diff options
author | Pavel Březina <pbrezina@redhat.com> | 2015-12-02 15:02:39 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-01-19 14:33:30 +0100 |
commit | cc7766c8456653ab5d7dedbf432cb1711a905804 (patch) | |
tree | 84b7c62056f01f7f713b94c5b860a8e901ea3c00 | |
parent | ed8650be18af26b7bf389e1246f7e8cdb363f829 (diff) | |
download | sssd-cc7766c8456653ab5d7dedbf432cb1711a905804.tar.gz sssd-cc7766c8456653ab5d7dedbf432cb1711a905804.tar.xz sssd-cc7766c8456653ab5d7dedbf432cb1711a905804.zip |
IPA SUDO: Add ipasudocmd mapping
Reviewed-by: Sumit Bose <sbose@redhat.com>
-rw-r--r-- | src/config/etc/sssd.api.d/sssd-ipa.conf | 4 | ||||
-rw-r--r-- | src/db/sysdb_sudo.h | 3 | ||||
-rw-r--r-- | src/providers/ipa/ipa_common.h | 9 | ||||
-rw-r--r-- | src/providers/ipa/ipa_opts.c | 8 | ||||
-rw-r--r-- | src/providers/ipa/ipa_opts.h | 2 |
5 files changed, 26 insertions, 0 deletions
diff --git a/src/config/etc/sssd.api.d/sssd-ipa.conf b/src/config/etc/sssd.api.d/sssd-ipa.conf index f46545491..2784a01e7 100644 --- a/src/config/etc/sssd.api.d/sssd-ipa.conf +++ b/src/config/etc/sssd.api.d/sssd-ipa.conf @@ -259,3 +259,7 @@ ipa_sudocmdgroup_uuid = str, None, false ipa_sudocmdgroup_name = str, None, false ipa_sudocmdgroup_member = str, None, false ipa_sudocmdgroup_entry_usn = str, None, false +ipa_sudocmd_object_class = str, None, false +ipa_sudocmd_uuid = str, None, false +ipa_sudocmd_sudoCmd = str, None, false +ipa_sudocmd_memberof = str, None, false diff --git a/src/db/sysdb_sudo.h b/src/db/sysdb_sudo.h index 658d0237a..8635e7804 100644 --- a/src/db/sysdb_sudo.h +++ b/src/db/sysdb_sudo.h @@ -68,6 +68,9 @@ #define SYSDB_IPA_SUDOCMDGROUP_OC "ipasudocmdgrp" +#define SYSDB_IPA_SUDOCMD_OC "ipasudocmd" +#define SYSDB_IPA_SUDOCMD_SUDOCMD "sudoCmd" + /* When constructing a sysdb filter, OR these values to include.. */ #define SYSDB_SUDO_FILTER_NONE 0x00 /* no additional filter */ #define SYSDB_SUDO_FILTER_USERNAME 0x01 /* username */ diff --git a/src/providers/ipa/ipa_common.h b/src/providers/ipa/ipa_common.h index 57d93dd64..8cb2058fe 100644 --- a/src/providers/ipa/ipa_common.h +++ b/src/providers/ipa/ipa_common.h @@ -168,6 +168,15 @@ enum ipa_sudocmdgroup_attrs { IPA_OPTS_SUDOCMDGROUP }; +enum ipa_sudocmd_attrs { + IPA_OC_SUDOCMD = 0, + IPA_AT_SUDOCMD_UUID, + IPA_AT_SUDOCMD_CMD, + IPA_AT_SUDOCMD_MEMBEROF, + + IPA_OPTS_SUDOCMD +}; + struct ipa_auth_ctx { struct krb5_ctx *krb5_auth_ctx; struct sdap_id_ctx *sdap_id_ctx; diff --git a/src/providers/ipa/ipa_opts.c b/src/providers/ipa/ipa_opts.c index 3493984f5..725e51235 100644 --- a/src/providers/ipa/ipa_opts.c +++ b/src/providers/ipa/ipa_opts.c @@ -368,3 +368,11 @@ struct sdap_attr_map ipa_sudocmdgroup_map[] = { { "ipa_sudocmdgroup_entry_usn", "entryUSN", SYSDB_USN, NULL }, SDAP_ATTR_MAP_TERMINATOR }; + +struct sdap_attr_map ipa_sudocmd_map[] = { + { "ipa_sudocmd_object_class", "ipasudocmd", SYSDB_IPA_SUDOCMD_OC, NULL }, + { "ipa_sudocmd_uuid", "ipaUniqueID", SYSDB_UUID, NULL }, + { "ipa_sudocmd_sudoCmd", "sudoCmd", SYSDB_IPA_SUDOCMD_SUDOCMD, NULL }, + { "ipa_sudocmd_memberof", "memberOf", SYSDB_MEMBEROF, NULL }, + SDAP_ATTR_MAP_TERMINATOR +}; diff --git a/src/providers/ipa/ipa_opts.h b/src/providers/ipa/ipa_opts.h index 89acea160..68326b864 100644 --- a/src/providers/ipa/ipa_opts.h +++ b/src/providers/ipa/ipa_opts.h @@ -62,4 +62,6 @@ extern struct sdap_attr_map ipa_sudorule_map[]; extern struct sdap_attr_map ipa_sudocmdgroup_map[]; +extern struct sdap_attr_map ipa_sudocmd_map[]; + #endif /* IPA_OPTS_H_ */ |