[Freeipa-devel] [RFE] Support for automember rebuild membership
Ana Krivokapic
akrivoka at redhat.com
Fri Sep 20 14:48:59 UTC 2013
On 09/20/2013 04:25 PM, JR Aquino wrote:
> Great work on this.
>
> I've longed to revisit my code and provide a way to refresh/update.
>
> I think it got left off with rich and Nathan as something that should be a 389 plugin mod.
>
> Thanks for working on this!
>
> "You cannot hope to secure that which you do not understand"
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> Jr Aquino
> Sr. Information Security Specialist, Technical Operations
> Sans: GXPN, GCIH, GWAPT
> T: +1 805 690 3478 | M: +1 805 717 0365 | F: +1 805 403 9399
> Jr.Aquino at citrix.com
>
> Powering mobile workstyles and cloud services
>
>> On Sep 20, 2013, at 3:37 AM, "Ana Krivokapic" <akrivoka at redhat.com> wrote:
>>
>>> On 09/19/2013 07:34 PM, JR Aquino wrote:
>>> Does the rebuild support the notion of members belonging to multiple groups via automember rules?
>> Yes, all memberships are rebuilt.
>>
>>> "You cannot hope to secure that which you do not first understand"
>>> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>>> Jr Aquino | Sr. Information Security Specialist
>>> GXPN | GIAC Exploit Researcher and Advanced Penetration Tester
>>> GCIH | GIAC Certified Incident Handler
>>> GWAPT | GIAC WebApp Penetration Tester
>>>
>>> Citrix Online | 7408 Hollister Avenue | Goleta, CA 93117<x-apple-data-detectors://0/0>
>>> T: +1 805.690.3478<tel:+1%C2%A0805.690.3478>
>>> C: +1 805.717.0365<tel:+1%20805.717.0365>
>>> jr.aquino at citrix.com<mailto:jr.aquino at citrixonline.com>
>>> http://www.citrixonline.com<http://www.citrixonline.com/>
>>>
>>> On Sep 19, 2013, at 6:43 AM, Ana Krivokapic <akrivoka at redhat.com<mailto:akrivoka at redhat.com>> wrote:
>>>
>>> On 09/19/2013 03:26 PM, Jan Cholasta wrote:
>>> Hi,
>>>
>>> On 12.9.2013 19:59, Ana Krivokapic wrote:
>>> Hello,
>>>
>>> The design document for $SUBJECT can be found at:
>>> http://www.freeipa.org/page/V3/Automember_rebuild_membership
>>>
>>> Related tickets:
>>> https://fedorahosted.org/freeipa/ticket/3752
>>> https://fedorahosted.org/freeipa/ticket/3928
>>>
>>> Thoughts, comments, questions welcome.
>>>
>>>
>>> I don't think naming the commands user-automember-rebuild and
>>> host-automember-rebuild commands is correct. The names imply they are methods
>>> of user/host, but they don't directly do anything to user/host objects. I
>>> would prefer if they were kept in the automember namespace where they
>>> logically belong (automember-rebuild-user and automember-rebuild-host perhaps?)
>>>
>>> Honza
>>>
>>>
>>> That makes sense... I don't have a strong preference one way or other. So if
>>> other agree with this suggestion, I will change it.
>>>
>>> --
>>> Regards,
>>>
>>> Ana Krivokapic
>>> Associate Software Engineer
>>> FreeIPA team
>>> Red Hat Inc.
>>>
>>> _______________________________________________
>>> Freeipa-devel mailing list
>>> Freeipa-devel at redhat.com<mailto:Freeipa-devel at redhat.com>
>>> https://www.redhat.com/mailman/listinfo/freeipa-devel
>>
>> --
>> Regards,
>>
>> Ana Krivokapic
>> Associate Software Engineer
>> FreeIPA team
>> Red Hat Inc.
>>
You are welcome, I'm glad you find it useful! :)
BTW, patches are already on the list (minus the web UI part - coming soon), you
can check them out if you want:
https://www.redhat.com/archives/freeipa-devel/2013-September/msg00295.html
--
Regards,
Ana Krivokapic
Associate Software Engineer
FreeIPA team
Red Hat Inc.
More information about the Freeipa-devel
mailing list