Bug 47076 – Support bindpwdfile in all ucsschool join scripts

Bug 47076 - Support bindpwdfile in all ucsschool join scripts


Summary:	Support bindpwdfile in all ucsschool join scripts

Status:	CLOSED FIXED

Product:	UCS@school
Classification:	Unclassified
Component:	General
Version:	UCS@school 4.3
Hardware:	Other Linux

Importance:	P5 normal (vote)
Target Milestone:	UCS@school 4.3 v7
Assigned To:	Daniel Tröder
QA Contact:	Sönke Schwardt-Krummrich

URL:
Keywords:

Depends on:
Blocks:	48423
	Show dependency tree / graph

Reported:	2018-05-25 12:13 CEST by Felix Botner
Modified:	2019-03-12 10:50 CET (History)
CC List:	1 user (show)

See Also:	46842
What kind of report is it?:	Development Internal
What type of bug is this?:	---
Who will be affected by this bug?:	---
How will those affected feel about the bug?:	---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Felix Botner

2018-05-25 12:13:36 CEST

Support bindpwdfile in all ucsschool join scripts

Comment 1 Daniel Tröder

2019-01-03 17:45:04 CET

When building ucs-school-import for 4.4:

E:0001-16: 40ucs-school-import-http-api.inst: join script does not use joinscript api (possible clear text passwords)
E:0001-16: 82univention-ucs-school-import-custom-attributes.inst: join script does not use joinscript api (possible clear text passwords)
E:0001-16: 35ucs-school-import.inst: join script does not use joinscript api (possible clear text passwords)

This will happen for all other packages that include join scripts too.

Comment 2 Felix Botner

2019-01-03 17:56:57 CET

(In reply to Daniel Tröder from comment #1)
> When building ucs-school-import for 4.4:
> 
> E:0001-16: 40ucs-school-import-http-api.inst: join script does not use
> joinscript api (possible clear text passwords)
> E:0001-16: 82univention-ucs-school-import-custom-attributes.inst: join
> script does not use joinscript api (possible clear text passwords)
> E:0001-16: 35ucs-school-import.inst: join script does not use joinscript api
> (possible clear text passwords)
> 
> This will happen for all other packages that include join scripts too.

could you just take this bug and change the join scripts accordingly (just add a line "## joinscript api: bindpwdfile" to the join script)

Comment 3 Daniel Tröder

2019-01-04 12:21:59 CET

Can be released as "errata", because it won't effect already installed systems.

The change will be ignored by systems without support for the joinscript api, but newer 4.3 systems will start using it, the next time a join script is called.

Comment 4 Daniel Tröder

2019-01-09 17:32:08 CET

All join scripts have been updated.
No need to release this separately. Will be done for each package the next time it's updated and built.

[4.3 3e332c8b9] Bug #47076: use 'joinscript api: bindpwdfile' in all ucsschool join scripts

[4.4] 90db53c82 Bug #47076: use 'joinscript api: bindpwdfile' in all ucsschool join scripts

Comment 5 Daniel Tröder

2019-01-14 14:17:31 CET

TODO: ucs-school-roleshares/scripts/create_roleshares does not support bindpwdfile

Comment 6 Daniel Tröder

2019-01-16 09:19:34 CET

The create_roleshares script has been updated to support the bindpwdfile argument.

[4.3] 9b08770d0 Bug #47076: support bindpwdfile join script argument
[4.3] 6d37b2d89 Bug #47076: advisory update

[4.4] 6d4a6a0d5 Bug #47076: support bindpwdfile join script argument
[4.4] 739780183 Bug #47076: advisory update

ucs-school-roleshares (6.0.0-2)
ucs-school-roleshares (7.0.0-1)

Comment 7 Sönke Schwardt-Krummrich

2019-01-25 17:44:07 CET

OK: code change
OK: functional change
OK: tests (jenkins, manual)
OK: changelog entry
OK: advisory
OK: changes in 4.3/4.4

Comment 8 Sönke Schwardt-Krummrich

2019-03-12 10:50:35 CET

UCS@school 4.3 v7 has been released.

https://docs.software-univention.de/changelog-ucsschool-4.3v7-de.html

If this error occurs again, please clone this bug.