lslebodn / SSSD / sssd

Forked from SSSD/sssd 7 years ago
Clone
Source Code
GIT

56f015e IPA: Remove sshPublicKey attribute when it's not set

1 file Authored by fidencio 6 years ago, Committed by jhrozek 6 years ago,
raw patch tree parent
1 file changed. 13 lines added. 2 lines removed.
src/providers/ipa/ipa_s2n_exop.c
file modified
+13 -2 
    IPA: Remove sshPublicKey attribute when it's not set
    
    Similary to what has been for the SSSD's server, we have to explicitly
    remove the 'sshPublicKey' attribute from an override in case it's not
    set, otherwise we may end up in a situation where a ssh key is removed
    from IPA but it'll still be present in the SSSD's client cache, allowing
    then users to ssh to a machine even having a key that has already been
    removed from IPA.
    
    Related: https://pagure.io/SSSD/sssd/issue/3602
    
    Signed-off-by: Fabiano FidĂȘncio <fidencio@redhat.com>
    
    Reviewed-by: Sumit Bose <sbose@redhat.com>
file modified
+13 -2
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.