From c2d7b2271eafd27b41736624e4e5da121073279d Mon Sep 17 00:00:00 2001
From: Stephen Gallagher <sgallagh@redhat.com>
Date: Thu, 22 Oct 2009 11:58:06 -0400
Subject: Add support for offline auth cache timeout

This adds a new option (offline_credentials_expiration) to the
[PAM] section of the sssd.conf

If the user does not perform an online authentication within the
timeout (in days), they will be denied auth once the timeout
passes.
---
 server/confdb/confdb.h | 1 +
 1 file changed, 1 insertion(+)

(limited to 'server/confdb/confdb.h')

diff --git a/server/confdb/confdb.h b/server/confdb/confdb.h
index 4d4e8c29..e535286f 100644
--- a/server/confdb/confdb.h
+++ b/server/confdb/confdb.h
@@ -64,6 +64,7 @@
 
 /* PAM */
 #define CONFDB_PAM_CONF_ENTRY "config/pam"
+#define CONFDB_PAM_CRED_TIMEOUT "offline_credentials_expiration"
 
 /* Data Provider */
 #define CONFDB_DP_CONF_ENTRY "config/dp"
-- 
cgit