diff options
author | Simo Sorce <ssorce@redhat.com> | 2012-02-13 12:15:07 -0500 |
---|---|---|
committer | Simo Sorce <ssorce@redhat.com> | 2012-02-14 18:03:45 -0500 |
commit | 651f9324735d0680c6a56246616932459e15b99d (patch) | |
tree | fc31c99ff422fe9e072210a89e87a4cfadb52dfe /daemons/ipa-kdb/ipa_kdb.h | |
parent | 431286a0f61e7bc61d05a6da172cad07801652c2 (diff) | |
download | freeipa-651f9324735d0680c6a56246616932459e15b99d.tar.gz freeipa-651f9324735d0680c6a56246616932459e15b99d.tar.xz freeipa-651f9324735d0680c6a56246616932459e15b99d.zip |
ipa-kdb: add AS auditing support
Fixes: https://fedorahosted.org/freeipa/ticket/2334
Diffstat (limited to 'daemons/ipa-kdb/ipa_kdb.h')
-rw-r--r-- | daemons/ipa-kdb/ipa_kdb.h | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/daemons/ipa-kdb/ipa_kdb.h b/daemons/ipa-kdb/ipa_kdb.h index 2531d0328..22e28223c 100644 --- a/daemons/ipa-kdb/ipa_kdb.h +++ b/daemons/ipa-kdb/ipa_kdb.h @@ -103,7 +103,8 @@ struct ipadb_e_data { time_t last_pwd_change; char *pw_policy_dn; char **pw_history; - struct ipapwd_policy pol; + struct ipapwd_policy *pol; + time_t last_admin_unlock; }; struct ipadb_context *ipadb_get_context(krb5_context kcontext); @@ -165,6 +166,11 @@ krb5_error_code ipadb_iterate(krb5_context kcontext, krb5_pointer func_arg); /* POLICY FUNCTIONS */ + +krb5_error_code ipadb_get_ipapwd_policy(struct ipadb_context *ipactx, + char *pw_policy_dn, + struct ipapwd_policy **pol); + krb5_error_code ipadb_create_pwd_policy(krb5_context kcontext, osa_policy_ent_t policy); krb5_error_code ipadb_get_pwd_policy(krb5_context kcontext, char *name, @@ -230,3 +236,13 @@ krb5_error_code ipadb_check_allowed_to_delegate(krb5_context kcontext, krb5_const_principal client, const krb5_db_entry *server, krb5_const_principal proxy); + +/* AS AUDIT */ + +void ipadb_audit_as_req(krb5_context kcontext, + krb5_kdc_req *request, + krb5_db_entry *client, + krb5_db_entry *server, + krb5_timestamp authtime, + krb5_error_code error_code); + |