On Tue, Oct 31, 2017 at 12:48:42PM +0100, Jakub Hrozek wrote:
> OK, this is another possibility. I guess this would amount to creating
> a new DP method to fetch the rules and calling it from IFP? Anything else?
>
> I also wonder about IFP access control in this respect. By default we only
> allow
On Tue, Oct 31, 2017 at 10:35:44AM +0100, Pavel Březina wrote:
> On 10/30/2017 02:37 PM, Jakub Hrozek wrote:
> > On Mon, Oct 30, 2017 at 11:12:18AM +0100, Pavel Březina wrote:
> > > On 10/24/2017 05:36 PM, Jakub Hrozek wrote:
> > > > Hi,
> > > >
> > > > below is a short design page about a new sss
On 10/30/2017 02:37 PM, Jakub Hrozek wrote:
On Mon, Oct 30, 2017 at 11:12:18AM +0100, Pavel Březina wrote:
On 10/24/2017 05:36 PM, Jakub Hrozek wrote:
Hi,
below is a short design page about a new sssctl command that prints the
IPA HBAC rules cached on an IPA client. If there are no comments, I
On Mon, Oct 30, 2017 at 11:12:18AM +0100, Pavel Březina wrote:
> On 10/24/2017 05:36 PM, Jakub Hrozek wrote:
> > Hi,
> >
> > below is a short design page about a new sssctl command that prints the
> > IPA HBAC rules cached on an IPA client. If there are no comments, I'll
> > open a PR against the
On 10/24/2017 05:36 PM, Jakub Hrozek wrote:
Hi,
below is a short design page about a new sssctl command that prints the
IPA HBAC rules cached on an IPA client. If there are no comments, I'll
open a PR against the docs repository.
Generate an access control report for IPA domains
===