summaryrefslogtreecommitdiffstats
path: root/src/responder/nss/nsssrv_cmd.c
diff options
context:
space:
mode:
authorSumit Bose <sbose@redhat.com>2015-01-20 12:51:57 +0100
committerJakub Hrozek <jhrozek@redhat.com>2015-01-20 19:57:20 +0100
commit7543052f562f157f7b17fdc46a6777d80c0cb3bd (patch)
tree1071d4cde639420fe99b78599b72d75b9617477f /src/responder/nss/nsssrv_cmd.c
parenta4d64002b5ca763622bde240d27797d361ba0388 (diff)
downloadsssd-7543052f562f157f7b17fdc46a6777d80c0cb3bd.tar.gz
sssd-7543052f562f157f7b17fdc46a6777d80c0cb3bd.tar.xz
sssd-7543052f562f157f7b17fdc46a6777d80c0cb3bd.zip
nss: Add original DN and memberOf to origbyname request
IPA HBAC evaluation relies on the original values for DN and memberOf attributes. Resolves https://fedorahosted.org/sssd/ticket/2560 Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Diffstat (limited to 'src/responder/nss/nsssrv_cmd.c')
-rw-r--r--src/responder/nss/nsssrv_cmd.c4
1 files changed, 4 insertions, 0 deletions
diff --git a/src/responder/nss/nsssrv_cmd.c b/src/responder/nss/nsssrv_cmd.c
index 894044b60..f5f5f02f5 100644
--- a/src/responder/nss/nsssrv_cmd.c
+++ b/src/responder/nss/nsssrv_cmd.c
@@ -4160,6 +4160,8 @@ static errno_t nss_cmd_getsidby_search(struct nss_dom_ctx *dctx)
SYSDB_AD_ACCOUNT_EXPIRES,
SYSDB_AD_USER_ACCOUNT_CONTROL,
SYSDB_SSH_PUBKEY,
+ SYSDB_ORIG_DN,
+ SYSDB_ORIG_MEMBEROF,
SYSDB_DEFAULT_ATTRS, NULL};
const char **attrs;
bool user_found = false;
@@ -4688,6 +4690,8 @@ static errno_t fill_orig(struct sss_packet *packet,
SYSDB_AD_ACCOUNT_EXPIRES,
SYSDB_AD_USER_ACCOUNT_CONTROL,
SYSDB_SSH_PUBKEY,
+ SYSDB_ORIG_DN,
+ SYSDB_ORIG_MEMBEROF,
NULL};
struct sized_string *keys;
struct sized_string *vals;
generated by cgit (git 2.34.1) at 2024-05-10 04:42:46 +0000