git.ipfire.org Git - thirdparty/samba.git/commit

]> git.ipfire.org Git - thirdparty/samba.git/commit

projects / thirdparty / samba.git / commit

author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Fri, 3 Nov 2023 00:51:27 +0000 (13:51 +1300)
committer	Andrew Bartlett <abartlet@samba.org>
	Tue, 7 Nov 2023 21:54:32 +0000 (21:54 +0000)
commit	64806f37ab08c51d2fac23d7f153c3b2f0c5d984
tree	2802f5419a7709cdf548d7ad3c3aac1c1a0cf68a	tree \| snapshot
parent	6b2de4748889a0b5674758169439cb7fb2106e7d	commit \| diff

tests/krb5: Correct authentication policy SDDL

There is no claim called ‘abc’, so the condition ‘(abc)’ is always going
to fail. Replace this with a condition using ‘Member_of’.

Furthermore, an ACL containing only Deny ACEs will only ever deny. Add a
trailing Allow ACE so that the ACL might allow other principals.

Signed-off-by: Joseph Sutton <josephsutton@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>

python/samba/tests/krb5/conditional_ace_tests.py

diff | blob | blame | history

Mirror of https://github.com/samba-team/samba.git

RSS Atom