diff options
author | Endi S. Dewata <edewata@redhat.com> | 2010-03-11 14:26:56 -0600 |
---|---|---|
committer | Rich Megginson <rmeggins@redhat.com> | 2010-03-12 19:51:21 -0700 |
commit | 1ef0ec98b6c91471454647e5f613d26fa015c619 (patch) | |
tree | fa7a1da28b15e074bc79307cb765ddfde9f1a300 /ldap/servers/slapd/slapi-plugin.h | |
parent | ed463407ead1f63ba26f64740a1e5cd1d79a03ee (diff) | |
download | ds-1ef0ec98b6c91471454647e5f613d26fa015c619.tar.gz ds-1ef0ec98b6c91471454647e5f613d26fa015c619.tar.xz ds-1ef0ec98b6c91471454647e5f613d26fa015c619.zip |
Bug 470684 - Pam_passthru plugin doesn't verify account activation
https://bugzilla.redhat.com/show_bug.cgi?id=470684
Resolves: bug 470684
Bug Description: Pam passthrough doesn't verify account activation
Reviewed by: rmeggins
Branch: HEAD
Fix Description: The check_account_lock() has been renamed to
slapi_check_account_lock() and moved into libslapd.so so any plugins
can use it. The account_inactivation_only parameter has been replaced
by check_password_policy. A new parameter send_result has been added
to determine whether to send LDAP results.
The pam_passthru plugin has been modified to use this function to
check account activation when the pamIDMapMethod is set to ENTRY.
The plugin will not check password policy.
Diffstat (limited to 'ldap/servers/slapd/slapi-plugin.h')
-rw-r--r-- | ldap/servers/slapd/slapi-plugin.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/ldap/servers/slapd/slapi-plugin.h b/ldap/servers/slapd/slapi-plugin.h index 5f97c055..47fc7b86 100644 --- a/ldap/servers/slapd/slapi-plugin.h +++ b/ldap/servers/slapd/slapi-plugin.h @@ -5953,6 +5953,8 @@ int slapi_set_plugin_default_config(const char *type, Slapi_Value *value); * */ int slapi_get_plugin_default_config(char *type, Slapi_ValueSet **valueset); +int slapi_check_account_lock( Slapi_PBlock *pb, Slapi_Entry *bind_target_entry, int pwresponse_req, int check_password_policy, int send_result); + #ifdef __cplusplus } #endif |