summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* Clear up -Wunused-but-set-variable warningsStephen Gallagher2011-06-023-8/+4
|
* Fix bad mergeStephen Gallagher2011-06-021-0/+1
| | | | | We merged in a patch, but missed that it missed a dependency added by another earlier patch.
* Non-posix group processing - ldap provider and nss responderJan Zeleny2011-06-023-31/+80
|
* Non-posix group processing - sysdb changesJan Zeleny2011-06-023-21/+28
|
* Added sysdb_attrs_get_bool() functionJan Zeleny2011-06-022-0/+24
|
* Escape IPv6 IP addresses in the IPA providerJakub Hrozek2011-06-021-4/+26
| | | | https://fedorahosted.org/sssd/ticket/880
* Use escaped IP addresses in LDAP providerJakub Hrozek2011-06-021-6/+56
|
* Add a utility function to escape IPv6 address for use in URIsJakub Hrozek2011-06-022-0/+11
|
* Add utility function to return IP address as stringJakub Hrozek2011-06-024-17/+31
|
* Add online callback only once for TGT renewalSumit Bose2011-06-021-25/+44
|
* Ensure that SSSD always Requires: the primary-arch sssd-clientStephen Gallagher2011-05-311-1/+1
| | | | https://bugzilla.redhat.com/show_bug.cgi?id=709333
* Fix typo in initgroups negative cache checkStephen Gallagher2011-05-311-1/+1
|
* Changing default to Default for consistencyKaushik Banerjee2011-05-311-1/+1
|
* Update version to 1.5.9Stephen Gallagher2011-05-271-1/+1
|
* Updating translations for SSSD 1.5.8 releasesssd-1_5_8Stephen Gallagher2011-05-27114-18715/+21357
|
* Update version to 1.5.8Stephen Gallagher2011-05-271-1/+1
|
* Add more detail to ldap_uri manpage entryStephen Gallagher2011-05-271-1/+13
|
* Sanitize username during initgroups callSumit Bose2011-05-251-1/+7
|
* IPA Provider: don't fail if user is not a member of any groupsStephen Gallagher2011-05-241-2/+5
|
* Enable paging support for LDAPStephen Gallagher2011-05-249-26/+148
|
* simple provider: Don't treat primary GID lookup failures as fatalStephen Gallagher2011-05-241-13/+19
|
* Only save members for successfully saved groupsJakub Hrozek2011-05-241-2/+17
|
* Make "password" the default for ldap_default_authtok_typeStephen Gallagher2011-05-242-1/+4
|
* Set c-ares to retry nameserversJakub Hrozek2011-05-121-1/+1
| | | | https://fedorahosted.org/sssd/ticket/867
* clients: use poll instead of selectSimo Sorce2011-05-031-9/+6
| | | | | | | select is limited to fd numbers up to 1024, we need to use poll() here to avoid causing memory corruption in the calling process. Fixes: https://fedorahosted.org/sssd/ticket/861
* Return pam data to the renewal item if renewal failsSumit Bose2011-05-021-4/+9
| | | | | | | | | A previous patch changed a talloc_steal() into a talloc_move(). Now it is not enough to change the parent memory context with talloc_steal to give back the data, but it has to be assigned back too. Additionally this patch uses the missing pam data as an indication that a renewal request for this data is currently running.
* Fix bad password caching when using automatic TGT renewalsssd-1_5_7Stephen Gallagher2011-04-291-3/+12
| | | | Fixes CVE-2011-1758, https://fedorahosted.org/sssd/ticket/856
* Bumping version to 1.5.7Stephen Gallagher2011-04-211-1/+1
|
* Bumping version to 1.5.6.1sssd-1_5_6_1Stephen Gallagher2011-04-201-1/+1
|
* Bumping version to 1.5.7Stephen Gallagher2011-04-201-1/+1
|
* Always generate kpasswdinfo filesssd-1_5_6Stephen Gallagher2011-04-201-2/+1
| | | | | Previously, we only generated it when performing a password change, but this didn't play nicely with kpasswd.
* Bumping version to 1.5.6Stephen Gallagher2011-04-151-1/+1
|
* Fix regression where nonexistent entries were never added to the negative cacheStephen Gallagher2011-04-151-21/+21
|
* Fix a regression with the negative cache in multi-domain configurationsStephen Gallagher2011-04-151-3/+18
|
* Add debug logging to the negative cacheStephen Gallagher2011-04-151-0/+5
|
* Do not throw a DP error when failing to delete a nonexistent entityStephen Gallagher2011-04-151-4/+4
|
* memberof: free delete operation apyload once doneSimo Sorce2011-04-141-1/+13
| | | | | | | Large memberof delete operations can cause quite a number of searches and the results are attached to a delop operation structure. Make sure we free this payload once the operation is done and these results are not used anymore so that we get a smaller total memory footprint.
* memberof: fix calculation of replaced membersSimo Sorce2011-04-141-0/+1
| | | | | We were skipping the check on the next value in the added list when a match was found for the currentr value being checked.
* Never remove gecos from the sysdb cacheStephen Gallagher2011-04-121-0/+9
| | | | | Now that gecos can come from either the 'gecos' or 'cn' attributes, we need to ensure that we never remove it from the cache.
* Updating translation filessssd-1_5_5Stephen Gallagher2011-04-121-2/+2
|
* Use safe alignment macros for in-tree SRV record parsingJakub Hrozek2011-04-121-3/+3
| | | | | | The in-tree SRV record parsing is used with very old c-ares libraries that don't implement the parsing themselves (c-ares < 1.7, used in e.g. RHEL5)
* Initialise rootdse to NULL if not availableSumit Bose2011-04-121-0/+1
|
* Initialise srv_opts even if rootDSE is missingSumit Bose2011-04-112-46/+49
|
* Remove detection of duplicates from SRV result processingJakub Hrozek2011-04-111-9/+0
|
* Read only rootDSE data if rootDSE is availableSumit Bose2011-04-081-20/+22
|
* Do not attempt to resolve nameless serversJakub Hrozek2011-04-011-1/+1
| | | | | | | | | | | The failover code is not strictly in charge of resolving. Its main function is to provide a server to connect to for a service. It is legal, although not currently used, to have a server that has no name (server->common == NULL). In this case, no resolving should be done and it is assumed that the failover user, which are the SSSD back ends in our case, would perform any resolving out of band, perhaps using the user_data attribute of fo_server structure.
* Fall back to cn if gecos is not availableStephen Gallagher2011-03-301-0/+9
| | | | | | | | | | | | | We were not fully compliant with section 5.3 of RFC 2307 which states: An account's GECOS field is preferably determined by a value of the gecos attribute. If no gecos attribute exists, the value of the cn attribute MUST be used. (The existence of the gecos attribute allows information embedded in the GECOS field, such as a user's telephone number, to be returned to the client without overloading the cn attribute. It also accommodates directories where the common name does not contain the user's full name.)
* Mark transaction as done when cancelledJakub Hrozek2011-03-281-2/+8
|
* RFC2307: Ignore zero-length member names in group lookupsStephen Gallagher2011-03-281-0/+4
|
* Always complete the transaction in sdap_process_group_members_2307Stephen Gallagher2011-03-281-0/+11
| | | | | | If the loop ran through at least one sdap_process_missing_member_2307() call and errored out later, we were not canceling the transaction.
generated by cgit (git 2.34.1) at 2024-04-25 16:35:40 +0000