Re: [SSSD] [PATCH] Don't report a fatal error for an HBAC denial
On Thu, May 13, 2010 at 10:53:30AM -0400, Stephen Gallagher wrote:
I noticed a minor bug while working on the ldap_access_filter patch.
Currently, if the HBAC access provider returns ANYTHING but
PAM_SUCCESS, it reports it as a fatal error in the backend.
However, we should also be handling PAM_PERM_DENIED as a successful
return. So this patch corrects that.
Should apply cleanly to both master and sssd-1-2.
ACK
bye,
Sumit
--
Stephen Gallagher
RHCE 804006346421761
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/