Bug 1952028
| Summary: | [RFE] Add support for managing subuids and subgids in FreeIPA | |||
|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 9 | Reporter: | Petr Čech <pcech> | |
| Component: | ipa | Assignee: | Florence Blanc-Renaud <frenaud> | |
| Status: | CLOSED CURRENTRELEASE | QA Contact: | ipa-qe <ipa-qe> | |
| Severity: | unspecified | Docs Contact: | Alexandra Nikandrova <anikandr> | |
| Priority: | high | |||
| Version: | 9.0 | CC: | abokovoy, anikandr, atikhono, cheimes, fcami, frenaud, ksiddiqu, pvoborni, rcritten, ssidhaye, tscherf | |
| Target Milestone: | beta | Keywords: | FutureFeature, Triaged | |
| Target Release: | 9.0 Beta | Flags: | anikandr:
needinfo+
pm-rhel: mirror+ |
|
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | ipa-4.9.6-4.el9 | Doc Type: | Enhancement | |
| Doc Text: |
.Support for managing subID ranges is available in IdM
With this update, you can manage ID subranges for users in Identity Management. You can use the `ipa` CLI tool or IdM WebUI interface to assign automatically configured subID ranges to a user, which might be useful in a containerized environment.
|
Story Points: | --- | |
| Clone Of: | ||||
| : | 1957737 1981322 (view as bug list) | Environment: | ||
| Last Closed: | 2021-12-07 21:33:05 UTC | Type: | Enhancement | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 1803943, 1957737, 1981322 | |||
|
Description
Petr Čech
2021-04-21 11:23:03 UTC
*** Bug 1957737 has been marked as a duplicate of this bug. *** Fixed upstream:
master:
1c4ae37 Add basic support for subordinate user/group ids
c78d134 Redesign subid feature
51035d9 Use 389-DS' dnaInterval setting to assign intervals
1e00748 Fix ipa-server-upgrade
110940b Fix oid of ipaUserDefaultSubordinateId
30eceb5 WebUI: Improve subordinate ids user workflow
aae6c02 Test DNA plugin configuration
ipa-4-9:
3540986 Add basic support for subordinate user/group ids
5d4fe06 Redesign subid feature
ef115b0 Use 389-DS' dnaInterval setting to assign intervals
e6e3fb6 Fix ipa-server-upgrade
44ccc0f Fix oid of ipaUserDefaultSubordinateId
9f4b898 WebUI: Improve subordinate ids user workflow
b53a52a Test DNA plugin configuration
An additional fix is needed, see upstream ticket https://pagure.io/freeipa/issue/8920 Fixed upstream master: https://pagure.io/freeipa/c/cb37f499db8c66bf77a4e716ef1cf2a6c321cb6a Fixed upstream ipa-4-9: https://pagure.io/freeipa/c/b132956e42a88ab39bb8d6a854e7c5d28d544a11 Moving back to POST as one commit is missing in ipa-4.9.6-3.el9, see comment #14 Test suite test_subids.py is executed and successful, based on this info marking it pre-verified
snip from automation log files :
(1) test-result.txt.gz
============================= test session starts ==============================
platform linux -- Python 3.9.6, pytest-6.2.2, py-1.10.0, pluggy-0.13.1 -- /usr/bin/python3
cachedir: /home/cloud-user/.pytest_cache
metadata: {'Python': '3.9.6', 'Platform': 'Linux-5.14.0-0.rc2.23.el9.x86_64-x86_64-with-glibc2.33.9000', 'Packages': {'pytest': '6.2.2', 'py': '1.10.0', 'pluggy': '0.13.1'}, 'Plugins': {'metadata': '1.7.0', 'html': '3.1.1', 'multihost': '3.0', 'sourceorder': '0.5'}}
rootdir: /usr/lib/python3.9/site-packages/ipatests
plugins: metadata-1.7.0, html-3.1.1, multihost-3.0, sourceorder-0.5
collecting ... collected 7 items
test_integration/test_subids.py::TestSubordinateId::test_dna_config PASSED [ 14%]
test_integration/test_subids.py::TestSubordinateId::test_auto_generate_subid PASSED [ 28%]
test_integration/test_subids.py::TestSubordinateId::test_ipa_subid_script PASSED [ 42%]
test_integration/test_subids.py::TestSubordinateId::test_subid_selfservice PASSED [ 57%]
test_integration/test_subids.py::TestSubordinateId::test_subid_useradmin PASSED [ 71%]
test_integration/test_subids.py::TestSubordinateId::test_idrange_subid PASSED [ 85%]
test_integration/test_subids.py::TestSubordinateId::test_subid_stats PASSED [100%]
(2) runnner.log
2021-07-27T13:12:47+0000 ok: [master.testrelm.test] => (item=ipa-server) =>
2021-07-27T13:12:47+0000 msg:
2021-07-27T13:12:47+0000 - arch: x86_64
2021-07-27T13:12:47+0000 epoch: null
2021-07-27T13:12:47+0000 name: ipa-server
2021-07-27T13:12:47+0000 release: 4.el9
2021-07-27T13:12:47+0000 source: rpm
2021-07-27T13:12:47+0000 version: 4.9.6
Test suite test_subids.py is executed and successful in nightly, based on this info moving it to verified snip from automation log files: (1) test-result.txt.gz ============================= test session starts ============================== platform linux -- Python 3.9.6, pytest-6.2.2, py-1.10.0, pluggy-0.13.1 -- /usr/bin/python3 .. collecting ... collected 7 items test_integration/test_subids.py::TestSubordinateId::test_dna_config PASSED [ 14%] test_integration/test_subids.py::TestSubordinateId::test_auto_generate_subid PASSED [ 28%] test_integration/test_subids.py::TestSubordinateId::test_ipa_subid_script PASSED [ 42%] test_integration/test_subids.py::TestSubordinateId::test_subid_selfservice PASSED [ 57%] test_integration/test_subids.py::TestSubordinateId::test_subid_useradmin PASSED [ 71%] test_integration/test_subids.py::TestSubordinateId::test_idrange_subid PASSED [ 85%] test_integration/test_subids.py::TestSubordinateId::test_subid_stats PASSED [100%] (2) runner.log 2021-07-29T07:01:35+0000 ok: [master.testrelm.test] => (item=ipa-server) => 2021-07-29T07:01:35+0000 msg: 2021-07-29T07:01:35+0000 - arch: x86_64 2021-07-29T07:01:35+0000 epoch: null 2021-07-29T07:01:35+0000 name: ipa-server 2021-07-29T07:01:35+0000 release: 4.el9 2021-07-29T07:01:35+0000 source: rpm 2021-07-29T07:01:35+0000 version: 4.9.6 |