sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
*	Primary server support: new option in ldap provider	Jan Zeleny	2012-08-01	3	-0/+4
\| \| \| \| \| \|	This patch adds support for new config option ldap_backup_uri. The description of this option's functionality is included in man page in previous patch.
*	add hostid and subdomains sections in sssd-ipa.conf	Pavel Březina	2012-07-23	1	-1/+5
\| \| \| \|	https://fedorahosted.org/sssd/ticket/1368
*	AD: Add manpages and SSSDConfig entries	Stephen Gallagher	2012-07-06	1	-0/+121
\|
*	sudo: add host info options	Pavel Březina	2012-06-29	1	-0/+5
\| \| \| \| \| \| \| \| \| \|	Adds some option that allows to manually configure a host filter. ldap_sudo_use_host_filter - if false, we will download all rules regardless their sudoHost attribute ldap_sudo_hostnames - list hostnames and/or fqdn that should be downloaded, separated with spaces ldap_sudo_ip - list of IPv4/6 address and/or network that should be downloaded, separated with spaces ldap_sudo_include_netgroups - include rules that contains netgroup in sudoHost ldap_sudo_include_regexp - include rules that contains regular expression in sudoHost
*	sudo provider: add ldap_sudo_smart_refresh_interval	Pavel Březina	2012-06-29	1	-0/+1
\|
*	sudo provider: remove old timer	Pavel Březina	2012-06-29	1	-2/+0
\|
*	sudo provider: add ldap_sudo_full_refresh_interval	Pavel Březina	2012-06-29	1	-0/+1
\|
*	Add support for ID ranges	Sumit Bose	2012-06-21	1	-0/+1
\|
*	LDAP: Add ldap_*_use_matching_rule_in_chain options	Stephen Gallagher	2012-06-13	2	-0/+4
\|
*	IPA subdomains - ask for information about master domain	Jan Zeleny	2012-06-10	1	-0/+1
\| \| \| \| \| \| \|	The query is performed only if there is missing information in the cache. That means this should be done only once after restart when cache doesn't exist. All subsequent requests for subdomains won't include the request for master domain.
*	LDAP: Map the user's primaryGroupID	Stephen Gallagher	2012-05-03	2	-0/+2
\|
*	LDAP: Allow setting a default domain for id-mapping slice 0	Stephen Gallagher	2012-05-03	2	-0/+4
\|
*	LDAP: Add autorid compatibility mode	Stephen Gallagher	2012-05-03	2	-0/+2
\|
*	LDAP: Add ID mapping range settings	Stephen Gallagher	2012-05-03	2	-0/+6
\|
*	LDAP: Add id-mapping option	Stephen Gallagher	2012-05-03	2	-0/+2
\|
*	LDAP: Add objectSID config option	Stephen Gallagher	2012-05-03	2	-0/+4
\|
*	IPA: Add get-domains target	Sumit Bose	2012-04-24	1	-0/+1
\|
*	proxy: new option proxy_fast_alias	Jakub Hrozek	2012-04-20	1	-0/+1
\|
*	SELinux related attributes added to config API	Jan Zeleny	2012-02-24	1	-0/+10
\|
*	IPA hosts refactoring	Jan Zeleny	2012-02-24	1	-0/+20
\|
*	AUTOFS: IPA provider	Jakub Hrozek	2012-02-07	2	-0/+6
\|
*	IPA: Add host info handler	Jan Cholasta	2012-02-07	1	-0/+1
\|
*	LDAP: Add support for SSH user public keys	Jan Cholasta	2012-02-07	2	-0/+2
\|
*	LDAP: Add new options for service maps	Stephen Gallagher	2012-01-31	2	-1/+12
\| \| \| \| \|	Adds the new service map options to the SSSDConfig API and the manpages.
*	LDAP: Add option to disable paging control	Stephen Gallagher	2012-01-18	2	-0/+2
\| \| \| \|	Fixes https://fedorahosted.org/sssd/ticket/967
*	SUDO Integration - periodical update of rules in data provider	Pavel Březina	2012-01-17	1	-0/+2
\| \| \| \| \| \| \| \|	https://fedorahosted.org/sssd/ticket/1110 Adds new configuration options: - ldap_sudo_refresh_enabled - enable/disable periodical updates - ldap_sudo_refresh_timeout - rules timeout (refresh period)
*	SUDO Integration review issues	Pavel Březina	2012-01-17	1	-0/+14
\|
*	Fix typo in IPA SSSDConfig file	Stephen Gallagher	2011-12-13	1	-1/+1
\|
*	Add sdap_connection_expire_timeout option	Stephen Gallagher	2011-12-12	2	-0/+2
\| \| \| \|	https://fedorahosted.org/sssd/ticket/1036
*	Add ldap_sasl_minssf option	Jan Zeleny	2011-12-08	2	-0/+2
\| \| \| \|	https://fedorahosted.org/sssd/ticket/1075
*	Add ipa_hbac_support_srchost option to IPA provider	Jan Zeleny	2011-11-29	1	-0/+1
\| \| \| \| \|	don't fetch all host groups if this option is false https://fedorahosted.org/sssd/ticket/1078
*	Added and modified options for IPA netgroups	Jan Zeleny	2011-11-23	1	-6/+12
\|
*	Support to request canonicalization in LDAP/IPA provider	Jan Zeleny	2011-11-02	2	-0/+2
\| \| \| \|	https://fedorahosted.org/sssd/ticket/957
*	Add support to request canonicalization on krb AS requests	Jan Zeleny	2011-11-02	1	-0/+1
\| \| \| \|	https://fedorahosted.org/sssd/ticket/957
*	Added krb5_fast_principal to SSSDConfig API	Jan Zeleny	2011-10-31	2	-0/+2
\|
*	Add missing options to sssd.api.conf	Marko Myllynen	2011-09-20	1	-0/+6
\|
*	Add LDAP provider option to set LDAP_OPT_X_SASL_NOCANON	Jakub Hrozek	2011-08-26	1	-0/+1
\| \| \| \|	https://fedorahosted.org/sssd/ticket/978
*	Add LDAP access control based on NDS attributes	Sumit Bose	2011-07-08	1	-0/+3
\|
*	Add ipa_hbac_treat_deny_as option	Stephen Gallagher	2011-07-08	1	-0/+1
\| \| \| \| \| \|	By default, we will treat the presence of any DENY rule as denying all users. This option will allow the admin to explicitly ignore DENY rules during a transitional period.
*	Add ipa_hbac_refresh option	Stephen Gallagher	2011-07-08	1	-0/+1
\| \| \| \| \|	This option describes the time between refreshes of the HBAC rules on the IPA server.
*	Use dereference when processing RFC2307bis nested groups	Jakub Hrozek	2011-05-20	2	-0/+3
\| \| \| \| \| \| \| \|	Instead of issuing N LDAP requests when processing a group with N users, utilize the dereference functionality to pull down all the members in a single LDAP request. https://fedorahosted.org/sssd/ticket/799
*	Add ldap_page_size configuration option	Stephen Gallagher	2011-04-27	1	-0/+1
\|
*	Configuration parsing updates	Jan Zeleny	2011-04-25	3	-5/+5
\| \| \| \| \| \| \| \| \| \| \| \|	These changes are all related to following ticket: https://fedorahosted.org/sssd/ticket/763 Changes in SSSDConfig.py merge old and new domain record instead of just deleting the old and inserting the new one. The old approach let to loss of some information like comments and blank lines in the config file. Changes in API config were performed so our Python scripts (like sss_obfuscate) don't add extra config options to the config file.
*	Add host access control support	Pierre Ossman	2011-03-24	1	-0/+1
\| \| \| \|	https://fedorahosted.org/sssd/ticket/746
*	Add support for krb5 access provider to SSSDConfig API	Stephen Gallagher	2011-03-17	1	-0/+2
\|
*	Add ldap_tls_{cert,key,cipher_suite} config options	Tyson Whitehead	2011-01-20	2	-0/+6
\| \| \| \|	Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
*	Add ipa_hbac_search_base config option	Sumit Bose	2011-01-19	1	-0/+1
\|
*	Add LDAP expire policy base RHDS/IPA attribute	Sumit Bose	2011-01-19	1	-0/+1
\| \| \| \| \|	The attribute nsAccountLock is used by RHDS, IPA and other directory servers to indicate that the account is locked.
*	Add LDAP expire policy based on AD attributes	Sumit Bose	2011-01-19	1	-0/+2
\| \| \| \| \| \|	The second bit of userAccountControl is used to determine if the account is enabled or disabled. accountExpires is checked to see if the account is expired.
*	Add ldap_search_enumeration_timeout config option	Sumit Bose	2011-01-17	1	-0/+1
\|