sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
*	AD-GPO: processing changes for gpo_map_* options	Yassir Elley	2014-09-08	1	-0/+13
\| \| \| \| \|	Reviewed-by: Sumit Bose <sbose@redhat.com> Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com>
*	AD-GPO: add ad_gpo_cache_timeout option	Yassir Elley	2014-07-31	1	-0/+1
\| \| \| \|	Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
*	Implemented LDAP component of GPO-based access control	Yassir Elley	2014-05-13	1	-0/+6
\| \| \| \| \|	Reviewed-by: Sumit Bose <sbose@redhat.com> Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
*	AD: Add a utility function to create list of connections	Jakub Hrozek	2013-12-19	1	-3/+1
\| \| \| \| \| \| \| \| \| \|	ad_id.c and ad_access.c used the same block of code. With the upcoming option to disable GC lookups, we should unify the code in a function to avoid breaking one of the code paths. The same applies for the LDAP connection to the trusted AD DC. Includes a unit test.
*	AD: Search GC by default during access control, fall back to LDAP	Jakub Hrozek	2013-10-25	1	-1/+3
\| \| \| \| \| \| \| \| \| \|	Resolves: https://fedorahosted.org/sssd/ticket/2082 In order to allow the ad_access_filter option to work for subdomain users as well, the Global Catalog must be searched. This patch adds a wrapper request atop sdap_access_send that selects the right connection (GC or LDAP) and optionally falls back to LDAP.
*	AD: Add AD access-control provider	Stephen Gallagher	2012-07-06	1	-0/+35
	This patch adds support for checking whether a user is expired or disabled in AD.