openstack
/
keystone
Code Issues Proposed changes

Merge "Remove group deletion for non-sql driver when removing domains."

This commit is contained in:
Zuul 2019-10-30 04:51:03 +00:00 committed by Gerrit Code Review
parent 7cf73e7aab d6977a0e9b
commit 20344d952a
2 changed files with 19 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
keystone/identity/core.py
View File

@ -500,20 +500,21 @@ class Manager(manager.Manager):
driver = self._select_identity_driver(domain_id)
user_refs = self.list_users(domain_scope=domain_id)
group_refs = self.list_groups(domain_scope=domain_id)
for group in group_refs:
# Cleanup any existing groups.
try:
self.delete_group(group['id'])
except exception.GroupNotFound:
LOG.debug(('Group %(groupid)s not found when deleting domain '
'contents for %(domainid)s, continuing with '
'cleanup.'),
{'groupid': group['id'], 'domainid': domain_id})
if driver.is_sql:
group_refs = self.list_groups(domain_scope=domain_id)
for group in group_refs:
# Cleanup any existing groups.
try:
self.delete_group(group['id'])
except exception.GroupNotFound:
LOG.debug(('Group %(groupid)s not found when deleting '
'domain contents for %(domainid)s, continuing '
'with cleanup.'),
{'groupid': group['id'], 'domainid': domain_id})
# And finally, delete the users themselves
user_refs = self.list_users(domain_scope=domain_id)
for user in user_refs:
try:
if not driver.is_sql:

6
releasenotes/notes/bug-1848238-f6533644f7907358.yaml Normal file
View File

@ -0,0 +1,6 @@
---
fixes:
- |
[bug 1848238 <https://bugs.launchpad.net/keystone/+bug/1848238>]
Allow deleting a domain when using the ldap driver for a domain. There was
an attempt to delete the group on the ldap whereas this one is read-only.