projects / krb5.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0ce5cb2) | patch
Propagate modprinc -unlock from master to slave KDCs
authorGreg Hudson <ghudson@mit.edu>
Tue, 5 Oct 2010 14:53:09 +0000 (14:53 +0000)
committerGreg Hudson <ghudson@mit.edu>
Tue, 5 Oct 2010 14:53:09 +0000 (14:53 +0000)
commit96f2a016991c199be477b6abd48824ec1cb6641f
treec1d70a4b27bf8befad040b06c4831e842506fd51tree | snapshot
parent0ce5cb2e9dc040f35a91bca8dcad68d10ed7ea8acommit | diff
Propagate modprinc -unlock from master to slave KDCs

Create a new tl-data type to hold the time of the last administrative
unlock, and factor it into decisions about account lockout.  Since
tl-data values are propagated from master to slave, this will cause
modprinc -unlock operations to reach slave KDCs on the next
propagation.

ticket: 6795

git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24424 dc483132-0cff-0310-8789-dd5450dbe970
14 files changed:
src/include/kdb.h diff | blob | history
src/kadmin/cli/kadmin.c diff | blob | history
src/lib/kdb/kdb5.c diff | blob | history
src/lib/kdb/libkdb5.exports diff | blob | history
src/plugins/kdb/db2/lockout.c diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/kerberos.ldif diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/kerberos.schema diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_misc.c diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_principal.c diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_principal.h diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/ldap_service_rights.c diff | blob | history
src/plugins/kdb/ldap/libkdb_ldap/lockout.c diff | blob | history
src/tests/t_lockout.py diff | blob | history
MIT implementation of the Kerberos network authentication protocol. This repo may be rebased, so don't base your work on it. Use git://github.com/krb5/krb5 instead.