IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2024-12-26 08:51:50 -06:00
Code Issues Packages Projects Releases Wiki Activity
acb2ca47d6
freeipa/daemons/ipa-slapi-plugins
History
Tomas Babej 5d78cdf809 ipa-pwd-extop: Deny LDAP binds for accounts with expired principals 
Adds a check for krbprincipalexpiration attribute to pre_bind operation
in ipa-pwd-extop dirsrv plugin. If the principal is expired, auth is
denied and LDAP_UNWILLING_TO_PERFORM along with the error message is
sent back to the client. Since krbprincipalexpiration attribute is not
mandatory, if there is no value set, the check is passed.

https://fedorahosted.org/freeipa/ticket/3305

Reviewed-By: Simo Sorce <simo@redhat.com>
Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com>
2014-05-05 18:50:01 +03:00
..
common include <stdint.h> for uintptr_t 2011-09-22 09:42:11 -04:00
ipa-cldap CLDAP: add unit tests for make_netbios_name 2014-01-23 18:14:23 +01:00
ipa-dns Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-enrollment Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-extdom-extop extdom: do not return results from the wrong domain 2014-03-25 14:03:05 +01:00
ipa-lockout ipa-lockout: do not fail when default realm cannot be read 2014-02-04 12:44:45 +01:00
ipa-modrdn Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-otp-lasttoken Add OTP last token plugin 2014-02-21 10:26:02 +01:00
ipa-pwd-extop ipa-pwd-extop: Deny LDAP binds for accounts with expired principals 2014-05-05 18:50:01 +03:00
ipa-range-check ipa_range_check: Change range_check return values from int to range_check_result_t enum 2014-04-23 13:18:41 +02:00
ipa-sidgen Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-uuid Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-version Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
ipa-winsync Remove CFLAGS duplication. 2013-12-06 14:44:41 +01:00
libotp libotp: do not call internal search for NULL dn 2014-02-21 10:27:34 +01:00
Makefile.am Add OTP last token plugin 2014-02-21 10:26:02 +01:00
README Mass tree reorganization for IPAv2. To view previous history of files use: 2009-02-03 15:27:14 -05:00

README