HBAC: remove misleading comment about deny rules

HBAC deny rules are no longer supported. This comment should have been removed as part of 'Remove HBAC DENY rules from SSSD' https://fedorahosted.org/sssd/ticket/912 Reviewed-by: Michal Židek <mzidek@redhat.com>
author: Pavel Reichl <preichl@redhat.com> 2015-10-05 09:39:29 -0400
committer: Jakub Hrozek <jhrozek@redhat.com> 2015-10-08 20:46:13 +0200
commit: 046b063e73e6f2a1bb0e2e1e654ed777b5276edc (patch)
tree: 43cb26f029de906c127e60ba02011473ba4c3d8d
parent: 1584db9c0b15ee239bd4e163c4ecaf6909b1b11b (diff)
download: sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.tar.gz
sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.tar.xz
sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.zip
1 files changed, 0 insertions, 4 deletions
diff --git a/src/providers/ipa/hbac_evaluator.c b/src/providers/ipa/hbac_evaluator.c
index 28d802bc1..a4973045d 100644
--- a/src/providers/ipa/hbac_evaluator.c
+++ b/src/providers/ipa/hbac_evaluator.c
@@ -169,10 +169,6 @@ enum hbac_eval_result hbac_evaluate(struct hbac_rule **rules,
                        rules[i]->name);
             continue;
         } else if (intermediate_result == HBAC_EVAL_MATCHED) {
-            /* This request matched an ALLOW rule
-             * Set the result to ALLOW but continue checking
-             * the other rules in case a DENY rule trumps it.
-             */
             HBAC_DEBUG(HBAC_DBG_INFO, "ALLOWED by rule [%s].\n", rules[i]->name);
             result = HBAC_EVAL_ALLOW;
             if (info) {
author	Pavel Reichl <preichl@redhat.com>	2015-10-05 09:39:29 -0400
committer	Jakub Hrozek <jhrozek@redhat.com>	2015-10-08 20:46:13 +0200
commit	046b063e73e6f2a1bb0e2e1e654ed777b5276edc (patch)
tree	43cb26f029de906c127e60ba02011473ba4c3d8d
parent	1584db9c0b15ee239bd4e163c4ecaf6909b1b11b (diff)
download	sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.tar.gz sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.tar.xz sssd-046b063e73e6f2a1bb0e2e1e654ed777b5276edc.zip