diff options
author | Simo Sorce <simo@redhat.com> | 2016-08-19 09:23:55 -0400 |
---|---|---|
committer | Jan Cholasta <jcholast@redhat.com> | 2017-02-15 07:13:37 +0100 |
commit | c894ebefc5c4c4c7ea340d6ddc4cd3c081917e4a (patch) | |
tree | 8511e93ca9e8e1df6c504b8f18d2fec733686d26 /init | |
parent | 11ef2cacbf2ebb67f80a0cf4a3e7b39da700188b (diff) | |
download | freeipa-c894ebefc5c4c4c7ea340d6ddc4cd3c081917e4a.tar.gz freeipa-c894ebefc5c4c4c7ea340d6ddc4cd3c081917e4a.tar.xz freeipa-c894ebefc5c4c4c7ea340d6ddc4cd3c081917e4a.zip |
Change session handling
Stop using memcache, use mod_auth_gssapi filesystem based ccaches.
Remove custom session handling, use mod_auth_gssapi and mod_session to
establish and keep a session cookie.
Add loopback to mod_auth_gssapi to do form absed auth and pass back a
valid session cookie.
And now that we do not remove ccaches files to move them to the
memcache, we can avoid the risk of pollutting the filesystem by keeping
a common ccache file for all instances of the same user.
https://fedorahosted.org/freeipa/ticket/5959
Signed-off-by: Simo Sorce <simo@redhat.com>
Reviewed-By: Jan Cholasta <jcholast@redhat.com>
Diffstat (limited to 'init')
-rw-r--r-- | init/Makefile.am | 6 | ||||
-rw-r--r-- | init/ipa_memcached.in | 5 | ||||
-rw-r--r-- | init/systemd/Makefile.am | 2 | ||||
-rw-r--r-- | init/systemd/ipa_memcached.service.in | 12 | ||||
-rw-r--r-- | init/tmpfilesd/ipa.conf.in | 1 |
5 files changed, 0 insertions, 26 deletions
diff --git a/init/Makefile.am b/init/Makefile.am index 47f844ac1..8f4d1d0a8 100644 --- a/init/Makefile.am +++ b/init/Makefile.am @@ -8,13 +8,7 @@ dist_sysconfenv_DATA = \ ipa-dnskeysyncd \ ipa-ods-exporter -nodist_sysconfenv_DATA = \ - ipa_memcached - CLEANFILES = $(nodist_sysconfenv_DATA) -dist_noinst_DATA = \ - ipa_memcached.in - %: %.in Makefile sed -e 's|@localstatedir[@]|$(localstatedir)|g' '$(srcdir)/$@.in' >$@ diff --git a/init/ipa_memcached.in b/init/ipa_memcached.in deleted file mode 100644 index 56701383d..000000000 --- a/init/ipa_memcached.in +++ /dev/null @@ -1,5 +0,0 @@ -SOCKET_PATH=@localstatedir@/run/ipa_memcached/ipa_memcached -USER=apache -MAXCONN=1024 -CACHESIZE=64 -OPTIONS= diff --git a/init/systemd/Makefile.am b/init/systemd/Makefile.am index e978fe974..325e85748 100644 --- a/init/systemd/Makefile.am +++ b/init/systemd/Makefile.am @@ -4,12 +4,10 @@ AUTOMAKE_OPTIONS = 1.7 dist_noinst_DATA = \ ipa-custodia.service.in \ - ipa_memcached.service.in \ ipa.service.in systemdsystemunit_DATA = \ ipa-custodia.service \ - ipa_memcached.service \ ipa.service CLEANFILES = $(systemdsystemunit_DATA) diff --git a/init/systemd/ipa_memcached.service.in b/init/systemd/ipa_memcached.service.in deleted file mode 100644 index 0e163203a..000000000 --- a/init/systemd/ipa_memcached.service.in +++ /dev/null @@ -1,12 +0,0 @@ -[Unit] -Description=IPA memcached daemon, increases IPA server performance -After=network.target - -[Service] -Type=forking -EnvironmentFile=@sysconfenvdir@/ipa_memcached -PIDFile=@localstatedir@/run/ipa_memcached/ipa_memcached.pid -ExecStart=@bindir@/memcached -d -s $SOCKET_PATH -u $USER -m $CACHESIZE -c $MAXCONN -P @localstatedir@/run/ipa_memcached/ipa_memcached.pid $OPTIONS - -[Install] -WantedBy=multi-user.target diff --git a/init/tmpfilesd/ipa.conf.in b/init/tmpfilesd/ipa.conf.in index 4954000a3..5ac96f20f 100644 --- a/init/tmpfilesd/ipa.conf.in +++ b/init/tmpfilesd/ipa.conf.in @@ -1,4 +1,3 @@ -d @localstatedir@/run/ipa_memcached 0700 apache apache d @localstatedir@/run/ipa 0700 root root d @localstatedir@/run/httpd/ipa 0700 apache apache d @localstatedir@/run/httpd/ipa/clientcaches 0700 apache apache |