authconfig.py: restore user-nsswitch.conf at uninstall time

Calling authselect at uninstall time before restoring user-nsswitch.conf would result in a sudoers entry in nsswitch.conf which is not activated in the default sssd authselect profile. Make sure user-nsswitch.conf is restored before calling authselect. Fixes: https://pagure.io/freeipa/issue/8054 Signed-off-by: François Cami <fcami@redhat.com> Reviewed-By: Thomas Woerner <twoerner@redhat.com>
2025-02-25 18:55:28 -06:00 · 2019-08-29 14:24:40 +02:00 · 2019-08-29 14:24:40 +02:00 · 73f049c75f
commit 73f049c75f
parent 03a228aaf6
1 changed files with 4 additions and 0 deletions
--- a/ipaplatform/redhat/authconfig.py
+++ b/ipaplatform/redhat/authconfig.py
@ -167,6 +167,10 @@ class RedHatAuthSelect(RedHatAuthToolBase):
                'authselect', 'features_list'
            )
            statestore.delete_state('authselect', 'mkhomedir')
+            # https://pagure.io/freeipa/issue/8054
+            if fstore.has_file(paths.NSSWITCH_CONF):
+                logger.info("Restoring user-nsswitch.conf")
+                fstore.restore_file(paths.NSSWITCH_CONF)
            # only non-empty features, https://pagure.io/freeipa/issue/7776
            if features_state is not None:
                features = [