Issue #2085: HBAC test should be able to accept test requests without source host specified - freeipa

freeipa

#2085 HBAC test should be able to accept test requests without source host specified

Closed: Fixed None Opened 12 years ago by abbra.

SSSD is changing its default policy to not take source host into account when checking HBAC rules. HBAC test plugin in FreeIPA needs to handle this case as well.

Making source host for HBAC test optional will constitute an API change. This API change is not going to be a problem for UI as there is no Web UI for HBAC test yet, but for the command line client, though all it means is that the client will always pass the source host (even empty, via --srchost=*) and server needs to be prepared to accept empty string source host as opposed to source host option missing (optional).

abbra commented 12 years ago

I'll put it into December.

mkosek commented 12 years ago

master: 0e037f2[[BR]]
ipa-2-2: 3dc5be6

Metadata Update from @abbra:
- Issue assigned to ohamada
- Issue set to the milestone: FreeIPA 2.2 Core Effort - 2012/01

7 years ago

Metadata

Assignee

ohamada

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 2.2 Core Effort - 2012/01

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

tester

None

changelog

None

design

None

freeipa

Source Code

#2085 HBAC test should be able to accept test requests without source host specified Closed: Fixed None Opened 12 years ago by abbra.

Metadata

#2085 HBAC test should be able to accept test requests without source host specified

Closed: Fixed None Opened 12 years ago by abbra.