identity: Don't add temporary accounts for expired credentials

The identity service creates a "temporary" kerberos account when a user manually does kinit, to handle automatic renewal, etc. Unfortunately, it also picks up expired cruft that builds up in KCM based credential caches, and creates temporary accounts for that as well. This commit tries to avoid that. Closes https://gitlab.gnome.org/GNOME/gnome-online-accounts/-/issues/32
author: Ray Strode <rstrode@redhat.com> 2022-10-13 16:11:54 -0400
committer: Ray Strode <rstrode@redhat.com> 2022-11-15 10:34:36 -0500
commit: 361ef111580345f8d2f5e30206b56d1c17ef8c37 (patch)
tree: ea56230b15074e60a618e5067f6c45aa0cfb3c7b
parent: 1ecbeed1c519f3b472a4b9f9edadcf1ded48c7f0 (diff)
download: gnome-online-accounts-361ef111580345f8d2f5e30206b56d1c17ef8c37.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/src/goaidentity/goaidentityservice.c b/src/goaidentity/goaidentityservice.c
index 3dd2706..a25de41 100644
--- a/src/goaidentity/goaidentityservice.c
+++ b/src/goaidentity/goaidentityservice.c
@@ -1097,7 +1097,7 @@ on_identity_added (GoaIdentityManager *identity_manager,
 
   object = find_object_with_principal (self, identifier, FALSE);
 
-  if (object == NULL)
+  if (object == NULL && goa_identity_is_signed_in (identity))
     add_temporary_account (self, identity);
 
   g_clear_object (&object);
author	Ray Strode <rstrode@redhat.com>	2022-10-13 16:11:54 -0400
committer	Ray Strode <rstrode@redhat.com>	2022-11-15 10:34:36 -0500
commit	361ef111580345f8d2f5e30206b56d1c17ef8c37 (patch)
tree	ea56230b15074e60a618e5067f6c45aa0cfb3c7b
parent	1ecbeed1c519f3b472a4b9f9edadcf1ded48c7f0 (diff)
download	gnome-online-accounts-361ef111580345f8d2f5e30206b56d1c17ef8c37.tar.gz