summaryrefslogtreecommitdiffstats
path: root/src/providers/ipa/ipa_init.c
diff options
context:
space:
mode:
authorStephen Gallagher <sgallagh@redhat.com>2012-03-08 15:19:07 -0500
committerStephen Gallagher <sgallagh@redhat.com>2012-03-09 08:24:57 -0500
commit2424e15710a3738ce0676445e5b5872d50a27735 (patch)
tree6bac2fe98cc6aeedcfb792ad0a421c71fd553d0a /src/providers/ipa/ipa_init.c
parent559ce4cdec1a4fe44cf7eb63d5df71638316a87a (diff)
downloadsssd-2424e15710a3738ce0676445e5b5872d50a27735.tar.gz
sssd-2424e15710a3738ce0676445e5b5872d50a27735.tar.xz
sssd-2424e15710a3738ce0676445e5b5872d50a27735.zip
IPA: Check nsAccountLock during PAM_ACCT_MGMT
https://fedorahosted.org/sssd/ticket/1227
Diffstat (limited to 'src/providers/ipa/ipa_init.c')
-rw-r--r--src/providers/ipa/ipa_init.c11
1 files changed, 11 insertions, 0 deletions
diff --git a/src/providers/ipa/ipa_init.c b/src/providers/ipa/ipa_init.c
index 20745c11f..f02a84bfe 100644
--- a/src/providers/ipa/ipa_init.c
+++ b/src/providers/ipa/ipa_init.c
@@ -36,6 +36,7 @@
#include "providers/ipa/ipa_hostid.h"
#include "providers/ipa/ipa_dyndns.h"
#include "providers/ipa/ipa_session.h"
+#include "providers/ldap/sdap_access.h"
struct ipa_options *ipa_options = NULL;
@@ -396,6 +397,16 @@ int sssm_ipa_access_init(struct be_ctx *bectx,
goto done;
}
+ /* Set up an sdap_access_ctx for checking expired/locked
+ * accounts.
+ */
+ ipa_access_ctx->sdap_access_ctx =
+ talloc_zero(ipa_access_ctx, struct sdap_access_ctx);
+
+ ipa_access_ctx->sdap_access_ctx->id_ctx = ipa_access_ctx->sdap_ctx;
+ ipa_access_ctx->sdap_access_ctx->access_rule[0] = LDAP_ACCESS_EXPIRE;
+ ipa_access_ctx->sdap_access_ctx->access_rule[1] = LDAP_ACCESS_EMPTY;
+
*ops = &ipa_access_ops;
*pvt_data = ipa_access_ctx;
generated by cgit (git 2.34.1) at 2024-06-11 20:40:59 +0000