diff options
author | Pavel Březina <pbrezina@redhat.com> | 2016-02-23 11:02:42 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-03-01 16:38:52 +0100 |
commit | 659232f194f83ec7c450ce89c3fd41e4e74409f2 (patch) | |
tree | 1308a50c0411f0c49e90f67a3018eb9531086197 /src/db/sysdb.h | |
parent | 012d334cec221d8abf86dffbbaf9649ec0a4b585 (diff) | |
download | sssd-659232f194f83ec7c450ce89c3fd41e4e74409f2.tar.gz sssd-659232f194f83ec7c450ce89c3fd41e4e74409f2.tar.xz sssd-659232f194f83ec7c450ce89c3fd41e4e74409f2.zip |
remove user certificate if not found on the server
If the user is not found by cert lookup when the user is already
cached, two things may happen:
1) cert was removed from the user object
2) user was removed
Instead of issuing another cert lookup we will just remove cert
attribute from the cache not touching the expiration timestamp so
the user may be updated later when needed.
Resolves:
https://fedorahosted.org/sssd/ticket/2934
Reviewed-by: Sumit Bose <sbose@redhat.com>
Diffstat (limited to 'src/db/sysdb.h')
-rw-r--r-- | src/db/sysdb.h | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/db/sysdb.h b/src/db/sysdb.h index 95a908676..bb8ca08b1 100644 --- a/src/db/sysdb.h +++ b/src/db/sysdb.h @@ -1155,7 +1155,8 @@ errno_t sysdb_search_user_by_cert(TALLOC_CTX *mem_ctx, const char *cert, struct ldb_result **res); - +errno_t sysdb_remove_cert(struct sss_domain_info *domain, + const char *cert); /* === Functions related to GPOs === */ |