Hello everyone!
I noticed that when we remove a rodsgroup from our iRODS zone, I can still find the permissions of that group on collections and data objects.
For example, I created a group called 'testgroup' (ID 10020) and gave it read rights on the collection 'test'. When I remove the group (with iadmin rmgroup), their access seems to stay there:
iquest "SELECT COLL_ACCESS_USER_ID, COLL_ACCESS_NAME where COLL_NAME = '/myzone/home/rods/test'"
COLL_ACCESS_USER_ID = 10002
COLL_ACCESS_NAME = own
------------------------------------------
COLL_ACCESS_USER_ID = 10020
COLL_ACCESS_NAME = read_object
----------------------------------------------------
The permission is not reported anymore by ils -A, but I can still find it with iquest and with session.query in the PRC.
Since the group doesn't exist anymore, I don't believe that there is a real access issue. However, this outdated info remains, which in my opinion is confusing and requires some manual cleaning after queries.
My question: is this intended behaviour or not?
In the second case, I can make a proper Github issue with steps to reproduce.
Kind regards,
Jef