Fix returning effective rights for password policy.

This also returns the rights for cospriority if the policy is for a group. ticket 449
2025-02-25 18:55:28 -06:00 · 2010-11-09 16:05:54 -05:00
parent c07bac8c00
commit 1b166c9e8b
2 changed files with 6 additions and 2 deletions
--- a/ipalib/plugins/pwpolicy.py
+++ b/ipalib/plugins/pwpolicy.py
@@ -401,7 +401,7 @@ class pwpolicy_show(LDAPRetrieve):
    """
    Display information about password policy.
    """
-    takes_options = (
+    takes_options = LDAPRetrieve.takes_options + (
        Str('user?',
            label=_('User'),
            doc=_('Display effective policy for a specific user'),
@@ -428,6 +428,10 @@ class pwpolicy_show(LDAPRetrieve):
                        entry_attrs['cospriority'] = cos_entry['cospriority']
                except errors.NotFound:
                    pass
+        if options.get('rights', False) and options.get('all', False) and \
+            keys[-1] is not None:
+            cos_entry = self.api.Command.cosentry_show(keys[-1], rights=True, all=True)['result']
+            entry_attrs['attributelevelrights']['cospriority'] = cos_entry['attributelevelrights']['cospriority']
        self.obj.convert_time_for_output(entry_attrs, **options)
        return dn