diff options
author | Adam Edwards <adamed@opscode.com> | 2013-12-29 08:12:44 -0800 |
---|---|---|
committer | adamedx <adamed@opscode.com> | 2014-01-13 12:32:40 -0800 |
commit | 74579d3dfbc529fd21ac3b34bbf136bdf4830cf5 (patch) | |
tree | 49c80449bdcfcf6c898dfa4b07a6028b09b7dd7e | |
parent | 497c6f105d01b54498d89ee3161f4a83112a53b2 (diff) | |
download | chef-74579d3dfbc529fd21ac3b34bbf136bdf4830cf5.tar.gz |
Also use sid in excluded_members check, fixes group_spec regression
-rw-r--r-- | lib/chef/provider/group/windows.rb | 18 |
1 files changed, 14 insertions, 4 deletions
diff --git a/lib/chef/provider/group/windows.rb b/lib/chef/provider/group/windows.rb index de12fb4a7f..ebe37fa68d 100644 --- a/lib/chef/provider/group/windows.rb +++ b/lib/chef/provider/group/windows.rb @@ -59,9 +59,8 @@ class Chef if @new_resource.append members_to_be_added = [ ] @new_resource.members.each do |member| - member = "#{ENV['COMPUTERNAME']}\\#{member}" if ! member.include?("\\") - member_sid = Chef::ReservedNames::Win32::Security.lookup_account_name(member)[1] - members_to_be_added << member if !@current_resource.members.include?(member_sid.to_s) + member_sid = local_group_name_to_sid(member) + members_to_be_added << member if !@current_resource.members.include?(member_sid) end # local_add_members will raise ERROR_MEMBER_IN_ALIAS if a @@ -70,7 +69,8 @@ class Chef members_to_be_removed = [ ] @new_resource.excluded_members.each do |member| - members_to_be_removed << member if @current_resource.members.include?(member) + member_sid = local_group_name_to_sid(member) + members_to_be_removed << member if @current_resource.members.include?(member_sid) end @net_group.local_delete_members(members_to_be_removed) unless members_to_be_removed.empty? else @@ -82,6 +82,16 @@ class Chef @net_group.local_delete end + def local_group_name_to_sid(group_name) + if ! group_name.include?("\\") + locally_qualified_name = "#{ENV['COMPUTERNAME']}\\#{group_name}" + else + locally_qualified_name = group_name + end + + Chef::ReservedNames::Win32::Security.lookup_account_name(locally_qualified_name)[1].to_s + end + end end end |