URL: https://github.com/SSSD/sssd/pull/128 Title: #128: Fix group renaming issue when "id_provider = ldap" is set
lslebodn commented: """
Just for the record, the issues mentioned by @lslebodn were reported recently and I really would prefer to treat them as not part of this PR (if necessary).
That is wrong preference because after renaming groups there might be two different entries in memory cache with the same UID/GID but with different name. And that is a problem. And must be fixed as part of https://fedorahosted.org/sssd/ticket/3282.
hmm, perhaps we could also forcibly drop the contents of memory cache like we do with the back end to nss back channel when the groups are renamed?
Did you mean with the back end to nss back channel when authentication change initgroups?
Although with the renaming we should not end up with duplicate entries anymore...
Are you sure? Because sysdb will not contain duplicate entries but memory cache might have. Unless you will be lucky and 1st entry before renaming is already expired in memory cache.
"""
See the full comment at https://github.com/SSSD/sssd/pull/128#issuecomment-334148621