Hi all,
Here comes a short explanation of the most severe blocker we had
finally for releasing Debian Edu (after Guido fixed loads of other
issues).
The underlying problem of #1049328 [RESOLVED] is that upstream coded a
nested group feature into the groups plugin of GOsa². However, group
nesting is not a feature that can be used with posixGroup objectClass
based LDAP objects (as the objectClass / schema does not support group
nesting). I really have a huge question mark about what upstream's
intention for this feature was/is...
The outcome of this "feature" was that creating posixGroup in
pre-versions of Debian Edu 12 (and with it primary group creation
during user creation) was entirely broken.
The approach for resolving this in Debian Edu has been to identify a
range of upstream commits bringing in this new (bogus, imho) "feature"
into GOsa² 2.8.x and reverting these identified commits (which did't
always revert exactly but needed manual adjustments per
commit/revert). The reverts bring back the posixGroup handling as
known from Debian Edu 11 (basically, i.e. the posixGroup handling from
GOsa² 2.7.5).
As the architectural design really leaves this huge question mark
behind, the issue will be brought up upstream, as well (once we have
Debian Edu up and running again).
light+love
Mike
--
mike gabriel aka sunweaver (Debian Developer)
mobile: +49 (1520) 1976 148
landline: +49 (4351) 486 14 27
GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22 0782 9AF4 6B30 2577 1B31
mail: sunwea...@debian.org, http://sunweavers.net
pgpCLXjQY1DmC.pgp
Description: Digitale PGP-Signatur
