On Wed, Oct 28, 2009 at 05:12:59PM -0400, Simo Sorce wrote:
> And other changes, see commit message.
> 
> Simo.
> 
> -- 
> Simo Sorce * Red Hat, Inc * New York

> >From 1b8814820fad2d6e399af0a5f93713312b64d28d Mon Sep 17 00:00:00 2001
> From: Simo Sorce <sso...@redhat.com>
> Date: Wed, 28 Oct 2009 17:02:45 -0400
> Subject: [PATCH] Tidy up ipa options
> 
> Do not replicate every and each option we may want to set in ipa.
> Just read out ldap and krb provider options (added reference in the manual 
> too,
> and removed mention of ipa specific timeout values, use ldap options for that)
> 

ACK, although I think we should reintroduce some of the values if it turns
out that they are used often. Maybe in form of a ipa_base_timeout and
derived the other timeouts from that value.

> Avoid calling auth module initialization twice, just pass the auth context to
> the chpass module too.

ACK

> 
> Add a new ldap option SDAP_SEARCH_BASE, so that a single searching base can be
> used for both users and groups. the user and group search bases can still be 
> set
> separately if necessary but they are now optional and set to be identical to
> SDAP_SEARCH_BASE if not explicitly specified in the configuration.

ACK

bye,
Sumit
_______________________________________________
sssd-devel mailing list
sssd-devel@lists.fedorahosted.org
https://fedorahosted.org/mailman/listinfo/sssd-devel

Reply via email to