6 and 5.7 as well

How reproducible:


Steps to Reproduce:
1. Configure MIQLDAP for LDAP/LDAPS
2. Check "Get Groups from LDAP due to this bug: https://bugzilla.redhat.com/show_bug.cgi?id=1445405
3. Log in with a user, check his user page in the UI.
4. Update the users email address on the ldap server
5. Uncheck "get groups from ldap" see bug above
6. Log out and back in, see that the users email address is not updated.

Actual results:
email address is not updated

Expected results:
email address should be updated.

Additional info:
Could also be affected by bug: https://bugzilla.redhat.com/show_bug.cgi?id=1445413
Comment 2 Joe Vlcek 2017-10-09 19:07:42 UTC 
Matt,

In Brief:
---------
I am closing this a NOTABUG because it is working as designed. If you feel it is an issue that MiqLdap should handle let's reopen this but as an RFE.

Details:
--------

The user record is not updated to reflect changes in the directory because you had changed the way MiqLdap manages the user record when you did:
  "5. Uncheck "get groups from ldap" see bug above"


Had you left "get groups from ldap" checked changes to the user's directory entry would be reflected in the CFME user record. But when "get groups from ldap" is unchecked CFME will not create or modify the user record. Under this condition it is the responsibility of the CFME administrator to create and manage the user records in the CFME database.

I am marking this as not a bug because by design MiqLdap will not create or modify
the user record when "get groups from ldap" is unchecked.

If you feel it is an issue that MiqLdap should handle let's reopen this but as an RFE.

JoeV