diff options
| author | Jakub Hrozek <jhrozek@redhat.com> | 2014-01-02 17:23:08 +0100 |
|---|---|---|
| committer | Jakub Hrozek <jhrozek@redhat.com> | 2014-06-03 13:35:12 +0200 |
| commit | dc8e542f5e9b2cc6373af94e27a0ce26a220edef (patch) | |
| tree | 10e8e3198ee03ca2f7ade47c9c3c5852546ff5e0 /src/confdb | |
| parent | 6ad198aad0406bf6649540ff99c699cdc3f5f3b7 (diff) | |
| download | sssd-dc8e542f5e9b2cc6373af94e27a0ce26a220edef.tar.gz sssd-dc8e542f5e9b2cc6373af94e27a0ce26a220edef.tar.xz sssd-dc8e542f5e9b2cc6373af94e27a0ce26a220edef.zip | |
IFP: Per-attribute ACL for users
Introduces a new option called user_attributes that allows to specify
which user attributes are allowed to be queried from the IFP responder.
By default only the default POSIX set is allowed, this option allows to
either add other attributes (+attrname) or remove them from the default
set (-attrname).
Reviewed-by: Pavel Březina <pbrezina@redhat.com>
(cherry picked from commit 770dc892f867639f36f84455d65be6287935a529)
Diffstat (limited to 'src/confdb')
| -rw-r--r-- | src/confdb/confdb.h | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/confdb/confdb.h b/src/confdb/confdb.h index 465b41db0..0f70671c6 100644 --- a/src/confdb/confdb.h +++ b/src/confdb/confdb.h @@ -136,6 +136,7 @@ /* InfoPipe */ #define CONFDB_IFP_CONF_ENTRY "config/ifp" +#define CONFDB_IFP_USER_ATTR_LIST "user_attributes" /* Domains */ #define CONFDB_DOMAIN_PATH_TMPL "config/domain/%s" |