summaryrefslogtreecommitdiffstats
path: root/src/providers/ipa
Commit message (Collapse)AuthorAgeFilesLines
* IPA: Initialize hbac_ctx to NULLsssd-1.8.0-15.el6Stephen Gallagher2012-03-121-1/+1
|
* IPA: Fix segfault with srchost functionality enabledStephen Gallagher2012-03-091-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1215
* IPA: Check nsAccountLock during PAM_ACCT_MGMTStephen Gallagher2012-03-094-1/+69
| | | | https://fedorahosted.org/sssd/ticket/1227
* IPA: Set the DNS discovery domain to match ipa_domainStephen Gallagher2012-03-011-1/+3
| | | | https://fedorahosted.org/sssd/ticket/1217
* SSH: Save SSH host name aliasesJan Cholasta2012-02-271-27/+7
|
* Delete missing attributes from netgroups to be storedJan Zeleny2012-02-241-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1136
* LDAP: Only use paging control on requests for multiple entriesStephen Gallagher2012-02-246-15/+21
| | | | | | | | | | The paging control can cause issues on servers that put limits on how many paging controls can be active at one time (on some servers, it is limited to one per connection). We need to reduce our usage so that we only activate the paging control when making a request that may return an arbitrary number of results. https://fedorahosted.org/sssd/ticket/1202 phase one
* Save errno value before calling DEBUGJakub Hrozek2012-02-231-2/+4
|
* IPA: Add ipa_parse_search_base()Stephen Gallagher2012-02-231-9/+44
| | | | | | | | | | Previously, we were using sdap_parse_search_base() for setting up the search_base objects for use in IPA. However, this was generating unfriendly log messages about unknown search base types. This patch creates a new common_parse_search_base() routine that can be used with either LDAP or IPA providers. https://fedorahosted.org/sssd/ticket/1151
* Fixed issue with netgroup update in IPA providerJan Zeleny2012-02-101-24/+34
| | | | | This issue led to a netgroup with one triple (-,-,domain) when it contained no triples on the IPA server.
* Use curly braces in pkgconfig metadata fileSumit Bose2012-02-101-1/+1
|
* AUTOFS: IPA providerJakub Hrozek2012-02-074-27/+191
|
* IPA: Add host info handlerJan Cholasta2012-02-079-5/+444
|
* LDAP: Add support for SSH user public keysJan Cholasta2012-02-071-1/+2
|
* Update shadowLastChanged attribute during LDAP password changeJan Zeleny2012-02-062-1/+2
| | | | https://fedorahosted.org/sssd/ticket/1019
* Session target in IPA providerJan Zeleny2012-02-069-0/+1165
|
* Delete unused structure in IPA access codeJan Zeleny2012-02-061-7/+0
|
* Separate the host-retrieval code from IPA HBAC to common IPA codeJan Zeleny2012-02-066-469/+535
|
* Renamed some sysdb constants for their wider usageJan Zeleny2012-02-062-6/+6
|
* Make password migration code use the IPA config retrieval codeJan Zeleny2012-02-061-57/+14
|
* Add support for generic IPA config retrievalJan Zeleny2012-02-062-0/+208
|
* Fixed minor memory-hierarchy-related issue in IPA HBACJan Zeleny2012-02-061-1/+2
|
* Implemented support for multiple search bases in HBAC rules and servicesJan Zeleny2012-02-069-116/+364
|
* AUTOFS: LDAP providerJakub Hrozek2012-02-052-1/+26
|
* NSS: Add individual timeouts for entry typesStephen Gallagher2012-02-045-9/+11
| | | | https://fedorahosted.org/sssd/ticket/1016
* LDAP: Do not fail if RootDSE check cannot determine search basesStephen Gallagher2012-02-041-0/+7
| | | | https://fedorahosted.org/sssd/ticket/1152
* Fixed wrong position of ldap_service_search_baseJan Zeleny2012-02-011-1/+1
| | | | | | The wrong position in configuration directive array caused problems in IPA provider, which tried to fetch another value instead of the services lookup base.
* IPA: Add support for services lookups (non-enum)Stephen Gallagher2012-01-312-1/+41
|
* docs: Use absolute srcdir pathJakub Hrozek2012-01-301-1/+1
| | | | | | Building docs only worked in parallel builds. This patch uses abs_top_srcdir to make building documentation work in both parallel and in-tree builds.
* LDAP: Add option to disable paging controlStephen Gallagher2012-01-182-2/+3
| | | | Fixes https://fedorahosted.org/sssd/ticket/967
* SUDO Integration - periodical update of rules in data providerPavel Březina2012-01-172-1/+3
| | | | | | | | https://fedorahosted.org/sssd/ticket/1110 Adds new configuration options: - ldap_sudo_refresh_enabled - enable/disable periodical updates - ldap_sudo_refresh_timeout - rules timeout (refresh period)
* SUDO Integration review issuesPavel Březina2012-01-171-2/+2
|
* IPA: Detect nsupdate support for the realm directiveStephen Gallagher2012-01-171-14/+40
| | | | | For older platforms, do not add the 'realm' line in the update message
* Raise the debug level of two very noisy statementsStephen Gallagher2012-01-171-2/+3
|
* Support multiple search bases in HBACJan Zeleny2012-01-145-39/+176
|
* IPA netgroups: Do not reuse loop iterator variableJakub Hrozek2012-01-061-3/+3
|
* HBAC: create empty groups with one NULL elementJakub Hrozek2012-01-061-16/+15
| | | | https://fedorahosted.org/sssd/ticket/1130
* Pass sdap_id_ctx to online check from IPA providerJakub Hrozek2011-12-193-1/+14
|
* Move child_common routines to utilStephen Gallagher2011-12-192-2/+2
|
* SUDO Integration - LDAP configuration optionsPavel Březina2011-12-162-1/+40
|
* Export the function to convert ldb_result to sysdb_attrsJakub Hrozek2011-12-161-1/+1
| | | | It will be reused later in the sudo responder
* Add sdap_connection_expire_timeout optionStephen Gallagher2011-12-122-2/+3
| | | | https://fedorahosted.org/sssd/ticket/1036
* Fix uninitialized value error in ipa_netgroups.cStephen Gallagher2011-12-121-0/+1
| | | | | | | DEBUG message can print an unitialized value if the first netgroup has no members. Coverity 12382
* Fixed IPA netgroup processingJan Zeleny2011-12-093-2/+7
| | | | | | | | In case IPA netgroup had indirect member hosts, they wouldn't be detected. This patch also modifies debug messages for easier debugging in the future.
* Add ldap_sasl_minssf optionJan Zeleny2011-12-082-1/+2
| | | | https://fedorahosted.org/sssd/ticket/1075
* Allow using Glib for UTF8 supportStephen Gallagher2011-12-051-33/+11
|
* Add ipa_hbac_support_srchost option to IPA providerJan Zeleny2011-11-296-36/+151
| | | | | don't fetch all host groups if this option is false https://fedorahosted.org/sssd/ticket/1078
* IPA migration fixesJakub Hrozek2011-11-293-97/+141
| | | | | | | * use the id connection for looking up the migration flag * force TLS on the password based authentication connection https://fedorahosted.org/sssd/ticket/924
* Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connectionsJakub Hrozek2011-11-291-1/+1
|
* Fixed logically dead code in netgroup processingJan Zeleny2011-11-281-1/+1
|
generated by cgit (git 2.34.1) at 2024-05-19 19:56:51 +0000