allow attribute mapping with an expression for the userPassword attribute for passwd, group and shadow entries and by default map it to the unmatchable password ("*") to avoid accidentally leaking password information

git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@1346 ef36b2f9-881f-0410-afb5-c4e39611909c
author: Arthur de Jong <arthur@arthurdejong.org> 2010-12-28 22:52:28 +0000
committer: Arthur de Jong <arthur@arthurdejong.org> 2010-12-28 22:52:28 +0000
commit: a215b08a303a1412b645f00c5ee139671be9fbbb (patch)
tree: c01ddd297ae9b82193fa874f4ea947cc584e2d2e /nslcd/attmap.c
parent: 8eb43e411882e26257c07c32949028bf76e187ec (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/nslcd/attmap.c b/nslcd/attmap.c
index 92cc011..32b8041 100644
--- a/nslcd/attmap.c
+++ b/nslcd/attmap.c
@@ -213,10 +213,13 @@ const char *attmap_set_mapping(const char **var,const char *value)
     /* these attributes may contain an expression
        (note that this needs to match the functionality in the specific
        lookup module) */
-    if ( (var!=&attmap_passwd_gidNumber) &&
+    if ( (var!=&attmap_group_userPassword) &&
+         (var!=&attmap_passwd_userPassword) &&
+         (var!=&attmap_passwd_gidNumber) &&
          (var!=&attmap_passwd_gecos) &&
          (var!=&attmap_passwd_homeDirectory) &&
          (var!=&attmap_passwd_loginShell) &&
+         (var!=&attmap_shadow_userPassword) &&
          (var!=&attmap_shadow_shadowLastChange) &&
          (var!=&attmap_shadow_shadowMin) &&
          (var!=&attmap_shadow_shadowMax) &&
author	Arthur de Jong <arthur@arthurdejong.org>	2010-12-28 22:52:28 +0000
committer	Arthur de Jong <arthur@arthurdejong.org>	2010-12-28 22:52:28 +0000
commit	a215b08a303a1412b645f00c5ee139671be9fbbb (patch)
tree	c01ddd297ae9b82193fa874f4ea947cc584e2d2e /nslcd/attmap.c
parent	8eb43e411882e26257c07c32949028bf76e187ec (diff)