diff options
author | Pavel Březina <pbrezina@redhat.com> | 2015-11-25 12:32:25 +0100 |
---|---|---|
committer | Jakub Hrozek <jhrozek@redhat.com> | 2016-01-19 14:33:21 +0100 |
commit | 0f04241fc90f134af0272eb0999e75fb6749b595 (patch) | |
tree | 6f455b73af4950f45dde89e60ca55a94895805c4 /src/providers/ipa/ipa_common.c | |
parent | a6dd4a6c55773e81490dcafd61d4b9782705e9bf (diff) | |
download | sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.gz sssd-0f04241fc90f134af0272eb0999e75fb6749b595.tar.xz sssd-0f04241fc90f134af0272eb0999e75fb6749b595.zip |
IPA SUDO: choose between IPA and LDAP schema
This patch implement logic to choose between IPA and LDAP schema. From
this point the sudo support in IPA is removed if sudo search base is
not set specifically, it will be brought back in furter patches.
Resolves:
https://fedorahosted.org/sssd/ticket/1108
Reviewed-by: Sumit Bose <sbose@redhat.com>
Diffstat (limited to 'src/providers/ipa/ipa_common.c')
-rw-r--r-- | src/providers/ipa/ipa_common.c | 38 |
1 files changed, 0 insertions, 38 deletions
diff --git a/src/providers/ipa/ipa_common.c b/src/providers/ipa/ipa_common.c index 2940a42cc..90be42751 100644 --- a/src/providers/ipa/ipa_common.c +++ b/src/providers/ipa/ipa_common.c @@ -311,44 +311,6 @@ int ipa_get_id_options(struct ipa_options *ipa_opts, if (ret != EOK) goto done; if (NULL == dp_opt_get_string(ipa_opts->id->basic, - SDAP_SUDO_SEARCH_BASE)) { -#if 0 - ret = dp_opt_set_string(ipa_opts->id->basic, SDAP_SUDO_SEARCH_BASE, - dp_opt_get_string(ipa_opts->id->basic, - SDAP_SEARCH_BASE)); - if (ret != EOK) { - goto done; - } -#else - /* We don't yet have support for the representation - * of sudo in IPA. For now, we need to point at the - * compat tree - */ - value = talloc_asprintf(tmpctx, "ou=SUDOers,%s", basedn); - if (!value) { - ret = ENOMEM; - goto done; - } - - ret = dp_opt_set_string(ipa_opts->id->basic, - SDAP_SUDO_SEARCH_BASE, - value); - if (ret != EOK) { - goto done; - } -#endif - - DEBUG(SSSDBG_TRACE_FUNC, "Option %s set to %s\n", - ipa_opts->id->basic[SDAP_SUDO_SEARCH_BASE].opt_name, - dp_opt_get_string(ipa_opts->id->basic, - SDAP_SUDO_SEARCH_BASE)); - } - ret = sdap_parse_search_base(ipa_opts->id, ipa_opts->id->basic, - SDAP_SUDO_SEARCH_BASE, - &ipa_opts->id->sdom->sudo_search_bases); - if (ret != EOK) goto done; - - if (NULL == dp_opt_get_string(ipa_opts->id->basic, SDAP_NETGROUP_SEARCH_BASE)) { value = talloc_asprintf(tmpctx, "cn=ng,cn=alt,%s", basedn); if (!value) { |