From 52ae806bd17c3c00d70bd1aed437f10f5ae51a1c Mon Sep 17 00:00:00 2001 From: Jakub Hrozek Date: Fri, 12 Jul 2013 15:19:02 +0200 Subject: IPA: warn if full_name_format is customized in server mode https://fedorahosted.org/sssd/ticket/2009 If the IPA server mode is on and the SSSD is running on the IPA server, then the server's extdom plugin calls getpwnam_r to read info about trusted users from the AD server and return them to the clients that called the extended operation. The SSSD returns the subdomain users fully-qualified, ie "user@domain" by default. The format of the fully qualified name is configurable. However, the extdom plugin returns the user name without the domain component. With this patch, when ipa_server_mode is on, warn if the full_name_format is set to a non-default value. That would prompt the admin to change the format if he changed it to something exotic. --- src/util/usertools.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/util') diff --git a/src/util/usertools.c b/src/util/usertools.c index dc863ce82..7ec14b351 100644 --- a/src/util/usertools.c +++ b/src/util/usertools.c @@ -306,7 +306,7 @@ int sss_names_init(TALLOC_CTX *mem_ctx, struct confdb_ctx *cdb, } if (!fq_fmt) { - fq_fmt = talloc_strdup(tmpctx, "%1$s@%2$s"); + fq_fmt = talloc_strdup(tmpctx, CONFDB_DEFAULT_FULL_NAME_FORMAT); if (!fq_fmt) { ret = ENOMEM; goto done; -- cgit