diff options
author | Ray Strode <rstrode@redhat.com> | 2022-10-13 16:11:54 -0400 |
---|---|---|
committer | Ray Strode <rstrode@redhat.com> | 2022-11-15 10:34:36 -0500 |
commit | 361ef111580345f8d2f5e30206b56d1c17ef8c37 (patch) | |
tree | ea56230b15074e60a618e5067f6c45aa0cfb3c7b | |
parent | 1ecbeed1c519f3b472a4b9f9edadcf1ded48c7f0 (diff) | |
download | gnome-online-accounts-361ef111580345f8d2f5e30206b56d1c17ef8c37.tar.gz |
identity: Don't add temporary accounts for expired credentials
The identity service creates a "temporary" kerberos account when
a user manually does kinit, to handle automatic renewal, etc.
Unfortunately, it also picks up expired cruft that builds up in
KCM based credential caches, and creates temporary accounts for
that as well.
This commit tries to avoid that.
Closes https://gitlab.gnome.org/GNOME/gnome-online-accounts/-/issues/32
-rw-r--r-- | src/goaidentity/goaidentityservice.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/goaidentity/goaidentityservice.c b/src/goaidentity/goaidentityservice.c index 3dd2706..a25de41 100644 --- a/src/goaidentity/goaidentityservice.c +++ b/src/goaidentity/goaidentityservice.c @@ -1097,7 +1097,7 @@ on_identity_added (GoaIdentityManager *identity_manager, object = find_object_with_principal (self, identifier, FALSE); - if (object == NULL) + if (object == NULL && goa_identity_is_signed_in (identity)) add_temporary_account (self, identity); g_clear_object (&object); |