[PUP-7113] Implement forcelocal in AIX providers - Puppet Jira Server

XML

Word

Printable

Details

Type: New Feature
Status: Resolved
Priority: Normal
Resolution: Fixed
Affects Version/s: PUP 4.8.1
Fix Version/s: PUP 5.5.18, PUP 6.4.5, PUP 6.12.0
Component/s: None
Labels:
- aix
- aix-parity
- ldap

Acceptance Criteria:

Hide

Can create a user on AIX with the :forcelocal option and AIX will only query/use local user database

Show
Can create a user on AIX with the :forcelocal option and AIX will only query/use local user database
Team:
Night's Watch
Story Points:
5
Sprint:
2019-11-27, 2019-12-11, 2019-12-24

Release Notes:
Not Needed
Release Notes Summary:
Clarified user type documentation to reflect `forcelocal` parameter usage on AIX.

QA Risk Assessment:
Needs Assessment

Description

Currently, the forcelocal attribute on user and group resources only works on Linux based systems where libuser is available. However, other operating systems, such as AIX, would also benefit from having user and group resources prevented from reaching out to LDAP or AD backends. This causes problems primarily when a user or group resource is applied when there is a user or group with the same name in the backend database. The provider will error out, and the agent run will fail.

AIX does provide the "-R files" flag for many of its user and group management commands. It may be possible to leverage this to implement a forcelocal option without the presence of libuser.

Attachments

Issue Links

mentioned in: Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...; Page Loading...

(1 mentioned in)

Activity

People

Assignee:: Gabriel Nagy

Reporter:: Adam Bottchen

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 2017/01/19 8:43 AM

Updated:: 2020/01/13 2:46 PM

Resolved:: 2019/12/11 6:09 AM