diff options
| author | Noriko Hosoi <nhosoi@redhat.com> | 2010-03-08 09:35:02 -0800 |
|---|---|---|
| committer | Noriko Hosoi <nhosoi@redhat.com> | 2010-03-08 09:35:02 -0800 |
| commit | 417e1542fde56d485979daa85d357c5fc14b04d5 (patch) | |
| tree | ee12336cc445506eeabdff62d22558e3f962d36a /ldap/servers/slapd/proto-slap.h | |
| parent | 031e725dce895bf2382ca7801cef772fe6b24c61 (diff) | |
| download | ds-417e1542fde56d485979daa85d357c5fc14b04d5.tar.gz ds-417e1542fde56d485979daa85d357c5fc14b04d5.tar.xz ds-417e1542fde56d485979daa85d357c5fc14b04d5.zip | |
Bug 554573 - ACIs use bind DN from bind req rather than cert mapped DN from sasl/external
https://bugzilla.redhat.com/show_bug.cgi?id=554573
Resolves: bug 554573
Bug Description: ACIs use bind DN from bind req rather than cert mapped DN from sasl/external
Reviewed by: ???
Branch: HEAD
Fix Description: Added a new config option - nsslapd-force-sasl-external (on/off)
default is off - when set to on, a SIMPLE bind on a connection that has set
a DN from a cert will be changed to be a SASL/EXTERNAL bind.
Platforms tested: RHEL5 x86_64
Flag Day: no
Doc impact: yes - new attribute to document
Note: This commit is for reapplying the patch I accidentally reverted
by the previous revert (031e725dce895bf2382ca7801cef772fe6b24c61).
(see commit f4b90ed5e43fa06ea6185cf17073b7a32db6ef4c, as well)
commit 031e725dce895bf2382ca7801cef772fe6b24c61
Author: Noriko Hosoi <nhosoi@redhat.com>
Date: Fri Mar 5 16:09:28 2010 -0800
Revert "Merge branch '547503'"
This reverts commit f2a04fdc45cc8a408267019990504354282c4303, reversing
changes made to 0b95451c7e50cb6b2d0cb310dddca18336e1b2ac.
Diffstat (limited to 'ldap/servers/slapd/proto-slap.h')
| -rw-r--r-- | ldap/servers/slapd/proto-slap.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/ldap/servers/slapd/proto-slap.h b/ldap/servers/slapd/proto-slap.h index 9133958c..be3b9dde 100644 --- a/ldap/servers/slapd/proto-slap.h +++ b/ldap/servers/slapd/proto-slap.h @@ -370,6 +370,7 @@ int config_set_anon_access_switch(const char *attrname, char *value, char *error int config_set_minssf(const char *attrname, char *value, char *errorbuf, int apply ); int config_set_accesslogbuffering(const char *attrname, char *value, char *errorbuf, int apply); int config_set_csnlogging(const char *attrname, char *value, char *errorbuf, int apply); +int config_set_force_sasl_external(const char *attrname, char *value, char *errorbuf, int apply ); #if !defined(_WIN32) && !defined(AIX) int config_set_maxdescriptors( const char *attrname, char *value, char *errorbuf, int apply ); @@ -507,6 +508,7 @@ int config_get_mempool_maxfreelist(); long config_get_system_page_size(); int config_get_system_page_bits(); #endif +int config_get_force_sasl_external(); int is_abspath(const char *); char* rel2abspath( char * ); |