summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* WIP compat plugin: solve deadlock when looking up SSSD usersfreeipa-nss-compatAlexander Bokovoy2013-07-268-261/+441
|
* schema-compat: add support for querying trusted domain users through SSSDAlexander Bokovoy2013-07-165-45/+982
| | | | | | | | | | | | | | | | | | src/back-sch-sssd.c implements interface to query trusted domain users and groups on FreeIPA master server via getpwnam_r(), getgrnam_r(), and libsss_idmap. src/back-sch-pam.c implements PAM authentication for trusted domain users using system-auth system service when running on FreeIPA master server. Schema-compat plugin can be configured to serve trusted domain users and groups through the plugin configuration entry in directory server: schema-compat-lookup-sssd: <user|group> schema-compat-sssd-min-id: <value> Separate trees should be configured to look up users and groups. If minimal id value is missing, it will be by default set to 1000.
* Add %sort() and %dribble_merge()Nalin Dahyabhai2013-05-231-1/+286
| | | | | | | Add %sort(), which binary-sorts a single list of values, and %dribble_merge(), which takes a quoted length, a separator, and some expressions and produces a list of lists of values using the separator, where no list is larger than the length.
* Clean up logging a little bitNalin Dahyabhai2013-05-231-8/+10
|
* Don't leak decoded XDR memoryNalin Dahyabhai2013-05-231-0/+8
| | | | | After we're done with decoded arguments from a client, use xdr_free() to free anything that was dynamically-allocated.
* Fix some uninitialized-jump warningsNalin Dahyabhai2013-05-232-1/+5
| | | | | | Clear buffers that we encode data into before encoding them, to avoid valgrind warnings that their contents are used before they're written to.
* check SLAPI_PLUGIN_OPRETURN valuesNalin Dahyabhai2013-04-041-0/+21
| | | | | | Check for SLAPI_PLUGIN_OPRETURN values before we do anything, in case there's an error from the backend operation, where the server calls the postop plugins anyway.
* don't skip changes that only affect map membershipNalin Dahyabhai2013-04-041-11/+16
| | | | | | When checking if we can skip processing for a given change, pay attention to whether or not the changes cause the entry to need to be added or removed from a map (#912673).
* correct typo (-m rather than -s)Nalin Dahyabhai2013-03-201-1/+1
| | | | | Correct a typo, suggesting the suffix option was -m rather than -s in one place. Reported by Filip Holec.
* Fix multiplexing of multiple clientsNalin Dahyabhai2013-03-191-5/+11
| | | | | Don't expect every connected client to be ready for I/O every time we poll for the group of them. Fixes #923336.
* fixup log messages and a signed booleanNalin Dahyabhai2012-11-143-5/+5
| | | | | - add missing newlines at the end of a couple of messages - make that one bit that we compare to zero unsigned instead of signed
* include header to avoid implicit declarationNalin Dahyabhai2012-11-141-0/+1
|
* log message fixupsNalin Dahyabhai2012-11-142-11/+13
| | | | | - put a newline at the end of these two messages - register callbacks in a consistent order
* explicitly check for "no" valuesNalin Dahyabhai2012-11-141-1/+9
|
* warning cleanup: remove unused variablesNalin Dahyabhai2012-11-131-3/+2
|
* show betxn settings in the plugin versionNalin Dahyabhai2012-11-132-2/+2
|
* Overhaul betxn supportNalin Dahyabhai2012-11-018-213/+414
| | | | | | | | | * Check for BETXN support at build-time, provide options for disabling or requiring that it be available for build to succeed. * Track whether or not BETXN support is enabled in the plugin-local state. * Skip processing in post/internalpost callbacks if BETXN support is enabled. * Skip work in betxnpost callbacks if BETXN support is disabled.
* make NIS Plugin and Schema Compatibility Plugin betxn awareNoriko Hosoi2012-10-165-65/+226
| | | | | | | | | | When NIS Plugin and Schema Compatibility Plugin config entries include nsslapd-pluginbetxn: on (the value could be yes, true or 1, too), the plugins' update callbacks (add, delete, modify, and modrdn) are called at the betxn pre/postop timing. By default, the value of nsslapd-pluginbetxn is off. (See also https://fedorahosted.org/389/ticket/351)
* add shadow, passwd.adjuct, base64-encode nis-disallowed-charsNalin Dahyabhai2012-08-231-4/+67
| | | | | | | * add a definition for shadow.byname * add a definition for passwd.adjunct.byname * make passwd.byname/passwd.byuid hide userPassword if objectClass==shadowAccount * base64-encode nis-disallowed-chars when we are printing defaults
* drop support for directory server transactionsNalin Dahyabhai2012-06-138-253/+0
| | | | | | | Transaction support the way we added it is an all-or-nothing proposition for a server installation, which turned out to be problematic, so 389 is going to pursue another strategy for that. The new way requires that we not register as a betxn plugin, ever.
* - fix a leakNalin Dahyabhai2012-05-221-21/+39
| | | | | We assumed that slapi_mods_add_smod() took ownership of the smod that we pass in, when it really just keeps the contents.
* - log errors evaluating pad expressions in %%link rather than continuing on ↵Nalin Dahyabhai2012-04-101-0/+15
| | | | until we hit an arithmetic exception (#810258)
* - treat the padding values used by %link() into expressions instead ofNalin Dahyabhai2012-03-301-34/+52
| | | | as literals
* - add a "default" functionNalin Dahyabhai2012-03-281-0/+50
|
* - add setting of a synthetic entry's entryUSN based on the source entry's ↵Nalin Dahyabhai2012-03-151-5/+79
| | | | entryUSN or the root DSE's lastUSN (if we have no source entry)
* properly escape RDN values when building compat entries (#796509)Nalin Dahyabhai2012-02-231-9/+73
|
* - fix a compile error on systems which don't define LDAP_SCOPE_SUBORDINATE, ↵Nalin Dahyabhai2012-02-131-1/+1
| | | | reported by Christian Neuhold
* - take steps to avoid making yp_first/yp_next clients loop indefinitely when ↵Nalin Dahyabhai2012-01-241-1/+13
| | | | a single LDAP entry produces multiple copies of the same NIS key for a given map
* - remove unused variablesNalin Dahyabhai2012-01-245-30/+24
|
* - don't log a NULL there, eitherNalin Dahyabhai2012-01-241-2/+2
|
* - modify defaults for ethers.byname and ethers.byaddr so that they'll work ↵Nalin Dahyabhai2012-01-241-6/+10
| | | | properly with multiple macAddress and cn values
* - add multiple-result capable versions of match/regmatch/regsubNalin Dahyabhai2012-01-241-3/+129
|
* - avoid an aliasing warningNalin Dahyabhai2012-01-231-1/+4
|
* - avoid a possible NULL derefNalin Dahyabhai2012-01-231-8/+8
|
* - fixup a couple of debug log messagesNalin Dahyabhai2012-01-231-2/+2
|
* - don't lean so hard on slapi_entry_diff(), when if we do it ourselves, the ↵Nalin Dahyabhai2012-01-191-2/+184
| | | | official mods list already narrows down the work needed to get the results we're interested in seeing
* - typoNalin Dahyabhai2012-01-181-1/+1
|
* - log a text version of the search scope, tooNalin Dahyabhai2012-01-181-2/+25
|
* - if there are _no_ substantive changes, drop out of modify even earlier -- ↵Nalin Dahyabhai2012-01-171-3/+37
| | | | this was causing tests to fail when even the modification time wasn't changing, and we later mistook the NULL array of mods to mean that we hadn't worked them out, which caused us to do the work unnecessarily
* - computer our own mods list for modify operations, to not get suckeredNalin Dahyabhai2012-01-171-12/+50
| | | | | into doing completely unnecessary work for other plugins that modify an entry to give it the same contents that it already has
* - use a better message when we're catching a modify on an entry that wasn't ↵Nalin Dahyabhai2012-01-171-0/+13
| | | | before and won't be part of this map
* - be a bit more aggressive about skipping unnecessary workNalin Dahyabhai2012-01-171-5/+1
|
* - if the entry being touched is in an ldbm back-end, but there's no ↵Nalin Dahyabhai2012-01-163-4/+105
| | | | transaction ID, just return, and have faith that we'll be called again in the transaction post
* - set the TXN correctly, and don't bother with the internal helper that ↵Nalin Dahyabhai2012-01-161-8/+2
| | | | doesn't know how to use transactions
* - update copyright dates in files modified this yearNalin Dahyabhai2012-01-164-4/+4
|
* - copy PARENT_TXN, tooNalin Dahyabhai2012-01-161-0/+4
|
* - use internal wrappers so that we can better know which callback we'reNalin Dahyabhai2012-01-161-8/+48
| | | | answering
* - in callbacks, only use pblocks that are built from pblocks that weNalin Dahyabhai2012-01-1610-123/+195
| | | | | | already have, so that we can pass the transaction ID around; this includes additional parameters for a number of functions and a new callback data type for backend_set_config_entry_add_cb()
* - DS doesn't do nested transactions (yet?), so copy the transaction ID verbatimNalin Dahyabhai2012-01-161-1/+1
|
* whitespace fixupsNalin Dahyabhai2012-01-131-5/+5
|
generated by cgit (git 2.34.1) at 2025-08-29 05:25:48 +0000