diff options
author | Fabiano FidĂȘncio <fidencio@redhat.com> | 2016-09-25 20:49:16 +0200 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-10-03 15:32:14 +0200 |
commit | 5e17edfc899d4fffb15f8300d15e4412af0f2f7d (patch) | |
tree | a6d1117600d767bbbefc241a544448739fe5e2eb | |
parent | 54c64aad71e6792edb7cf99988d9a7f4bc2b0c61 (diff) | |
download | sssd-5e17edfc899d4fffb15f8300d15e4412af0f2f7d.tar.gz sssd-5e17edfc899d4fffb15f8300d15e4412af0f2f7d.tar.xz sssd-5e17edfc899d4fffb15f8300d15e4412af0f2f7d.zip |
CONFIG: Add secrets responder to the allowed sections
The regular expression used is quite specific for the two cases we
support:
- [secrets]
- [secrets/users/$uid]
It could be done a bit more generic, but the way it's right now it can
easily catch errors like: [secrets/usrs/$uid] or [secrets/].
Related:
https://fedorahosted.org/sssd/ticket/3207
Signed-off-by: Fabiano FidĂȘncio <fidencio@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
-rw-r--r-- | src/config/cfg_rules.ini | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/config/cfg_rules.ini b/src/config/cfg_rules.ini index 01be0c6e6..023ceacc1 100644 --- a/src/config/cfg_rules.ini +++ b/src/config/cfg_rules.ini @@ -8,6 +8,7 @@ section = autofs section = ssh section = pac section = ifp +section_re = ^secrets\(/users/\([0-9]\+\)\?\)\?$ section_re = ^domain/.*$ [rule/allowed_sssd_options] |