sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
*	LDAP: Only convert direct parents' ghost attribute to member	Jakub Hrozek	2012-11-21	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting.
*	Refactor the way subdomain accounts are saved	Simo Sorce	2012-11-19	1	-0/+40
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The original sysdb code had a strong assumption that only users from one domain are saved in the databse, with the subdomain feature, we have changed reality, but have not adjusted all the code arund the sysdb calls to not rely on the original assumption. One of the side effects of this incongrunece is that currently group memberships do not return fully qualified names for subdomain users as they should. In oreder to fix this and other potential issues surrounding the violation of the original assumption, we need to fully qualify subdomain user names. By savin them fully qualified we do not risk aliasing local users and have group memberhips or other name based matching code mistake a domain user with subdomain usr or vice versa.
*	sysdb_master_domain_get_info: fix copy-and-paste error	Sumit Bose	2012-10-01	1	-2/+2
\|
*	SYSDB: NULL-terminate the output of sysdb_get_{ranges,subdomains}	Jakub Hrozek	2012-09-10	1	-1/+3
\|
*	Unify usage of sysdb transactions (part 2).	Michal Zidek	2012-09-04	1	-3/+3
\|
*	Change refreshing of subdomains	Simo Sorce	2012-08-01	1	-6/+7
\| \| \| \| \| \| \| \| \|	This patch keeps a local copy of the subdomains in the ipa subdomains plugin context. This has 2 advantages: 1. allows to check if anything changed w/o always hitting the sysdb. 2. later will allows us to dump this information w/o having to retrieve it again. The timestamp also allows to avoid refreshing too often.
*	Add realm paramter to subdomain list	Simo Sorce	2012-08-01	1	-0/+58
\| \| \| \|	This will be used later for setting domain_realm mappings in krb5.conf
*	Fix return error and debug message	Simo Sorce	2012-08-01	1	-2/+7
\| \| \| \| \| \|	The debuf message was trying to print the number of returned entries, but no integer was provided. Return ENOENT as the error for when there are no entries, not EINVAL.
*	Use ldb_msg_add_string with bare strings	Simo Sorce	2012-08-01	1	-9/+7
\|
*	Fix wrong elements used in comparison	Simo Sorce	2012-08-01	1	-2/+2
\|
*	Fix double semi-colons	Simo Sorce	2012-08-01	1	-5/+5
\|
*	80 columns police	Simo Sorce	2012-08-01	1	-8/+13
\|
*	Change subdomain_info	Simo Sorce	2012-08-01	1	-12/+12
\| \| \| \| \|	Rename the structure to use a standard name prefix so it is properly name-spaced, in preparation for changing the structure itself.
*	IPA subdomains - ask for information about master domain	Jan Zeleny	2012-06-10	1	-0/+166
\| \| \| \| \| \| \|	The query is performed only if there is missing information in the cache. That means this should be done only once after restart when cache doesn't exist. All subsequent requests for subdomains won't include the request for master domain.
*	Sysdb routines for subdomains	Jan Zeleny	2012-04-24	1	-0/+435