diff options
author | David Kupka <dkupka@redhat.com> | 2016-08-25 11:53:39 +0200 |
---|---|---|
committer | Jan Cholasta <jcholast@redhat.com> | 2016-08-29 10:45:12 +0200 |
commit | 386fdc1d77affc897b923a58602a9f14325216c6 (patch) | |
tree | 7c5d0db02a2d2092b709a3c26d92f9f33ce7f9e7 | |
parent | 6581389ac3ac1c6a0dbeb18d80e3fef69b158cc8 (diff) | |
download | freeipa-386fdc1d77affc897b923a58602a9f14325216c6.tar.gz freeipa-386fdc1d77affc897b923a58602a9f14325216c6.tar.xz freeipa-386fdc1d77affc897b923a58602a9f14325216c6.zip |
otptoken, permission: Convert custom type parameters on server
Force client to send the value of ipatokenotpkey and ipapermlocation as
entered by user.
https://fedorahosted.org/freeipa/ticket/6247
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
-rw-r--r-- | ipaserver/plugins/otptoken.py | 2 | ||||
-rw-r--r-- | ipaserver/plugins/permission.py | 2 |
2 files changed, 4 insertions, 0 deletions
diff --git a/ipaserver/plugins/otptoken.py b/ipaserver/plugins/otptoken.py index f695678ab..a1930c329 100644 --- a/ipaserver/plugins/otptoken.py +++ b/ipaserver/plugins/otptoken.py @@ -214,6 +214,8 @@ class otptoken(LDAPObject): doc=_('Token secret (Base32; default: random)'), default_from=lambda: os.urandom(KEY_LENGTH), autofill=True, + # force server-side conversion + normalizer=lambda x: x, flags=('no_display', 'no_update', 'no_search'), ), StrEnum('ipatokenotpalgorithm?', diff --git a/ipaserver/plugins/permission.py b/ipaserver/plugins/permission.py index 830773ae7..0c040ce87 100644 --- a/ipaserver/plugins/permission.py +++ b/ipaserver/plugins/permission.py @@ -283,6 +283,8 @@ class permission(baseldap.LDAPObject): cli_name='subtree', label=_('Subtree'), doc=_('Subtree to apply permissions to'), + # force server-side conversion + normalizer=lambda x: x, flags={'ask_create'}, ), Str( |