validate mutually exclusive options in vault-add

https://fedorahosted.org/freeipa/ticket/5195 Reviewed-By: Tomas Babej <tbabej@redhat.com>
2025-02-25 18:55:28 -06:00 · 2015-08-12 11:07:22 +02:00 · 2015-08-12 11:07:22 +02:00 · 7d7ffb6252
commit 7d7ffb6252
parent 196ef09bd2
1 changed files with 12 additions and 0 deletions
--- a/ipalib/plugins/vault.py
+++ b/ipalib/plugins/vault.py
@ -597,6 +597,18 @@ class vault_add(PKQuery, Local):
        if 'public_key_file' in options:
            del options['public_key_file']

+        if vault_type != u'symmetric' and (password or password_file):
+            raise errors.MutuallyExclusiveError(
+                reason=_('Password can be specified only for '
+                         'symmetric vault')
+            )
+
+        if vault_type != u'asymmetric' and (public_key or public_key_file):
+            raise errors.MutuallyExclusiveError(
+                reason=_('Public key can be specified only for '
+                         'asymmetric vault')
+            )
+
        if self.api.env.in_server:
            backend = self.api.Backend.ldap2
        else: