[Freeipa-devel] [PATCH 0069] Adds 389DS plugin to enforce UUID token IDs

Users that can rename the token (such as admins) can also create non-UUID token names. https://fedorahosted.org/freeipa/ticket/4456 NOTE: this patch is an alternate approach to my patch 0065. This version has two main advantages compared to 0065: 1. Permissions are more flexible (not tied to the

Re: [Freeipa-devel] [PATCH 0065] Don't allow users to create tokens with a specified ID

On Sat, 2014-09-20 at 16:21 -0400, Nathaniel McCallum wrote: On Wed, 2014-09-17 at 08:51 +0200, Jan Cholasta wrote: Hi, Dne 16.9.2014 v 19:32 Nathaniel McCallum napsal(a): We perform this enforcement at the API level since: * DS level enforcement would be difficult *

Re: [Freeipa-devel] [PATCH 0064] Create ipa-otp-decrement 389DS plugin

On Sat, 2014-09-20 at 17:33 -0400, Simo Sorce wrote: On Sat, 20 Sep 2014 15:39:48 -0400 Nathaniel McCallum npmccal...@redhat.com wrote: On Sat, 2014-09-20 at 00:25 +0200, thierry bordaz wrote: Hello Nathaniel, sanitize_input translates MOD/REPLACE into MOD/DEL+MOD/ADD.