From a2057618f30a3c64bdffb35a2ef3c2ba148c8a03 Mon Sep 17 00:00:00 2001 From: Pavel Březina Date: Tue, 1 Dec 2015 13:10:16 +0100 Subject: IPA SUDO: Add ipasudorule mapping Reviewed-by: Sumit Bose --- src/db/sysdb_sudo.h | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) (limited to 'src/db') diff --git a/src/db/sysdb_sudo.h b/src/db/sysdb_sudo.h index 6dd9ea7bb..cb4bcc236 100644 --- a/src/db/sysdb_sudo.h +++ b/src/db/sysdb_sudo.h @@ -46,6 +46,26 @@ #define SYSDB_SUDO_CACHE_AT_NOTAFTER "sudoNotAfter" #define SYSDB_SUDO_CACHE_AT_ORDER "sudoOrder" +/* sysdb ipa attributes */ +#define SYSDB_IPA_SUDORULE_OC "ipasudorule" +#define SYSDB_IPA_SUDORULE_ENABLED "ipaEnabledFlag" +#define SYSDB_IPA_SUDORULE_OPTION "ipaSudoOpt" +#define SYSDB_IPA_SUDORULE_RUNASUSER "ipaSudoRunAs" +#define SYSDB_IPA_SUDORULE_RUNASGROUP "ipaSudoRunAsGroup" +#define SYSDB_IPA_SUDORULE_ORIGCMD "originalMemberCommand" +#define SYSDB_IPA_SUDORULE_ALLOWCMD "memberAllowCmd" +#define SYSDB_IPA_SUDORULE_DENYCMD "memberDenyCmd" +#define SYSDB_IPA_SUDORULE_HOST "memberHost" +#define SYSDB_IPA_SUDORULE_USER "memberUser" +#define SYSDB_IPA_SUDORULE_NOTAFTER "sudoNotAfter" +#define SYSDB_IPA_SUDORULE_NOTBEFORE "sudoNotBefore" +#define SYSDB_IPA_SUDORULE_SUDOORDER "sudoOrder" +#define SYSDB_IPA_SUDORULE_CMDCATEGORY "cmdCategory" +#define SYSDB_IPA_SUDORULE_HOSTCATEGORY "hostCategory" +#define SYSDB_IPA_SUDORULE_USERCATEGORY "userCategory" +#define SYSDB_IPA_SUDORULE_RUNASUSERCATEGORY "ipaSudoRunAsUserCategory" +#define SYSDB_IPA_SUDORULE_RUNASGROUPCATEGORY "ipaSudoRunAsGroupCategory" + /* When constructing a sysdb filter, OR these values to include.. */ #define SYSDB_SUDO_FILTER_NONE 0x00 /* no additional filter */ #define SYSDB_SUDO_FILTER_USERNAME 0x01 /* username */ -- cgit