diff options
author | Fabiano Fidêncio <fidencio@redhat.com> | 2016-11-08 16:46:21 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-11-24 09:55:45 +0100 |
commit | 7171a7584dda534dde5409f3e7f4657e845ece15 (patch) | |
tree | b1ff372f6afedd5a43d312c6b95dc4f26e98bab6 /src/config | |
parent | 9ba53ac52b12e2b9fdd3981d28ae56a8fece0131 (diff) | |
download | sssd-7171a7584dda534dde5409f3e7f4657e845ece15.tar.gz sssd-7171a7584dda534dde5409f3e7f4657e845ece15.tar.xz sssd-7171a7584dda534dde5409f3e7f4657e845ece15.zip |
SECRETS: Add configurable payload size limit of a secret
Resolves:
https://fedorahosted.org/sssd/ticket/3169
Signed-off-by: Fabiano Fidêncio <fidencio@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
Diffstat (limited to 'src/config')
-rw-r--r-- | src/config/SSSDConfig/__init__.py.in | 1 | ||||
-rw-r--r-- | src/config/cfg_rules.ini | 1 | ||||
-rw-r--r-- | src/config/etc/sssd.api.conf | 1 |
3 files changed, 3 insertions, 0 deletions
diff --git a/src/config/SSSDConfig/__init__.py.in b/src/config/SSSDConfig/__init__.py.in index 381ff9596..be09e8fbc 100644 --- a/src/config/SSSDConfig/__init__.py.in +++ b/src/config/SSSDConfig/__init__.py.in @@ -123,6 +123,7 @@ option_strings = { 'provider': _('The provider where the secrets will be stored in'), 'containers_nest_level': _('The maximum allowed number of nested containers'), 'max_secrets': _('The maximum number of secrets that can be stored'), + 'max_payload_size': _('The maximum payload size of a secret in kilobytes'), # secrets - proxy 'proxy_url': _('The URL Custodia server is listening on'), 'auth_type': _('The method to use when authenticating to a Custodia server'), diff --git a/src/config/cfg_rules.ini b/src/config/cfg_rules.ini index 882a185d8..ec44bffdf 100644 --- a/src/config/cfg_rules.ini +++ b/src/config/cfg_rules.ini @@ -230,6 +230,7 @@ option = client_idle_timeout option = description option = containers_nest_level option = max_secrets +option = max_payload_size [rule/allowed_sec_users_options] validator = ini_allowed_options diff --git a/src/config/etc/sssd.api.conf b/src/config/etc/sssd.api.conf index be24bcea0..d59122896 100644 --- a/src/config/etc/sssd.api.conf +++ b/src/config/etc/sssd.api.conf @@ -100,6 +100,7 @@ user_attributes = str, None, false provider = str, None, false containers_nest_level = int, None, false max_secrets = int, None, false +max_payload_size = int, None, false # Secrets service - proxy proxy_url = str, None, false auth_type = str, None, false |