Univention Bugzilla – Bug 38663
requiredObjectClass not evaluated in getPolicies() python lib
Last modified: 2015-07-03 14:10:55 CEST
The requiredObjectClass and prohibitedObjectClasses attributes of a policy aren't evaluated in the python implementation of the policy-result in uldap:access.getPolicies(). This is currently not used very widely. It resulted in errors when displaying the policy result in UMC and the following modules are using it: * UMC-ACL evaluation → univention-management-console/src/univention/management/console/acl.py * univention-python/modules/password.py * univention-directory-reports/modules/univention/directory/reports/admin.py * univention-printquota/univention-printquota-setuser * univention-s4-connector/modules/univention/s4connector/s4/password.py The C implementation of the policy-result also uses strcmp() to compare the object classes. This is wrong as object classes are case insensitive.
(In reply to Florian Best from comment #0) > The C implementation of the policy-result also uses strcmp() to compare the > object classes. This is wrong as object classes are case insensitive. This applies also to fixedAttributes and emptyAttributes.
univention-policy (6.0.2-8): r61121 | Bug #38663: case insensitive comparision univention-python (8.0.3-5): r61122 | Bug #38663: getPolicies: evaluate requiredObjectClass and prohibitedObjectClasses
Do we already have bugs for corresponding test cases? I think this would be very helpful for us.
(In reply to Alexander Kläser from comment #3) > Do we already have bugs for corresponding test cases? I think this would be > very helpful for us. r61276 | Bug #38663 ucs-test: UDM CLI tests ucs-test/tests/59_udm/ 01_requiredObjectClasses 02_prohibitedObjectClasses 03_ldapFilter 04_fixedAttributes 05_emptyAttributes Package: ucs-test Version: 5.0.148-18.1062.201506161256 Branch: ucs_4.0-0 Scope: errata4.0-2 (In reply to Florian Best from comment #2) > univention-policy (6.0.2-8): > r61121 | Bug #38663: case insensitive comparision OK > univention-python (8.0.3-5): > r61122 | Bug #38663: getPolicies: evaluate requiredObjectClass and > prohibitedObjectClasses FIXED → Bug #38712 OK: apt-get install python-univention OK: 2015-06-05-univention-python.yaml OK: errata-announce -V 2015-06-05-univention-python.yaml TODO: UMC Policy is currently broken
(In reply to Philipp Hahn from comment #4) > TODO: UMC Policy is currently broken FIXED: r61344 → Bug #36256
<http://errata.univention.de/ucs/4.0/221.html>
<http://errata.univention.de/ucs/4.0/222.html>