URL: https://github.com/SSSD/sssd/pull/5404 Title: #5404: nss: check if groups are filtered during initgroups
sumit-bose commented: """ Hi, currently the filtered groups are removed unconditionally. However I wonder, since we have the `filter_users_in_groups` option, if this behavior should be configurable as well? So we have the following options: 1. remove unconditionally 2. use `filter_users_in_groups`option here as well 3. add a new option, e.g. `filter_groups_in_memberships` Additionally I was thinking how to handle the case where the primary group is filtered? Currently I would prefer to just ignore this and return the gid because otherwise this would mean this we have to return that the user does not exists. bye, Sumit """ See the full comment at https://github.com/SSSD/sssd/pull/5404#issuecomment-728889443
_______________________________________________ sssd-devel mailing list -- sssd-devel@lists.fedorahosted.org To unsubscribe send an email to sssd-devel-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/sssd-devel@lists.fedorahosted.org
