From 655fe5b8ff9bf894fcf652c81a67a94e86361a07 Mon Sep 17 00:00:00 2001 From: Sumit Bose Date: Tue, 12 Jul 2016 17:09:00 +0200 Subject: [PATCH 1/6] IPA: make ipa_resolve_user_list_{send|recv} public and allow AD users Reviewed-by: Jakub Hrozek --- src/providers/ipa/ipa_id.c | 21 ++++++++++++++++----- src/providers/ipa/ipa_id.h | 17 +++++++++++++++++ 2 files changed, 33 insertions(+), 5 deletions(-) diff --git a/src/providers/ipa/ipa_id.c b/src/providers/ipa/ipa_id.c index dff4b23580d8c7502a1fbe9c57d21b8c555883be..c79dca6dc2cd292e04fc33ec83afaed76ae759e8 100644 --- a/src/providers/ipa/ipa_id.c +++ b/src/providers/ipa/ipa_id.c @@ -190,7 +190,7 @@ struct ipa_resolve_user_list_state { static errno_t ipa_resolve_user_list_get_user_step(struct tevent_req *req); static void ipa_resolve_user_list_get_user_done(struct tevent_req *subreq); -static struct tevent_req * +struct tevent_req * ipa_resolve_user_list_send(TALLOC_CTX *memctx, struct tevent_context *ev, struct be_req *be_req, struct ipa_id_ctx *ipa_ctx, @@ -253,8 +253,14 @@ static errno_t ipa_resolve_user_list_get_user_step(struct tevent_req *req) DEBUG(SSSDBG_TRACE_ALL, "Trying to resolve user [%s].\n", ar->filter_value); - subreq = ipa_id_get_account_info_send(state, state->ev, state->ipa_ctx, - state->be_req, ar); + if (strcasecmp(state->domain_name, + state->ipa_ctx->sdap_id_ctx->be->domain->name) != 0) { + subreq = ipa_subdomain_account_send(state, state->ev, state->ipa_ctx, + state->be_req, ar); + } else { + subreq = ipa_id_get_account_info_send(state, state->ev, state->ipa_ctx, + state->be_req, ar); + } if (subreq == NULL) { DEBUG(SSSDBG_OP_FAILURE, "sdap_handle_acct_req_send failed.\n"); return ENOMEM; @@ -273,7 +279,12 @@ static void ipa_resolve_user_list_get_user_done(struct tevent_req *subreq) struct ipa_resolve_user_list_state); int ret; - ret = ipa_id_get_account_info_recv(subreq, &state->dp_error); + if (strcasecmp(state->domain_name, + state->ipa_ctx->sdap_id_ctx->be->domain->name) != 0) { + ret = ipa_subdomain_account_recv(subreq, &state->dp_error); + } else { + ret = ipa_id_get_account_info_recv(subreq, &state->dp_error); + } talloc_zfree(subreq); if (ret != EOK) { DEBUG(SSSDBG_OP_FAILURE, "sdap_handle_acct request failed: %d\n", ret); @@ -304,7 +315,7 @@ done: return; } -static int ipa_resolve_user_list_recv(struct tevent_req *req, int *dp_error) +int ipa_resolve_user_list_recv(struct tevent_req *req, int *dp_error) { struct ipa_resolve_user_list_state *state = tevent_req_data(req, struct ipa_resolve_user_list_state); diff --git a/src/providers/ipa/ipa_id.h b/src/providers/ipa/ipa_id.h index 91a94115386955f63eca706bf6f4ac41884445eb..5a64c401829e8b19af331f50a3d49fa90c9940e0 100644 --- a/src/providers/ipa/ipa_id.h +++ b/src/providers/ipa/ipa_id.h @@ -120,4 +120,21 @@ ipa_initgr_get_overrides_send(TALLOC_CTX *memctx, struct ldb_message **groups, const char *groups_id_attr); int ipa_initgr_get_overrides_recv(struct tevent_req *req, int *dp_error); + +struct tevent_req *ipa_get_subdom_acct_process_pac_send(TALLOC_CTX *mem_ctx, + struct tevent_context *ev, + struct sdap_handle *sh, + struct ipa_id_ctx *ipa_ctx, + struct sss_domain_info *dom, + struct ldb_message *user_msg); + +errno_t ipa_get_subdom_acct_process_pac_recv(struct tevent_req *req); + +struct tevent_req * +ipa_resolve_user_list_send(TALLOC_CTX *memctx, struct tevent_context *ev, + struct be_req *be_req, + struct ipa_id_ctx *ipa_ctx, + const char *domain_name, + struct ldb_message_element *users); +int ipa_resolve_user_list_recv(struct tevent_req *req, int *dp_error); #endif -- 2.1.0