Alexander Bokovoy fc3834ca46 Resolve external members from trusted domain via Global Catalog ... A sequence is following: 1. Match external member against existing trusted domain 2. Find trusted domain's domain controller and preferred GC hosts 3. Fetch trusted domain account auth info 4. Set up ccache in /var/run/ipa_memcached/krb5cc_TD<domain> with principal ourdomain$@trusted.domain 5. Do LDAP SASL interactive bind using the ccache 6. Search for the member's SID 7. Decode SID 8. Replace external member name by SID		2012-11-01 15:46:58 -04:00
..
__init__.py	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
aci.py	Use DN objects instead of strings	2012-08-12 16:23:24 -04:00
automember.py	Fix various typos.	2012-09-18 08:45:28 +02:00
automount.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
baseldap.py	Do not produce unindexed search on every DEL command	2012-10-01 22:37:59 -04:00
batch.py	Fix batch command error reporting	2012-07-11 10:49:02 +02:00
cert.py	Fix requesting certificates that contain subject altnames.	2012-10-19 16:16:06 +02:00
config.py	Only use service PAC type as an override	2012-10-03 08:53:41 +02:00
delegation.py	Explicitly filter options that permission-{add,mod} passes to aci-{add,mod}	2012-07-02 08:31:03 +02:00
dns.py	Use custom zonemgr for reverse zones	2012-09-26 13:44:11 +02:00
entitle.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
group.py	Resolve external members from trusted domain via Global Catalog	2012-11-01 15:46:58 -04:00
hbacrule.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
hbacsvc.py	ticket 1669 - improve i18n docstring extraction	2011-08-24 23:13:16 -04:00
hbacsvcgroup.py	ticket 1669 - improve i18n docstring extraction	2011-08-24 23:13:16 -04:00
hbactest.py	Fix name error in hbactest	2012-04-19 15:22:49 +02:00
host.py	Use OpenSSH-style public keys as the preferred format of SSH public keys.	2012-09-06 19:11:57 -04:00
hostgroup.py	Use DN objects instead of strings	2012-08-12 16:23:24 -04:00
idrange.py	Warn about DNA plugin configuration when working with local ID ranges	2012-10-17 12:08:15 +02:00
internal.py	Fixed incorrect link to browser config after session expiration	2012-10-24 09:17:26 +02:00
kerberos.py	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00
krbtpolicy.py	Use DN objects instead of strings	2012-08-12 16:23:24 -04:00
migration.py	Use DN objects instead of strings	2012-08-12 16:23:24 -04:00
misc.py	ticket 1669 - improve i18n docstring extraction	2011-08-24 23:13:16 -04:00
netgroup.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
passwd.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
permission.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
ping.py	Document the ping plugin.	2012-01-12 05:46:09 -05:00
pkinit.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
privilege.py	Removal of memberofindirect_permissons from privileges	2012-04-09 22:12:39 -04:00
pwpolicy.py	Sort policies numerically in pwpolicy-find	2012-09-03 21:47:21 -04:00
role.py	Only apply validation rules when adding and updating.	2012-02-29 18:00:45 -05:00
selfservice.py	Explicitly filter options that permission-{add,mod} passes to aci-{add,mod}	2012-07-02 08:31:03 +02:00
selinuxusermap.py	Make sure selinuxusemap behaves consistently to HBAC rule	2012-09-12 16:13:17 +02:00
service.py	Only use service PAC type as an override	2012-10-03 08:53:41 +02:00
sudocmd.py	Fix sudo help and summaries	2011-08-29 21:26:23 -04:00
sudocmdgroup.py	Fix sudo help and summaries	2011-08-29 21:26:23 -04:00
sudorule.py	Fix various typos.	2012-09-18 08:45:28 +02:00
trust.py	Resolve external members from trusted domain via Global Catalog	2012-11-01 15:46:58 -04:00
user.py	Improve user addition to default group in user-add	2012-10-03 09:39:15 +02:00
virtual.py	Internationalization for public errors	2012-09-03 18:16:12 +02:00
xmlclient.py	Change FreeIPA license to GPLv3+	2010-12-20 17:19:53 -05:00