https://fedorahosted.org/freeipa/ticket/2571
The update was failing because of the case insensitivity of permission object DN. -- Regards, Ondrej Hamada FreeIPA team jabber: oh...@jabbim.cz IRC: ohamada
From 75772d91024d961fc4193654a8ca128664b2d4d5 Mon Sep 17 00:00:00 2001 From: Ondrej Hamada <oham...@redhat.com> Date: Tue, 10 Apr 2012 16:21:07 +0200 Subject: [PATCH] Unable to rename permission object The update was failing because of the case insensitivity of permission object DN. https://fedorahosted.org/freeipa/ticket/2571 --- ipalib/plugins/permission.py | 19 +++++++++++-------- 1 files changed, 11 insertions(+), 8 deletions(-) diff --git a/ipalib/plugins/permission.py b/ipalib/plugins/permission.py index ce2536d9921ede73d2c26468f5d99609552e1881..05bd9901da82eea393a67255ff3d091b6fb02fd0 100644 --- a/ipalib/plugins/permission.py +++ b/ipalib/plugins/permission.py @@ -331,14 +331,17 @@ class permission_mod(LDAPUpdate): # when renaming permission, check if the target permission does not # exists already. Then, make changes to underlying ACI if 'rename' in options: - try: - new_dn = dn.replace(keys[-1], options['rename'], 1) - (new_dn, attrs) = ldap.get_entry( - new_dn, attrs_list, normalize=self.obj.normalize_dn - ) - raise errors.DuplicateEntry() - except errors.NotFound: - pass # permission may be renamed, continue + if options['rename']: + try: + new_dn = dn.replace(keys[-1].lower(), options['rename'], 1) + (new_dn, attrs) = ldap.get_entry( + new_dn, attrs_list, normalize=self.obj.normalize_dn + ) + raise errors.DuplicateEntry() + except errors.NotFound: + pass # permission may be renamed, continue + else: + raise errors.ValidationError(name='rename',error='New name can not be empty') opts = copy.copy(options) for o in ['all', 'raw', 'rights', 'rename']: -- 1.7.6.5
_______________________________________________ Freeipa-devel mailing list Freeipa-devel@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-devel
