[Freeipa-devel] [PATCH] Password vault
Jan Cholasta
jcholast at redhat.com
Wed May 13 09:09:37 UTC 2015
Dne 12.5.2015 v 12:52 Endi Sukma Dewata napsal(a):
> Please take a look at the attached patch (#353-9). It obsoletes all
> previous patches. See comments below.
>
> On 4/20/2015 1:12 AM, Jan Cholasta wrote:
>>> I'm planning to merge the vault and vault container object and use the
>>> vault type attribute to distinguish between the two. See more discussion
>>> about that below.
>>
>> OK.
>
> The vault container plugin has been removed instead of merged (see
> explanation below). Internally the vaults are still stored in built-in
> containers in the DS, but there won't be an interface to manage them.
> The following containers are available for use: private, shared, and
> services, but they are flat, not hierarchical.
To speed up the review, I have amended your patch with code and coding
style fixes (attached), please review my changes.
Question: Services in IPA are identified by Kerberos principal. Why are
service vaults identified by hostname alone?
--
Jan Cholasta
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Added-vault-plugin.patch
Type: text/x-patch
Size: 27177 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20150513/bf5bc5b0/attachment.bin>
More information about the Freeipa-devel
mailing list