yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1205150] [NEW] keystone user-get <user> fetches every user from ldap

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1205150@xxxxxxxxxxxxxxxxxx>
Date: Thu, 19 Sep 2013 18:02:07 -0000
Reply-to: Bug 1205150 <1205150@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

You have been subscribed to a public bug:

"keystone user-get ludeman" fetches all users from ldap rather than
asking ldap for a specific user.

I see the following:

GET /v2.0/users/users/users/users HTTP/1.0
Accept: */*
Accept-Encoding: gzip, deflate, compress
Content-Type: text/plain
Host: keystone:35357
User-Agent: python-keystoneclient

which calls:
  keystone/keystone/identity/controllers.py: get_users()

get_users() supports query_string, so it should probably pass it in in
this context.

if 'name' isn't in the query_string, it proceeds to get all users from ldap as follows:
  2013-07-26 01:13:45,599 (keystone.common.ldap.core): DEBUG core search_s LDAP search: dn=cn=users,dc=bogus,dc=com, scope=1, query=(&(objectClass=inetOrgPerson)), attrs=['businessCategory', 'userPassword', 'enabled', 'mail', 'uid']

** Affects: keystone
     Importance: High
     Assignee: Adam Young (ayoung)
         Status: Confirmed

-- 
keystone user-get <user> fetches every user from ldap
https://bugs.launchpad.net/bugs/1205150
You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to Keystone.