summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* Updating translations for the 1.9.0 releasesssd-1_9_0Jakub Hrozek2012-09-2432-4701/+4837
|
* Set the version number to 1.9.0 for the releaseJakub Hrozek2012-09-241-1/+1
|
* RPM: Create ghost files during installJakub Hrozek2012-09-241-0/+5
|
* Detect LDAPDerefRes in configure scriptJakub Hrozek2012-09-241-1/+9
| | | | https://fedorahosted.org/sssd/ticket/1317
* KRB5: Recover gracefully if the ccache file could not be reusedJakub Hrozek2012-09-241-4/+6
| | | | https://fedorahosted.org/sssd/ticket/1384
* Bad debug message when no dns_discovery_domain specified.Michal Zidek2012-09-241-3/+11
| | | | https://fedorahosted.org/sssd/ticket/920
* DB: Use TALLOC_CTX for talloc contextJakub Hrozek2012-09-241-10/+10
| | | | A couple of sysdb functions used "void *" in place of a TALLOC_CTX.
* SYSDB: Remove unnecessary domain parameter from several sysdb callsJakub Hrozek2012-09-2415-115/+79
| | | | | The domain can be read from the sysdb object. Removing the domain string makes the API more self-contained.
* AUTOFS: convert the existing autofs entries during a sysdb upgradeJakub Hrozek2012-09-243-1/+144
|
* AUTOFS: Use both key and value in entry RDNJakub Hrozek2012-09-244-14/+51
| | | | | | This patch switches from using just key in the RDN to using both key and value. That is neccessary to allow multiple direct mounts in a single map.
* AUTOFS: Add entry objects below map objectsJakub Hrozek2012-09-246-220/+172
| | | | | | | | https://fedorahosted.org/sssd/ticket/1506 Changes how the new autofs entry objects are handled. Instead of creating the entry on the cn=autofs,cn=custom level, the entry is created below the map it belongs to.
* AUTOFS: Add sysdb testsJakub Hrozek2012-09-241-0/+249
|
* AUTOFS: Do not fail if search base is not providedJakub Hrozek2012-09-241-2/+2
|
* AD: Handle sysdb lookup failure during tokenGroups processingStephen Gallagher2012-09-241-0/+6
|
* Make subdomain discovery less noisySumit Bose2012-09-241-15/+16
| | | | Fixes https://fedorahosted.org/sssd/ticket/1517
* autofs, sudo, ssh and PAC are not experimental anymoreJakub Hrozek2012-09-247-76/+10
|
* sdap_add_incomplete_groups(): fix ret may be uninitialized warningPavel Březina2012-09-241-1/+1
|
* AD: Optimize initgroups lookups with tokenGroupsStephen Gallagher2012-09-243-4/+313
| | | | https://fedorahosted.org/sssd/ticket/1355
* AD: Detect domain controller compatibility versionStephen Gallagher2012-09-243-0/+44
|
* sss_cache tool invalidates records in memory cache.Michal Zidek2012-09-247-3/+166
|
* tools_util.h provides signal_sssd function.Michal Zidek2012-09-243-99/+99
|
* Mark the fastcache files in the spec file as %ghostJakub Hrozek2012-09-241-0/+2
| | | | https://fedorahosted.org/sssd/ticket/1487
* AD: autorid compatibility should recommend the use of default domainStephen Gallagher2012-09-241-4/+4
| | | | | | | | | | | Previously, we were failing to start if ldap_idmap_autorid_compat was True but the default domain SID was unspecified. This is the recommended configuration, but it is functional without it. There is just a slight risk that the IDs will be inconsistent between machines if the first user requested is not from the default domain. https://fedorahosted.org/sssd/ticket/1530
* SSSD fails to store users if any of the requested attribute is empty.Michal Zidek2012-09-201-0/+6
| | | | https://fedorahosted.org/sssd/ticket/1440
* Add more debuginfo into ldap_childOndrej Kos2012-09-201-23/+36
| | | | | | | https://fedorahosted.org/sssd/ticket/1225 krb5_child already updated before. Adding more debuginfo into ldap_child. Also old debug levels rewritten into new macros.
* Add provider specific default regular expressionsSumit Bose2012-09-201-0/+62
| | | | Fixes https://fedorahosted.org/sssd/ticket/1524
* DB: Cancel transaction in sysdb_store_user if sysdb_add_user failsJakub Hrozek2012-09-201-1/+8
|
* SSH: Fix possible infinite loop when updating known_hostsJan Cholasta2012-09-201-3/+1
|
* Missing resolv.conf should be non-fatalAriel Barria2012-09-201-17/+43
| | | | https://fedorahosted.org/sssd/ticket/1371
* LDB_ERR_INVALID_ATTRIBUTE_SYNTAX added to sysdb_error_to_errno.Michal Zidek2012-09-201-0/+2
|
* KRB5 child: handle more error codes gracefullyJakub Hrozek2012-09-201-31/+26
| | | | | This patch changes handling of krb5 child error codes so that it's on par with the 1.8 branch after Joschi Brauchle reviewed the 1.8 backport.
* KRB5 child: Don't return System Error on empty passwordJakub Hrozek2012-09-201-0/+4
| | | | https://fedorahosted.org/sssd/ticket/1310
* rpm: put localized sssd_krb5_locator_plugin manpages into clientPavel Březina2012-09-171-1/+5
| | | | | | | Localized sssd_krb5_locator_plugin manpages were added into main sssd package instead of client. https://fedorahosted.org/sssd/ticket/1394
* Failover: use _srv_ when no primary server is definedPavel Březina2012-09-174-46/+12
| | | | https://fedorahosted.org/sssd/ticket/1521
* Updating the version for the RC1 releaseJakub Hrozek2012-09-131-1/+1
|
* Updating the translations for the 1.9.0 RC1 releasesssd-1_9_0_rc1sssd-1_8_98Jakub Hrozek2012-09-1330-214/+284
|
* SELinux: Always use the default if it exists on the serverJakub Hrozek2012-09-133-33/+39
| | | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1513 This is a counterpart of the FreeIPA ticket https://fedorahosted.org/freeipa/ticket/3045 During an e-mail discussion, it was decided that * if the default is set in the IPA config object, the SSSD would use that default no matter what * if the default is not set (aka empty or missing), the SSSD would just use the system default and skip creating the login file altogether
* DB: Always write the SELinux object to sysdbJakub Hrozek2012-09-131-70/+8
| | | | | | There's no point in checking if the object already exists because we always wipe the whole sysdb subtree. We were also immediatelly cancelling the transaction because we'd jump to goto, even though it was with EOK.
* FO: Check server validity before setting statusJakub Hrozek2012-09-137-33/+49
| | | | | | | | | | | | | | | | | The list of resolved servers is allocated on the back end context and kept in the fo_service structure. However, a single request often resolves a server and keeps a pointer until the end of a request and only then gives feedback about the server based on the request result. This presents a big race condition in case the SRV resolution is used. When there are requests coming in in parallel, it is possible that an incoming request will invalidate a server until another request that holds a pointer to the original server is able to give a feedback. This patch simply checks if a server is in the list of servers maintained by a service before reading its status. https://fedorahosted.org/sssd/ticket/1364
* NSS: Fix off-by-one error in parse_getservbynameJakub Hrozek2012-09-131-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1438
* backend: initialize sudo only when it is enabled in servicesPavel Březina2012-09-121-3/+63
| | | | | | | https://fedorahosted.org/sssd/ticket/1458 When the responder is disabled and sudo_provider is set explicitly, a warning is print and the module will be initialized.
* be_process_init(): free ctx on errorPavel Březina2012-09-121-15/+21
|
* netgroup: resolve hostgroup membership correctlyPavel Březina2012-09-121-1/+1
| | | | | | | | https://fedorahosted.org/sssd/ticket/1519 IPA host refactoring changed mapping of memberOf attribute which caused SSSD being unable to retrieve membership of hostgroup when being interpreted as netgroup.
* Remove obsolete commentSimo Sorce2012-09-121-5/+0
| | | | Made obsolete by commit e2d17ea806d273784b621583dd0490c2f69f237d
* KRB5: Add a missing string argumentJakub Hrozek2012-09-101-1/+2
|
* SYSDB: NULL-terminate the output of sysdb_get_{ranges,subdomains}Jakub Hrozek2012-09-103-4/+7
|
* RPM: BuildRequire selinux-policy-targetedJakub Hrozek2012-09-101-0/+1
| | | | | | selinux-policy-targeted contains the /etc/selinux/targeted/logins directory that is checked during build time to determine if the platform supports SELinux user logins.
* KRB5: Return PAM_AUTH_ERR on incorrect passwordJakub Hrozek2012-09-101-19/+32
| | | | https://fedorahosted.org/sssd/ticket/1515
* KRB5: cancel the sysdb transaction on one place onlyJakub Hrozek2012-09-101-1/+0
| | | | | | | https://fedorahosted.org/sssd/ticket/1516 If sysdb_set_user_attr failed, we would cancel the transaction, then go to the error handler and attempt to close it again.
* Out-of-bounds read fix in hmac-sha-1Ondrej Kos2012-09-071-1/+3
|
generated by cgit (git 2.34.1) at 2024-04-25 06:24:17 +0000