From be82c8f75f195e8415d0afd29265504068792d39 Mon Sep 17 00:00:00 2001
From: John Hodrien <J.H.Hodrien@leeds.ac.uk>
Date: Fri, 29 Jul 2011 10:04:05 -0400
Subject: Add vetoed_shells option

There may be users in LDAP that have a valid but unwelcome shell
set in their account. This adds a blacklist of shells that should
always be replaced by the fallback_shell.

Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>

Prevent segfault if vetoed_shells are specified without allowed_shells

https://fedorahosted.org/sssd/ticket/954
---
 src/config/SSSDConfig.py | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src/config/SSSDConfig.py')

diff --git a/src/config/SSSDConfig.py b/src/config/SSSDConfig.py
index 920a8a056..93a108ebd 100644
--- a/src/config/SSSDConfig.py
+++ b/src/config/SSSDConfig.py
@@ -60,6 +60,7 @@ option_strings = {
     'pwfield' : _('The value of the password field the NSS provider should return'),
     'override_homedir' : _('Override homedir value from the identity provider with this value'),
     'allowed_shells' : _('The list of shells users are allowed to log in with'),
+    'vetoed_shells' : _('The list of shells that will be vetoed, and replaced with the fallback shell'),
     'shell_fallback' : _('If a shell stored in central directory is allowed but not available, use this fallback'),
 
     # [pam]
-- 
cgit