From 35480afaefafb77b28d35b29039989ab888aafe9 Mon Sep 17 00:00:00 2001 From: Stephen Gallagher Date: Thu, 6 May 2010 10:09:41 -0400 Subject: Add ldap_access_filter option This option (applicable to access_provider=ldap) allows the admin to set an additional LDAP search filter that must match in order for a user to be granted access to the system. Common examples for this would be limiting access to users by in a particular group, for example: ldap_access_filter = memberOf=cn=access_group,ou=Groups,dc=example,dc=com --- src/providers/ldap/ldap_common.h | 3 +++ 1 file changed, 3 insertions(+) (limited to 'src/providers/ldap/ldap_common.h') diff --git a/src/providers/ldap/ldap_common.h b/src/providers/ldap/ldap_common.h index 53ffd6fe8..1ee7378cb 100644 --- a/src/providers/ldap/ldap_common.h +++ b/src/providers/ldap/ldap_common.h @@ -73,6 +73,9 @@ void sdap_pam_auth_handler(struct be_req *breq); /* chpass */ void sdap_pam_chpass_handler(struct be_req *breq); +/* access */ +void sdap_pam_access_handler(struct be_req *breq); + void sdap_handler_done(struct be_req *req, int dp_err, -- cgit