Uploaded image for project: 'Puppet'
  1. Puppet
  2. PUP-7113

Implement forcelocal in AIX providers

    Details

    • Type: New Feature
    • Status: In Progress
    • Priority: Normal
    • Resolution: Unresolved
    • Affects Version/s: PUP 4.8.1
    • Fix Version/s: None
    • Component/s: None
    • Labels:
    • Template:
    • Acceptance Criteria:
      Hide

      Can create a user on AIX with the :forcelocal option and AIX will only query/use local user database

      Show
      Can create a user on AIX with the :forcelocal option and AIX will only query/use local user database
    • Team:
      Night's Watch
    • Story Points:
      5
    • Sprint:
      2019-11-27, 2019-12-11
    • QA Risk Assessment:
      Needs Assessment

      Description

      Currently, the forcelocal attribute on user and group resources only works on Linux based systems where libuser is available. However, other operating systems, such as AIX, would also benefit from having user and group resources prevented from reaching out to LDAP or AD backends. This causes problems primarily when a user or group resource is applied when there is a user or group with the same name in the backend database. The provider will error out, and the agent run will fail.

      AIX does provide the "-R files" flag for many of its user and group management commands. It may be possible to leverage this to implement a forcelocal option without the presence of libuser.

        Attachments

          Issue Links

            Activity

              jsd-sla-details-panel

                People

                • Assignee:
                  gabriel.nagy Gabriel Nagy
                  Reporter:
                  adam.bottchen Adam Bottchen
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  6 Start watching this issue

                  Dates

                  • Created:
                    Updated:

                    Zendesk Support