Jira (PUP-7918) puppet fails to change user group membership if directory group names have spaces

[Thomas Kishel (JIRA)]

Thomas Kishel created an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces Issue Type: Bug Affects Versions: PUP 4.8.1 Assignee: Unassigned Created: 2017/09/06 11:35 AM Environment: Oracle Linux 5.11 PE 2016.5.1 Priority: Normal Reporter: Thomas Kishel When doing a puppet run to create a local group dba but is also in Active Directory, Puppet is unable to handle AD groups with embedded blank spaces. class linux_base::base_groups { group { 'dba': gid => 123, forcelocal => true, } } root # puppet agent -t Info: Using configured environment 'lab' Info: Retrieving pluginfacts Info: Retrieving plugin Info: Loading facts Info: Caching catalog for server.example.com Info: Applying configuration version '1234567890' Error: Invalid value Foo,Bar Baz,dba: Groups must be comma-separated Error: /Stage[main]/Linux_base::Base_users/User[oracle]/groups: change from dba,Foo,Bar Baz,dba failed: Invalid value Foo,Bar Baz,dba: Groups must be comma-separated Defined in AD is a group named "Bar Baz", with an embedded blank space. Groups defined to user "oracle" as seen by running the operating systems "groups" command: root # su - oracle oracle> groups dba Foo Bar Baz An issue on Oracle Linux 5.11. Not an issue with Oracle Linux 6.x, 7.x. Add Comment

This message was sent by Atlassian JIRA (v6.4.14#64029-sha1:ae256fe)

[Thomas Kishel (JIRA)]

Thomas Kishel commented on PUP-7918

Re: puppet fails to change user group membership if directory group names have spaces This is a public ticket related to PUP-3774

Add Comment

[Adrien Thebo (JIRA)]

Adrien Thebo updated an issue

Puppet / PUP-7918

puppet fails to change user group membership if directory group names have spaces

Change By: Adrien Thebo Team: Platform OS

Add Comment

[Geoff Nichols (JIRA)]

Geoff Nichols commented on PUP-7918

Re: puppet fails to change user group membership if directory group names have spaces Thomas Kishel, thanks for filing this!

Add Comment

[Geoff Nichols (JIRA)]

Geoff Nichols updated an issue

Puppet / PUP-7918

puppet fails to change user group membership if directory group names have spaces

Change By: Geoff Nichols Labels: ldap type_and_provider

Add Comment

This message was sent by Atlassian JIRA (v7.7.1#77002-sha1:e75ca93)

[Neil Binney (JIRA)]

Neil Binney updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Neil Binney CS Priority: Needs Priority Zendesk Ticket IDs: https://puppetlabs.zendesk.com/agent/tickets/29329 Zendesk Ticket Count: 1

Add Comment

[Branan Riley (JIRA)]

Branan Riley updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Branan Riley Labels: AD group ldap table type_and_provider user

Add Comment

[Branan Riley (JIRA)]

Branan Riley updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Branan Riley Labels:

group ldap table type_and_provider user

Add Comment

[Branan Riley (JIRA)]

Branan Riley updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Branan Riley

Zendesk Ticket IDs: https://puppetlabs.zendesk.com/agent/tickets/29329 Zendesk Ticket Count: 1

Add Comment

[Branan Riley (JIRA)]

Branan Riley updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Branan Riley Labels: AD group ldap table triaged type_and_provider user

Add Comment

[Branan Riley (JIRA)]

[Adam Bottchen (JIRA)]

Adam Bottchen updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Adam Bottchen CS Impact: Our largest customers are going to most likely have existing AD implementations and it is not uncommon at all for there to be duplication of local groups and AD groups.  It is also not uncommon for AD entities to have spaces in their names.  We need to work correctly in that environment. CS Severity: 3 - Serious CS Business Value: 4 - $$$$$ CS Frequency: 2 - 5-25% of Customers

Add Comment

[Adam Bottchen (JIRA)]

Adam Bottchen updated an issue

Puppet / PUP-7918 puppet fails to change user group membership if directory group names have spaces

Change By: Adam Bottchen CS Priority: Needs Priority Normal

Add Comment

[Kenyon Ralph (Jira)]

Kenyon Ralph commented on PUP-7918

Re: puppet fails to change user group membership if directory group names have spaces I suspect this is also a problem with groups with dots/periods in their names. I don't have any groups with spaces, but I have groups with underscores, and groups with dots, and get the same error, "Groups must be comma-separated", when trying to manage a user resource and modify the groups attribute. Relevant discussion with references to POSIX: https://unix.stackexchange.com/a/11481/8945

Add Comment

This message was sent by Atlassian Jira (v8.5.2#805002-sha1:a66f935)

[Kenyon Ralph (Jira)]

Kenyon Ralph commented on PUP-7918

Re: puppet fails to change user group membership if directory group names have spaces

Actually, correction to my previous comment: I overlooked at least one group name with a space in it.

Add Comment