freeipa.git/daemons/ipa-kdb, branch master FreeIPA project ipa-kdb: Fix legacy password hashes generation 2011-10-06T16:15:05+00:00 Simo Sorce ssorce@redhat.com 2011-09-19T19:53:17+00:00 f28ab8351f8972b5b5354dd98ba6508eab06dc31 We were not searching for objectclass so the test to se if a user had the posixAccount attribute was failing and the user was not marked as ipa_user. This in turn caused us to not synchronize legacy hashes by not trying to store the userPassword attribute. Fixes: https://fedorahosted.org/freeipa/ticket/1820 
We were not searching for objectclass so the test to se if a user had the
posixAccount attribute was failing and the user was not marked as ipa_user.
This in turn caused us to not synchronize legacy hashes by not trying to store
the userPassword attribute.

Fixes: https://fedorahosted.org/freeipa/ticket/1820
ipa-kdb: Fix expiration time calculation 2011-09-26T08:07:11+00:00 Simo Sorce ssorce@redhat.com 2011-09-23T22:37:42+00:00 dfc704de25bbf60062361c4a7d41971a77e5c9a4 Expiration time should be enforced as per policy only for users and only when a password change occurs, ina ll other cases we should just let kadmin decide whther it is going to set a password expiration time or just leave it empty. In general service tickts have strong random passwords so they do not need a password policy or expiration at all. https://fedorahosted.org/freeipa/ticket/1839 
Expiration time should be enforced as per policy only for users and only when a
password change occurs, ina ll other cases we should just let kadmin decide
whther it is going to set a password expiration time or just leave it empty.

In general service tickts have strong random passwords so they do not need a
password policy or expiration at all.

https://fedorahosted.org/freeipa/ticket/1839
ipa-kdb: Properly set password expiration time. 2011-09-19T16:28:35+00:00 Simo Sorce ssorce@redhat.com 2011-09-17T19:08:06+00:00 4167ad01d73b0c7c0912bf537730da5c9b46b2c3 We do the policy check so we are the only one that can calculate the new pwd espiration time. Fixes: https://fedorahosted.org/freeipa/ticket/1793 
We do the policy check so we are the only one that can calculate the new
pwd espiration time.

Fixes: https://fedorahosted.org/freeipa/ticket/1793
ipa-kdb: Be flexible 2011-08-26T12:24:50+00:00 Simo Sorce ssorce@redhat.com 2011-07-20T19:44:11+00:00 d8de2d1b7bf64a0b7f695b4a95e4a5ea29332c4a Although the proper values for booleans from LDAP should be only uppercase, 389ds does allow wrong cased values without complaining. And we still have some places where the wrong case is used. Avoid getting frustrating errors when reading these values out. 
Although the proper values for booleans from LDAP should be only uppercase,
389ds does allow wrong cased values without complaining. And we still have some
places where the wrong case is used.
Avoid getting frustrating errors when reading these values out.
ipa-kdb: add password policy support 2011-08-26T12:24:50+00:00 Simo Sorce ssorce@redhat.com 2011-07-01T17:33:28+00:00 0d048d7b49269853cd2a9c9b997c94717f05cf41 Use default policy for new principals created by kadmin 
Use default policy for new principals created by kadmin
ipa-kdb: implement change_pwd function 2011-08-26T12:24:49+00:00 Simo Sorce ssorce@redhat.com 2011-06-20T23:35:50+00:00 452fcdccdccb4340f20c85dd9d4f45ee2b02bf37 






ipa-kdb: implement function to retrieve password policies
2011-08-26T12:24:49+00:00

Simo Sorce
ssorce@redhat.com

2011-06-23T19:02:04+00:00

49c25dbdf5b51a6cc157135a0d2f89c7eb408dd9












ipa-kdb: Get/Store Master Key directly from LDAP
2011-08-26T12:24:49+00:00

Simo Sorce
ssorce@redhat.com

2011-06-10T18:25:03+00:00

0a4f7960b9cb2cc43c014a9ba5f96ddfbf5713fe












ipa-kdb: add functions to change principals
2011-08-26T12:24:49+00:00

Simo Sorce
ssorce@redhat.com

2011-06-01T21:58:21+00:00

e9e426354f28ca01586b1b5ef7130b19b392232b












ipa-kdb: add function to iterate over principals
2011-08-26T12:24:49+00:00

Simo Sorce
ssorce@redhat.com

2011-05-30T19:10:44+00:00

d25370a57961cebaa75983bedca37b3fdf5094a2