[Freeipa-devel] [PATCH] 0032 Validate sudo RunAsUser/RunAsGroup arguments
Alexander Bokovoy
abokovoy at redhat.com
Fri Jan 13 09:04:23 UTC 2012
On Thu, 12 Jan 2012, Rob Crittenden wrote:
> >>(assuming joe doesn't already exist, of course).
> >Refactored the patch using original values from options[]:
> >
> >$ ipa sudorule-add-runasuser testr --group=all
> >ipa: ERROR: invalid 'runas-user': RunAsUser does not accept 'all' as a group name
> >$ ipa sudorule-add-runasuser testr --group=admins,all
> >ipa: ERROR: invalid 'runas-user': RunAsUser does not accept 'all' as a group name
> >$ ipa sudorule-add-runasuser testr --user=admin,all
> >ipa: ERROR: invalid 'runas-user': RunAsUser does not accept 'all' as a user name
> >$ ipa sudorule-add-runasgroup testr --group=admin,all
> >ipa: ERROR: invalid 'runas-group': RunAsGroup does not accept 'all' as a group name
> >
> >Accepts a single value or a list.
> >
> >This is a patch against master (should apply to ipa-2-2 w/o issues).
>
> Tested in 2-2, works fine. ACK.
Pushed to master, ipa-2-2.
--
/ Alexander Bokovoy
More information about the Freeipa-devel
mailing list