From 40c60c89efb9723edbe4394080b1f5c080cabacf Mon Sep 17 00:00:00 2001 From: Rob Crittenden Date: Aug 24 2011 19:22:14 +0000 Subject: Add additional pam ftp services to HBAC, and a ftp HBAC service group This adds proftpd, pure-ftpd, vsftpd and gssftp. https://fedorahosted.org/freeipa/ticket/1703 --- diff --git a/install/updates/50-hbacservice.update b/install/updates/50-hbacservice.update new file mode 100644 index 0000000..22c3b64 --- /dev/null +++ b/install/updates/50-hbacservice.update @@ -0,0 +1,43 @@ +dn: cn=vsftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:objectclass: ipahbacservice +default:objectclass: ipaobject +default:cn: vsftpd +default:description: vsftpd +default:ipauniqueid:autogenerate + +dn: cn=proftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:objectclass: ipahbacservice +default:objectclass: ipaobject +default:cn: proftpd +default:description: proftpd +default:ipauniqueid:autogenerate + +dn: cn=pure-ftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:objectclass: ipahbacservice +default:objectclass: ipaobject +default:cn: pure-ftpd +default:description: pure-ftpd +default:ipauniqueid:autogenerate + +dn: cn=gssftp,cn=hbacservices,cn=hbac,$SUFFIX +default:objectclass: ipahbacservice +default:objectclass: ipaobject +default:cn: gssftp +default:description: gssftp +default:ipauniqueid:autogenerate + +dn: cn=ftp,cn=hbacservicegroups,cn=hbac,$SUFFIX +default:objectClass: ipaobject +default:objectClass: ipahbacservicegroup +default:objectClass: nestedGroup +default:objectClass: groupOfNames +default:objectClass: top +default:cn: ftp +default:ipauniqueid:autogenerate +default:description: Default group of ftp related services +default:member: cn=ftp,cn=hbacservices,cn=hbac,$SUFFIX +default:member: cn=proftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:member: cn=pure-ftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:member: cn=vsftpd,cn=hbacservices,cn=hbac,$SUFFIX +default:member: cn=gssftp,cn=hbacservices,cn=hbac,$SUFFIX + diff --git a/install/updates/Makefile.am b/install/updates/Makefile.am index a50adca..cf29e3f 100644 --- a/install/updates/Makefile.am +++ b/install/updates/Makefile.am @@ -21,6 +21,7 @@ app_DATA = \ 45-roles.update \ 50-lockout-policy.update \ 50-groupuuid.update \ + 50-hbacservice.update \ 50-suppress-upg.update \ $(NULL)