On Wed, Apr 03, 2013 at 01:26:12PM +0200, Pavel Březina wrote: > >>We can also use it to initialize sdap_id_ctx instead of calling > >>sssm_ipa_id_init from other places. > > Given it more thoughts I don't think we should go this way. I like the > sssm_ipa_init() concept though and we should probably implement it in > 1.11+. > > But there is an advantage having only one plugin active. For example: > > id_provider = ipa > sudo_provider = ldap > ldap_uri = _srv_ > > Even though sudo_provider is ldap we still contact ipa server so it is > logical to still use plugin with ipa sites support. > > We can consider id_provider as authoritative provider and set the plugin > accordingly. Any thoughts?
This case is only valid for complex providers like IPA or AD, right? Then for 1.10 this seems like a good and simple idea. Long-term I'm actually thinking of creating a "hosts provider" or "resolv provider" that would inherit from id_provider but could be used to configure the host resolution with a nice granularity. But it's too late for 1.10 I think. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
