<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<div class="moz-cite-prefix">Hello Nathaniel,<br>
<br>
<blockquote>Just a remark, in is_token if the entry is
objectclass=ipaToken it returns without freeing the
'objectclass' char array.<br>
<br>
thanks<br>
thierry<br>
</blockquote>
On 09/21/2014 09:07 PM, Nathaniel McCallum wrote:<br>
</div>
<blockquote cite="mid:1411326447.3483.8.camel@redhat.com"
type="cite">
<pre wrap="">Users that can rename the token (such as admins) can also create
non-UUID token names.
<a class="moz-txt-link-freetext" href="https://fedorahosted.org/freeipa/ticket/4456">https://fedorahosted.org/freeipa/ticket/4456</a>
NOTE: this patch is an alternate approach to my patch 0065. This version
has two main advantages compared to 0065:
1. Permissions are more flexible (not tied to the admin group).
2. Enforcement occurs at the DS-level
It should also be noted that this patch does not enforce UUID
randomness, only syntax. Users can still specify a token ID so long as
it is in UUID format.
Nathaniel
</pre>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
Freeipa-devel mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Freeipa-devel@redhat.com">Freeipa-devel@redhat.com</a>
<a class="moz-txt-link-freetext" href="https://www.redhat.com/mailman/listinfo/freeipa-devel">https://www.redhat.com/mailman/listinfo/freeipa-devel</a></pre>
</blockquote>
<br>
</body>
</html>