From 1e651977e3a0882634038de9d3456e28533d3a40 Mon Sep 17 00:00:00 2001
From: Yohann D'ANELLO <ynerant@crans.org>
Date: Tue, 2 Mar 2021 09:10:36 +0100
Subject: [PATCH] [ldap_lookup] Fix role search

Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
---
 lookup_plugins/ldap.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lookup_plugins/ldap.py b/lookup_plugins/ldap.py
index 3a77bfb3..05965e6a 100644
--- a/lookup_plugins/ldap.py
+++ b/lookup_plugins/ldap.py
@@ -200,7 +200,7 @@ class LookupModule(LookupBase):
             return int(result['description'][0])
         elif terms[0] == 'role':
             role = terms[1]
-            query_id = self.base.search(f"ou=hosts,{self.base_dn}", ldap.SCOPE_ONELEVEL, f"description={role}")
+            query_id = self.base.search(f"ou=hosts,{self.base_dn}", ldap.SCOPE_ONELEVEL, f"description=role:{role}")
             result = self.base.result(query_id)
             result = [cn.decode('utf-8') for res in result[1] for cn in res[1]['cn']]
         return result
-- 
GitLab