Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-2470

validTo in a role assignment not applicated

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 3.1.1
    • Fix Version/s: 3.2 (Tycho)
    • Component/s: Provisioning
    • Labels:
      None
    • Environment:

      git-v3.1.1

      Description

      0) import opendj.xml and temprola.xml from attachments, create LDAP basic structure with cn=temprola group in ou=Groups (see ldif)
      1) create new user (for example test), fill name, given, family and full name
      2) assign account Localhost OpenDJ and temprola with ValidFrom (yesterday) and ValidTo (tomorrow)
      3) save it, account in OpenDJ is created and group with cn='temprola' have associated to account over uniqueMember uid=test,ou=people,dc=example,dc=com
      4) change time in midpoint over internal configuration to the day after tomorrow (association is jet not valid)
      5) do reconcile on user test - may be unassign association on OpenDJ, but nothing happend, old and invalid association is already in OpenDJ

        Attachments

        1. opendj.xml
          31 kB
        2. opendjldif.ldif
          2 kB
        3. temprola.xml
          3 kB

          Activity

            People

            Assignee:
            oscar Gustáv Pálos
            Reporter:
            oscar Gustáv Pálos
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: