[Freeipa-devel] [PATCH] handle pam acct_mgmt, setcred and open/close_session before user bind in ldap backend
Stephen Gallagher
sgallagh at redhat.com
Mon Apr 27 11:39:32 UTC 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Simo Sorce wrote:
> On Fri, 2009-04-24 at 11:21 +0200, Sumit Bose wrote:
>> this patch moves the response to pam_acct_mgmt, pam_setcred,
>> pam_open_session and pam_close_session before the bind request with
>> user
>> dn. For the request mentioned above we do not send any credentials to
>> the backend and will fail because the user bind fails. I'm wondering
>> why
>> I first see this when testing with rawhide1.fedoraproject.org, because
>> it seemed to work with my local openLDAP server.
>>
>> This patch is needed to make the PAM_LDAP_Native test work.
>
> ack
>
> Simo.
>
> _______________________________________________
> Freeipa-devel mailing list
> Freeipa-devel at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-devel
Ack and pushed to master.
- --
Stephen Gallagher
RHCE 804006346421761
Looking to carve out IT costs?
www.redhat.com/carveoutcosts/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iEYEARECAAYFAkn1mXQACgkQeiVVYja6o6NP2QCgsFH3gpCKb19MMua4qXvg91HY
9EAAniNXBzBviMejYEJO1X8WPOKqKiF/
=RBpj
-----END PGP SIGNATURE-----
More information about the Freeipa-devel
mailing list