summaryrefslogtreecommitdiffstats
path: root/src/providers/ipa/ipa_hbac_private.h
Commit message (Collapse)AuthorAgeFilesLines
* LDAP: Only convert direct parents' ghost attribute to memberJakub Hrozek2012-11-211-1/+0
| | | | | | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting.
* IPA hosts refactoringJan Zeleny2012-02-241-6/+0
|
* Separate the host-retrieval code from IPA HBAC to common IPA codeJan Zeleny2012-02-061-19/+0
|
* Implemented support for multiple search bases in HBAC rules and servicesJan Zeleny2012-02-061-17/+1
|
* Support multiple search bases in HBACJan Zeleny2012-01-141-1/+1
|
* Add ipa_hbac_support_srchost option to IPA providerJan Zeleny2011-11-291-0/+3
| | | | | don't fetch all host groups if this option is false https://fedorahosted.org/sssd/ticket/1078
* Cleanup: Remove unused parametersJakub Hrozek2011-11-221-8/+0
|
* HBAC: Use originalMember for identifying hostgroupsStephen Gallagher2011-10-141-0/+5
|
* HBAC: Use originalMember for identifying servicegroupsStephen Gallagher2011-10-141-0/+5
|
* Add helper functions for looking up HBAC rule componentsStephen Gallagher2011-07-081-0/+194
generated by cgit (git 2.34.1) at 2024-05-18 13:11:52 +0000