On Wed, Nov 07, 2012 at 09:03:43AM -0500, Stephen Gallagher wrote:
On Wed 07 Nov 2012 05:07:14 AM EST, Ondrej Kos wrote:
On 11/06/2012 11:07 PM, Dmitri Pal wrote:
On 11/06/2012 02:09 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:00 -0500, Stephen Gallagher wrote:
On Tue 06 Nov 2012 01:54:46
On 11/06/2012 11:07 PM, Dmitri Pal wrote:
On 11/06/2012 02:09 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:00 -0500, Stephen Gallagher wrote:
On Tue 06 Nov 2012 01:54:46 PM EST, Dmitri Pal wrote:
On 11/06/2012 01:45 PM, Simo Sorce wrote:
• If all lists are empty, access
On Wed 07 Nov 2012 05:07:14 AM EST, Ondrej Kos wrote:
On 11/06/2012 11:07 PM, Dmitri Pal wrote:
On 11/06/2012 02:09 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:00 -0500, Stephen Gallagher wrote:
On Tue 06 Nov 2012 01:54:46 PM EST, Dmitri Pal wrote:
On 11/06/2012 01:45 PM, Simo Sorce
On 11/02/2012 11:50 AM, Jakub Hrozek wrote:
On Thu, Nov 01, 2012 at 03:04:11PM -0400, Simo Sorce wrote:
It's because the DB cannot hold an empty value.
With the current interface empty value = No value.
You can easily check for an option being present with
confdb_get_param(). Then look at
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On 11/02/2012 05:32 PM, Simo Sorce wrote:
On Fri, 2012-11-02 at 10:10 -0400, Dmitri Pal wrote:
On 11/02/2012 09:50 AM, Stef Walter wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us define a general rule about how we treat
On 11/06/2012 02:52 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On 11/02/2012 05:32 PM, Simo Sorce wrote:
On Fri, 2012-11-02 at 10:10 -0400, Dmitri Pal wrote:
On 11/02/2012 09:50 AM, Stef Walter wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us
On Tue, 2012-11-06 at 15:10 +0100, Ondrej Kos wrote:
On 11/06/2012 02:52 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On 11/02/2012 05:32 PM, Simo Sorce wrote:
On Fri, 2012-11-02 at 10:10 -0400, Dmitri Pal wrote:
On 11/02/2012 09:50 AM, Stef Walter wrote:
On 11/06/2012 09:24 AM, Simo Sorce wrote:
On Tue, 2012-11-06 at 15:10 +0100, Ondrej Kos wrote:
On 11/06/2012 02:52 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On 11/02/2012 05:32 PM, Simo Sorce wrote:
On Fri, 2012-11-02 at 10:10 -0400, Dmitri Pal wrote:
On
On Tue, 2012-11-06 at 10:26 -0500, Dmitri Pal wrote:
On 11/06/2012 09:24 AM, Simo Sorce wrote:
On Tue, 2012-11-06 at 15:10 +0100, Ondrej Kos wrote:
On 11/06/2012 02:52 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On 11/02/2012 05:32 PM, Simo Sorce wrote:
On
On 11/06/2012 10:50 AM, Simo Sorce wrote:
On Tue, 2012-11-06 at 10:26 -0500, Dmitri Pal wrote:
On 11/06/2012 09:24 AM, Simo Sorce wrote:
On Tue, 2012-11-06 at 15:10 +0100, Ondrej Kos wrote:
On 11/06/2012 02:52 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:46 +0100, Ondrej Kos wrote:
On
On Tue 06 Nov 2012 01:54:46 PM EST, Dmitri Pal wrote:
On 11/06/2012 01:45 PM, Simo Sorce wrote:
• If all lists are empty, access is granted
• If any list is provided, the order of evaluation is
allow,deny. This means that any matching deny rule
On 11/06/2012 02:09 PM, Simo Sorce wrote:
On Tue, 2012-11-06 at 14:00 -0500, Stephen Gallagher wrote:
On Tue 06 Nov 2012 01:54:46 PM EST, Dmitri Pal wrote:
On 11/06/2012 01:45 PM, Simo Sorce wrote:
• If all lists are empty, access is granted
• If any list is
On 11/01/2012 09:51 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 16:09 -0400, Dmitri Pal wrote:
On 11/01/2012 03:04 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/01/2012 09:11 AM, Simo Sorce wrote:
On Thu, 2012-11-01 at 12:03 +0100, Michal Židek wrote:
On
On Thu, Nov 01, 2012 at 03:04:11PM -0400, Simo Sorce wrote:
It's because the DB cannot hold an empty value.
With the current interface empty value = No value.
You can easily check for an option being present with
confdb_get_param(). Then look at its value to determine if there is any
(and if
On Fri, Nov 02, 2012 at 10:09:53AM +0100, Ondrej Kos wrote:
On 11/01/2012 09:51 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 16:09 -0400, Dmitri Pal wrote:
On 11/01/2012 03:04 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/01/2012 09:11 AM, Simo Sorce wrote:
On 11/02/2012 06:51 AM, Jakub Hrozek wrote:
On Fri, Nov 02, 2012 at 10:09:53AM +0100, Ondrej Kos wrote:
On 11/01/2012 09:51 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 16:09 -0400, Dmitri Pal wrote:
On 11/01/2012 03:04 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us define a general rule about how we treat the cases:
X =
Is it treated as X being undefined or X having an empty value.
It should be a general documented rule for the application.
Current behavior is to ignore and I think it is the right
On Fri, Nov 02, 2012 at 02:50:45PM +0100, Stef Walter wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us define a general rule about how we treat the cases:
X =
Is it treated as X being undefined or X having an empty value.
It should be a general documented rule for the
On 11/02/2012 09:50 AM, Stef Walter wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us define a general rule about how we treat the cases:
X =
Is it treated as X being undefined or X having an empty value.
It should be a general documented rule for the application.
Current
On Fri, 2012-11-02 at 10:10 -0400, Dmitri Pal wrote:
On 11/02/2012 09:50 AM, Stef Walter wrote:
On 11/02/2012 01:57 PM, Dmitri Pal wrote:
First let us define a general rule about how we treat the cases:
X =
Is it treated as X being undefined or X having an empty value.
It should be a
On Thu, 2012-11-01 at 12:03 +0100, Michal Židek wrote:
On 10/30/2012 04:53 PM, Ondrej Kos wrote:
On 10/17/2012 03:28 PM, Michal Židek wrote:
On 10/16/2012 03:45 PM, Stef Walter wrote:
On 10/16/2012 02:04 PM, Jakub Hrozek wrote:
I was wondering for a while whether to change the behaviour
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/01/2012 09:11 AM, Simo Sorce wrote:
On Thu, 2012-11-01 at 12:03 +0100, Michal Židek wrote:
On 10/30/2012 04:53 PM, Ondrej Kos wrote:
On 10/17/2012 03:28 PM, Michal Židek wrote:
On 10/16/2012 03:45 PM, Stef Walter wrote:
On
On 11/01/2012 03:04 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/01/2012 09:11 AM, Simo Sorce wrote:
On Thu, 2012-11-01 at 12:03 +0100, Michal Židek wrote:
On 10/30/2012 04:53 PM, Ondrej Kos wrote:
On 10/17/2012 03:28 PM, Michal Židek wrote:
On 10/16/2012
On Thu, 2012-11-01 at 16:09 -0400, Dmitri Pal wrote:
On 11/01/2012 03:04 PM, Simo Sorce wrote:
On Thu, 2012-11-01 at 10:53 -0400, Dmitri Pal wrote:
On 11/01/2012 09:11 AM, Simo Sorce wrote:
On Thu, 2012-11-01 at 12:03 +0100, Michal Židek wrote:
On 10/30/2012 04:53 PM, Ondrej Kos wrote:
On 10/17/2012 03:28 PM, Michal Židek wrote:
On 10/16/2012 03:45 PM, Stef Walter wrote:
On 10/16/2012 02:04 PM, Jakub Hrozek wrote:
I was wondering for a while whether to change the behaviour directly in
confdb_get_string_as_list() but I think the attached patch takes a
better
approach because
On 10/16/2012 03:45 PM, Stef Walter wrote:
On 10/16/2012 02:04 PM, Jakub Hrozek wrote:
I was wondering for a while whether to change the behaviour directly in
confdb_get_string_as_list() but I think the attached patch takes a better
approach because the other consumers of
When I have the following in a domain in sssd.conf:
access_provider = simple
simple_allow_users =
... any user is allowed to log in, despite the list being empty. The
documentation states:
· If either or both allow lists are provided, all users are denied
unless they appear in the
On Tue, Oct 16, 2012 at 11:47:12AM +0200, Stef Walter wrote:
When I have the following in a domain in sssd.conf:
access_provider = simple
simple_allow_users =
... any user is allowed to log in, despite the list being empty. The
documentation states:
· If either or both allow lists
On 10/16/2012 02:04 PM, Jakub Hrozek wrote:
I was wondering for a while whether to change the behaviour directly in
confdb_get_string_as_list() but I think the attached patch takes a better
approach because the other consumers of confdb_get_string_as_list() do
not see any difference between
29 matches
Mail list logo
