freeipa

mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00

Files

Nathaniel McCallum 5d51ae50a5 ipa-kdb: Add OTP support

If OTP is enabled for a user, then:
  1. Long-term keys are not provided to KDB
  2. The user string 'otp' is defined to KDB

Since it is not secure to send radius configuration information
over krb5 user strings, we simply set the string to a known default
('[]') which enables the default configuration in the KDC.

https://fedorahosted.org/freeipa/ticket/3561
http://freeipa.org/page/V3/OTP

2013-05-17 09:30:51 +02:00

tests

Add unit test for get_authz_data_types()

2013-03-08 10:46:00 +01:00

ipa_kdb_audit_as.c

Add support for disabling KDC writes

2012-06-06 22:12:22 -04:00

ipa_kdb_common.c

ipa-kdb: fix retry logic in ipadb_deref_search

2013-02-14 10:09:52 +01:00

ipa_kdb_delegation.c

ipa-kdb: fix delegation acl check

2012-02-28 13:03:22 -05:00

ipa_kdb_mkey.c

ipa-kdb: Get/Store Master Key directly from LDAP

2011-08-26 08:24:49 -04:00

ipa_kdb_mspac.c

ipa-kdb: add PAC only if requested

2013-03-08 10:46:00 +01:00

ipa_kdb_passwords.c

Prevent integer overflow when setting krbPasswordExpiration

2013-02-08 15:54:21 +01:00

ipa_kdb_principals.c

ipa-kdb: Add OTP support

2013-05-17 09:30:51 +02:00

ipa_kdb_pwdpolicy.c

Fix failure count interval attribute name in query for password policy.

2012-03-29 00:52:25 -04:00

ipa_kdb.c

ipa-kdb: Add OTP support

2013-05-17 09:30:51 +02:00

ipa_kdb.exports

ipa-kdb: add exports file

2011-08-26 08:24:49 -04:00

ipa_kdb.h

ipa-kdb: Add OTP support

2013-05-17 09:30:51 +02:00

Makefile.am

Remove build warnings

2013-03-29 08:59:36 +01:00

README

ipa-kdb: Initial plugin skeleton

2011-08-26 08:24:49 -04:00

README.s4u2proxy.txt

ipa-kdb: Add delgation access control support

2011-12-08 17:18:10 -05:00

README

This is the ipa krb5kdc database backend.