summaryrefslogtreecommitdiffstats
path: root/src/db
Commit message (Collapse)AuthorAgeFilesLines
* Fix potential crashes in sysdb_attrs_primary_nameStephen Gallagher2011-03-231-4/+6
| | | | | | | | | | | | | | Don't crash if we get a multivalued name without an origDN Coverity 10740 and 10739 Don't crash on error if _name parameter unspecified Coverity 10738 Check result of talloc_strdup() properly Coverity 10737
* Add sysdb_attrs_primary_name_list() routineStephen Gallagher2011-03-232-0/+59
| | | | | | This routine will replace the use of sysdb_attrs_to_list() for any case where we're trying to get the name of the entry. It's a necessary precaution in case the name is multi-valued.
* Use fake groups during IPA initgroupsJakub Hrozek2011-03-232-2/+9
| | | | | | | | | | Add originalDN to fake groups Use fake groups during IPA schema initgroups https://fedorahosted.org/sssd/ticket/822 Use sysdb_attrs_primary_name() in sdap_initgr_nested_store_group
* Ignore alternate names for users and groupsStephen Gallagher2011-03-232-13/+156
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Create sysdb_get_rdn() function This function takes a DN formatted string and returns the RDN value from it. Add sysdb_attrs_primary_name() This function will check a sysdb_attrs struct for the primary name of the entity it represents. If there are multiple entries, it will pick the one that matches the RDN. If none match, it will throw an error. Ignore aliases for users Users in ldap with multiple values for their username attribute will now be compared against the RDN of the entry to determine the "primary" username. We will save only this primary name to the ldb cache. RFC2307: Ignore aliases for groups Groups in ldap with multiple values for their groupname attribute will now be compared against the RDN of the entry to determine the "primary" group name. We will save only this primary group name to the ldb cache. RFC2307bis: Ignore aliases for groups Groups in ldap with multiple values for their groupname attribute will now be compared against the RDN of the entry to determine the "primary" group name. We will save only this primary group name to the ldb cache.
* Do not try to delete sysbd memberOf attributeSumit Bose2011-03-071-0/+4
|
* Delete attributes that are removed from LDAPStephen Gallagher2011-01-212-0/+125
| | | | | | | | Sometimes, a value in LDAP will cease to exist (the classic example being shadowExpire). We need to make sure we purge that value from SSSD's sysdb as well. https://fedorahosted.org/sssd/ticket/750
* Do not throw a DP error when a netgroup is not foundStephen Gallagher2011-01-141-1/+4
| | | | https://fedorahosted.org/sssd/ticket/775
* Work around libldb bugStephen Gallagher2011-01-141-2/+10
| | | | | Libldb performs non-indexed searches for ONELEVEL requests. We'll use SUBTREE instead to reduce the performance hit substantially
* Add authorizedService supportStephen Gallagher2010-12-211-0/+2
| | | | https://fedorahosted.org/sssd/ticket/670
* Add sysdb_has_enumerated and sysdb_set_enumerated helper functionsStephen Gallagher2010-12-202-0/+152
| | | | Includes a unit test
* Fix const cast issue with sysdb_attrs_users_from_str_listStephen Gallagher2010-11-152-2/+2
|
* Fix const cast warning for sysdb_update_membersStephen Gallagher2010-11-152-4/+4
|
* Sanitize sysdb DN helpersStephen Gallagher2010-11-151-7/+83
|
* Sanitize search filters for the sysdbStephen Gallagher2010-11-151-6/+39
|
* Add sysdb utility function for sanitizing DNStephen Gallagher2010-11-152-0/+27
|
* Always use uint32_t for UID/GID numbersJakub Hrozek2010-10-262-9/+9
|
* Modify sysdb_[add|remove]_group_member to accept users and groupsStephen Gallagher2010-10-182-39/+91
| | | | | | | | Previously, it assumed that all members were users. This changes the interface so that either a user or a group can be specified. Also, it eliminates the need for a memory context to be passed, since the internal memory should be self-contained.
* sysdb interface for adding fake usersJakub Hrozek2010-10-152-0/+65
|
* sysdb interface for adding incomplete groupsJakub Hrozek2010-10-152-0/+49
| | | | Useful for optimizing the initgroups operation.
* Add sysdb_attrs_get_ulong utility functionJakub Hrozek2010-10-152-0/+29
|
* Implement netgroup support for LDAP providerSumit Bose2010-10-131-0/+3
|
* Also return member groups to the clientSumit Bose2010-10-132-60/+83
|
* Add sysdb_netgroup_base_dn()Sumit Bose2010-10-132-0/+8
|
* Do not fail if netgroup exists just update the attributesSumit Bose2010-10-131-1/+1
|
* Netgroups sysdb APIStephen Gallagher2010-10-134-2/+802
|
* Fix sysdb_attrs_to_listJakub Hrozek2010-09-221-2/+2
|
* Fix sysdb_group_dn_nameJakub Hrozek2010-09-221-1/+8
|
* Initgroups on a non-cached user should go to the data providerStephen Gallagher2010-09-221-1/+11
| | | | | | | We were accidentally returning an error when sysdb_getpwnam() returned zero results internally in sysdb_initgroups(). The correct behavior here is to return EOK and a result object with zero entries.
* Fix missing variable substitution in DEBUG messageStephen Gallagher2010-09-221-2/+2
|
* Define objectclass with a constantJakub Hrozek2010-09-152-3/+4
| | | | Use a #define instead of hardcoded string
* Dead assignments cleanup in various places in SSSDJan Zeleny2010-09-081-0/+3
| | | | | | Three assignments deleted, two return code inspection added. Also found and fixed one critical bug caused by dead assignment. Ticket: #590
* Move crypto functions into its own subdirJakub Hrozek2010-09-081-1/+1
| | | | | | A refactoring patch that creates a common util/crypto subdir with per-implementation subdirectories for each underlying crypto library supported by SSSD.
* Add sysdb_update_members functionStephen Gallagher2010-08-032-0/+61
| | | | | | | | This function will take a user, a list of groups that this user should be added to and a list of groups the user should be removed from and will recursively call sysdb_[add|remove]_group_member Includes a unit test
* Add sysdb_group_dn_name utility functionStephen Gallagher2010-08-032-0/+24
|
* Add sysdb_attrs_to_list() utility functionStephen Gallagher2010-08-032-0/+81
|
* Add sysdb_attrs_get_string_array()Sumit Bose2010-06-022-0/+35
|
* Add ldap_access_filter optionStephen Gallagher2010-05-272-0/+12
| | | | | | | | | | This option (applicable to access_provider=ldap) allows the admin to set an additional LDAP search filter that must match in order for a user to be granted access to the system. Common examples for this would be limiting access to users by in a particular group, for example: ldap_access_filter = memberOf=cn=access_group,ou=Groups,dc=example,dc=com
* Add support for delayed kinit if offlineSumit Bose2010-05-262-2/+13
| | | | | | | If the configuration option krb5_store_password_if_offline is set to true and the backend is offline the plain text user password is stored and used to request a TGT if the backend becomes online. If available the Linux kernel key retention service is used.
* sysydb: Finally stop using a common event contextSimo Sorce2010-04-123-23/+7
| | | | This commit completes the migration to a synchronous sysdb
* sysdb: remove remaining traces of sysdb_handleSimo Sorce2010-04-123-222/+0
|
* sysdb: remove obsolete helpers from sysdbSimo Sorce2010-04-122-158/+0
|
* sysdb: convert sysdb_initgroupsSimo Sorce2010-04-122-96/+49
|
* sysdb: convert sysdb_enumgrentSimo Sorce2010-04-122-56/+34
|
* sysdb: convert sysdb_enumpwentSimo Sorce2010-04-122-55/+23
|
* sysdb: convert sysdb_get_user_attrSimo Sorce2010-04-122-18/+23
|
* sysdb: convert sysdb_getgrgidSimo Sorce2010-04-122-22/+34
|
* sysdb: convert sysdb_getgrnamSimo Sorce2010-04-122-18/+47
|
* sysdb: convert sysdb_getpwuidSimo Sorce2010-04-122-19/+23
|
* sysdb: convert sysdb_getpwnamSimo Sorce2010-04-122-18/+22
|
* sysdb: add automatic transactions where neededSimo Sorce2010-04-121-7/+47
| | | | | | Only functions that do multiple operations need explicit transactions as ldb_add/ldb_modify/ldb_delete already start transactions automatically intenrally.
generated by cgit (git 2.34.1) at 2024-05-04 01:54:07 +0000