IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-28 18:01:23 -06:00
Code Issues Packages Projects Releases Wiki Activity
9cc0754b71
freeipa/ipalib
History
Rob Crittenden 9cc0754b71 Add option to limit the attributes allowed in an entry. 
Kerberos ticket policy can update policy in a user entry. This allowed
set/addattr to be used to modify attributes outside of the ticket policy
perview, also bypassing all validation/normalization. Likewise the
ticket policy was updatable by the user plugin bypassing all validation.

Add two new LDAPObject values to control this behavior:

limit_object_classes: only attributes in these are allowed
disallow_object_classes: attributes in these are disallowed

By default both of these lists are empty so are skipped.

ticket 744
2011-05-27 13:51:37 -04:00
..
plugins Add option to limit the attributes allowed in an entry. 2011-05-27 13:51:37 -04:00
__init__.py Fix translatable strings in ipalib plugins. 2011-03-01 10:31:40 -05:00
aci.py Fix uninitialized attributes. 2011-04-21 10:41:29 +02:00
backend.py Fix lint false positives. 2011-04-13 15:58:45 +02:00
base.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
cli.py Assume ipa help for plugins. 2011-05-13 13:25:34 -04:00
compat.py Fix lint false positives. 2011-04-13 15:58:45 +02:00
config.py Don't perform some API self-tests in production mode for performance reasons 2011-01-28 18:49:17 -05:00
constants.py Add support for tracking and counting entitlements 2011-02-02 10:00:38 -05:00
crud.py Add flags to enforce asking for object attribute 2011-01-26 09:29:39 -05:00
encoder.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
errors.py Revert "Set hard limit on number of commands in batch request to 256." 2011-03-01 17:35:56 -05:00
frontend.py Fix regressions introduced by pylint false positive fixes. 2011-05-11 16:50:01 +02:00
output.py Display the entries that failed when deleting with --continue. 2011-01-10 10:32:10 -05:00
parameters.py Fix uninitialized attributes. 2011-04-21 10:41:29 +02:00
pkcs10.py Fix assorted bugs found by pylint 2011-01-25 14:01:36 -05:00
plugable.py Final i18n unit test fixes. 2011-03-01 10:31:43 -05:00
request.py Remove deprecated i18n code from ipalib/request and all references to it. 2011-03-01 10:31:36 -05:00
rpc.py Test for forwarded Kerberos credentials cache in wsgi code. 2011-05-18 09:35:04 +02:00
text.py Fix regressions introduced by pylint false positive fixes. 2011-05-11 16:50:01 +02:00
util.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00
x509.py Change FreeIPA license to GPLv3+ 2010-12-20 17:19:53 -05:00