IPA SUDO: choose between IPA and LDAP schema

This patch implement logic to choose between IPA and LDAP schema. From this point the sudo support in IPA is removed if sudo search base is not set specifically, it will be brought back in furter patches. Resolves: https://fedorahosted.org/sssd/ticket/1108 Reviewed-by: Sumit Bose <sbose@redhat.com>
author: Pavel Březina <pbrezina@redhat.com> 2015-11-25 12:32:25 +0100
committer: Jakub Hrozek <jhrozek@redhat.com> 2016-01-19 14:33:21 +0100
commit: 0f04241fc90f134af0272eb0999e75fb6749b595 (patch)
tree: 6f455b73af4950f45dde89e60ca55a94895805c4 /src/providers/ipa/ipa_common.c
parent: a6dd4a6c55773e81490dcafd61d4b9782705e9bf (diff)
download: sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.gz
sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.xz
sssd-0f04241fc90f134af0272eb0999e75fb6749b595.zip
1 files changed, 0 insertions, 38 deletions
diff --git a/src/providers/ipa/ipa_common.c b/src/providers/ipa/ipa_common.c
index 2940a42cc..90be42751 100644
--- a/src/providers/ipa/ipa_common.c
+++ b/src/providers/ipa/ipa_common.c
@@ -311,44 +311,6 @@ int ipa_get_id_options(struct ipa_options *ipa_opts,
     if (ret != EOK) goto done;
 
     if (NULL == dp_opt_get_string(ipa_opts->id->basic,
-                                  SDAP_SUDO_SEARCH_BASE)) {
-#if 0
-        ret = dp_opt_set_string(ipa_opts->id->basic, SDAP_SUDO_SEARCH_BASE,
-                                dp_opt_get_string(ipa_opts->id->basic,
-                                                  SDAP_SEARCH_BASE));
-        if (ret != EOK) {
-            goto done;
-        }
-#else
-        /* We don't yet have support for the representation
-         * of sudo in IPA. For now, we need to point at the
-         * compat tree
-         */
-        value = talloc_asprintf(tmpctx, "ou=SUDOers,%s", basedn);
-        if (!value) {
-            ret = ENOMEM;
-            goto done;
-        }
-
-        ret = dp_opt_set_string(ipa_opts->id->basic,
-                                SDAP_SUDO_SEARCH_BASE,
-                                 value);
-        if (ret != EOK) {
-            goto done;
-        }
-#endif
-
-        DEBUG(SSSDBG_TRACE_FUNC, "Option %s set to %s\n",
-                  ipa_opts->id->basic[SDAP_SUDO_SEARCH_BASE].opt_name,
-                  dp_opt_get_string(ipa_opts->id->basic,
-                                    SDAP_SUDO_SEARCH_BASE));
-    }
-    ret = sdap_parse_search_base(ipa_opts->id, ipa_opts->id->basic,
-                                 SDAP_SUDO_SEARCH_BASE,
-                                 &ipa_opts->id->sdom->sudo_search_bases);
-    if (ret != EOK) goto done;
-
-    if (NULL == dp_opt_get_string(ipa_opts->id->basic,
                                   SDAP_NETGROUP_SEARCH_BASE)) {
         value = talloc_asprintf(tmpctx, "cn=ng,cn=alt,%s", basedn);
         if (!value) {
author	Pavel Březina <pbrezina@redhat.com>	2015-11-25 12:32:25 +0100
committer	Jakub Hrozek <jhrozek@redhat.com>	2016-01-19 14:33:21 +0100
commit	0f04241fc90f134af0272eb0999e75fb6749b595 (patch)
tree	6f455b73af4950f45dde89e60ca55a94895805c4 /src/providers/ipa/ipa_common.c
parent	a6dd4a6c55773e81490dcafd61d4b9782705e9bf (diff)
download	sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.gz sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.xz sssd-0f04241fc90f134af0272eb0999e75fb6749b595.zip