git://git.whamcloud.com - fs/lustre-release.git/commit

author	Shaun Tancheff <shaun.tancheff@hpe.com>
	Sat, 23 Sep 2023 17:51:00 +0000 (12:51 -0500)
committer	Oleg Drokin <green@whamcloud.com>
	Sat, 18 Nov 2023 21:43:34 +0000 (21:43 +0000)
commit	5f9f92454ef2a46075c850546ad4ac1621038dcf
tree	b9bddb2d7f47af557ad3298eae1bc07a6986a9fb	tree \| snapshot
parent	2559c3a7a2c64b31baae1cba2ede6c4415ddc04d	commit \| diff

LU-16901 utils: l_getidentity with nss module support

Enable l_getidenity to fetch user's supplementary groups
info from NIS, LDAP and/or any other services that NSS modules
exist for.

Add support for local lustre specific users in
  /etc/lustre/passwd
  /etc/lustre/group

Specify the list of modules to be searched, in-order which
allows lookup options to skip group or user searches for
particular user(s) and group(s).

To enable this feature add "lookup <mod1> <mod2> ... <modN>"
as the first line to:
  /etc/lustre/perm.conf

An example usage:
[/etc/lustre/perm.conf]
lookup lustre ldap

[/etc/lustre/passwd]
root:x:0:0:root:/root:/bin/bash

[/etc/lustre/group]
root:x:0:root

The special users in /etc/lustre do not incur the
expense of ldap queries.
Other special users like nobody, anon, etc. may be
useful to have on a cluster but not present in ldap, nis, ...

HPE-bug-id: MRP-1137, MRP-2132, LUS-2503, LUS-2453
Test-Parameters: trivial
Signed-off-by: Alexander Zarochentsev <alexander.zarochentsev@hpe.com>
Signed-off-by: Shaun Tancheff <shaun.tancheff@hpe.com>
Change-Id: I55387e1df08bf2786ab78740403a1daf5a718d64
Reviewed-on: https://review.whamcloud.com/c/fs/lustre-release/+/51329
Tested-by: jenkins <devops@whamcloud.com>
Tested-by: Maloo <maloo@whamcloud.com>
Reviewed-by: Andrew Perepechko <andrew.perepechko@hpe.com>
Reviewed-by: Oleg Drokin <green@whamcloud.com>
Reviewed-by: Andreas Dilger <adilger@whamcloud.com>

lustre/doc/l_getidentity.8		diff \| blob \| history
lustre/utils/Makefile.am		diff \| blob \| history
lustre/utils/l_getidentity.c		diff \| blob \| history