summaryrefslogtreecommitdiffstats
path: root/server/providers/ldap/ldap_common.h
Commit message (Collapse)AuthorAgeFilesLines
* Rename server/ directory to src/Stephen Gallagher2010-02-181-115/+0
| | | | Also update BUILD.txt
* Try to renew Kerberos credentialsSumit Bose2009-12-071-0/+1
| | | | | | | | When using GSSAPI we need a valid service ticket to talk to the LDAP server. If the ticket is expired the LDAP client returns with 'Can't contact LDAP server'. Currently we set the backend offline if this error occurs although the server is still available. This patch checks if the TGT is expired and tries to renew the credentials before going offline.
* Setup ldap child logging from IPA backendJakub Hrozek2009-12-031-0/+3
| | | | Fixes: #296
* Get TGT in a child process.Jakub Hrozek2009-11-251-0/+3
| | | | | | | To avoid blocking in a synchronous call, the TGT is saved in a separate process Fixes: #277
* Add ldap_pwd_policy optionSumit Bose2009-11-231-0/+4
|
* Add initial failover support for ldap and ipaSimo Sorce2009-11-201-1/+9
| | | | | | | The retun values are still not directly used with ldap libraries that still do their own name resolution, but this patch introduces a very basic framework to have a multiple providers in one domain use and share a single failover service if they want to.
* Better behavior on cleanupSimo Sorce2009-11-201-1/+3
| | | | | | | | | | | | With the previous code in domains with many users and enumeration enable we would eventually end up making thousands of individual searches for entries in the clean-up process. Change the code to do a full enumeration before a cleanup so we do one single big search to update all entries and only then search for entries to purge. This also fixes the fact that the cleanup task was running at every enumeration instead of running every "ldap_purge_cache_timeout" seconds.
* Add cleanup taskSimo Sorce2009-11-101-3/+18
|
* Reorganize ldap id provider filesSimo Sorce2009-11-061-0/+7
| | | | Split enum task in a separate file.
* Add support to get rootDSE from the LDAP server.Simo Sorce2009-10-291-0/+3
| | | | | | | | | | | | Also fic sdap_get_generic_send() to be a bit more "generic" :-) Also figs bugs within it. This patch allow us 2 good things. A) we check that the server effectively supports GSSAPI auth before we try to use it. B) against IPA it substantially cuts delays when the server is offline because it uses a 5 second async timeout on the connection and doesn't try to do a slow synchronous kinit+sasl_bind if the server is not even available.
* Move all ldap provider init functionsSimo Sorce2009-10-161-0/+37
| | | | | Put all init functions in their own file so that the other files can be reused in other providers w/o having them in the way.
* Move ldap provider configuration into its own fileSimo Sorce2009-10-141-0/+32
generated by cgit (git 2.34.1) at 2024-06-13 13:38:50 +0000