diff options
author | Jakub Hrozek <jhrozek@redhat.com> | 2014-01-02 17:23:08 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2014-05-13 22:24:09 +0200 |
commit | 770dc892f867639f36f84455d65be6287935a529 (patch) | |
tree | 4b847d89ec0cb984140187bee14bf409066f0ec5 /src/config/etc/sssd.api.conf | |
parent | 60cab26b12df9a2153823972cde0c38ca86e01b9 (diff) | |
download | sssd-770dc892f867639f36f84455d65be6287935a529.tar.gz sssd-770dc892f867639f36f84455d65be6287935a529.tar.xz sssd-770dc892f867639f36f84455d65be6287935a529.zip |
IFP: Per-attribute ACL for users
Introduces a new option called user_attributes that allows to specify
which user attributes are allowed to be queried from the IFP responder.
By default only the default POSIX set is allowed, this option allows to
either add other attributes (+attrname) or remove them from the default
set (-attrname).
Reviewed-by: Pavel Březina <pbrezina@redhat.com>
Diffstat (limited to 'src/config/etc/sssd.api.conf')
-rw-r--r-- | src/config/etc/sssd.api.conf | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/config/etc/sssd.api.conf b/src/config/etc/sssd.api.conf index a5cb62f45..c7c1232c3 100644 --- a/src/config/etc/sssd.api.conf +++ b/src/config/etc/sssd.api.conf @@ -70,6 +70,7 @@ ssh_known_hosts_timeout = int, None, false [pac] # PAC responder allowed_uids = str, None, false +user_attributes = str, None, false [ifp] # InfoPipe responder |