Issue #4158: Remove sourcehostcategory from default HBAC rule - freeipa

freeipa

#4158 Remove sourcehostcategory from default HBAC rule

Closed: Fixed None Opened 10 years ago by mkosek.

In ticket #3528 we deprecated source host facet of the HBAC rule. However, the default allow_all rule still has it (note the different label):

# ipa hbacrule-show allow_all
  Rule name: allow_all
  User category: all
  Host category: all
  <sourcehostcategory>: all
  Service category: all
  Description: Allow all users to access any host from any host
  Enabled: TRUE

We should remove it allow_all.

dpal commented 10 years ago

Ticket has been cloned to Bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1061187

mkosek commented 10 years ago

master: 4e207b4[[BR]]
ipa-3-3: 206f16a

Metadata Update from @mkosek:
- Issue assigned to jcholast
- Issue set to the milestone: FreeIPA 3.3.5 (bug fixing)

7 years ago

Metadata

Assignee

jcholast

Tags

None

Blocking

None

Depending on

None

Priority

normal

Milestone

FreeIPA 3.3.5 (bug fixing)

None

affects_doc

None

source

None

knownissue

None

type

defect

blockedby

None

test_case

None

component

IPA

blocking

None

on_review

keywords

None

test_coverage

None

reviewer

None

external_tracker

None

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1061187

tester

None

changelog

None

design

None

freeipa

Source Code

#4158 Remove sourcehostcategory from default HBAC rule Closed: Fixed None Opened 10 years ago by mkosek.

Metadata

#4158 Remove sourcehostcategory from default HBAC rule

Closed: Fixed None Opened 10 years ago by mkosek.