Univention Bugzilla – Full Text Bug Listing |
Summary: | univention.admin.uldap doesn't set self.binddn when calling bind manually | ||
---|---|---|---|
Product: | UCS | Reporter: | Florian Best <best> |
Component: | UDM (Generic) | Assignee: | Florian Best <best> |
Status: | CLOSED FIXED | QA Contact: | Philipp Hahn <hahn> |
Severity: | normal | ||
Priority: | P5 | CC: | gohmann, thorp-hansen |
Version: | UCS 4.1 | Keywords: | interim-1 |
Target Milestone: | UCS 4.2 | Flags: | best:
Patch_Available+
|
Hardware: | Other | ||
OS: | Linux | ||
See Also: |
https://forge.univention.org/bugzilla/show_bug.cgi?id=41765 https://forge.univention.org/bugzilla/show_bug.cgi?id=41812 https://forge.univention.org/bugzilla/show_bug.cgi?id=41811 |
||
What kind of report is it?: | Bug Report | What type of bug is this?: | 3: Simply Wrong: The implementation doesn't match the docu |
Who will be affected by this bug?: | 3: Will affect average number of installed domains | How will those affected feel about the bug?: | 2: A Pain – users won’t like this once they notice it |
User Pain: | 0.103 | Enterprise Customer affected?: | |
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Attachments: |
patch
patch patch |
Created attachment 7789 [details]
patch
Created attachment 7801 [details]
patch
Updated patch. There are several broken places. This currently causes that the joining windows clients into a UCS@school domain they are created in a random school - if the LDAP entries weren't created before.
The alternative to fix this is fixing Bug #41765 by adding "-o school=$OU" to the create_windows_computer call in univention_samaccountname_ldap_check.c. This bug should be fixed nevertheless so that lo.binddn can be used by scripts. Created attachment 7810 [details] patch Make binddn a property in univention.uldap.access which points to the univention.access.binddn attribute. The other files in the patches are unnecessary then or part of Bug #41812, Bug #41811. univention-directory-manager-modules (12.0.3-1): r72331 | Bug #41745: use binddn from parent access class OK: r72331 OK: No ChangeLog OK: import univention.admin.uldap as l b = l.configRegistry['ldap/base'] lo = l.access(base=b) dn = 'uid=Administrator,cn=users,%s' % (b,) lo.bind(dn, 'univention') assert lo.binddn == dn assert lo.bindpw == 'univention' assert lo.host == 'localhost' assert lo.port == 7389 assert lo.base == b assert lo.start_tls == 2 UCS 4.2 has been released: https://docs.software-univention.de/release-notes-4.2-0-en.html https://docs.software-univention.de/release-notes-4.2-0-de.html If this error occurs again, please use "Clone This Bug". |
>>> import univention.admin.uldap >>> lo = univention.admin.uldap.access(base='dc=foo') >>> lo.bind('uid=Administrator,cn=users,dc=foo', 'univention') >>> lo.binddn '' If given via __init__(binddn=foo, bindpw=bar) they are stored. Otherwise not. This might have several side effects! In UCS@school lo.binddn is used.