summaryrefslogtreecommitdiffstats
path: root/src/providers/ipa
Commit message (Collapse)AuthorAgeFilesLines
* Delete unused structure in IPA access codeJan Zeleny2012-02-061-7/+0
|
* Separate the host-retrieval code from IPA HBAC to common IPA codeJan Zeleny2012-02-066-469/+535
|
* Renamed some sysdb constants for their wider usageJan Zeleny2012-02-062-6/+6
|
* Make password migration code use the IPA config retrieval codeJan Zeleny2012-02-061-57/+14
|
* Add support for generic IPA config retrievalJan Zeleny2012-02-062-0/+208
|
* Fixed minor memory-hierarchy-related issue in IPA HBACJan Zeleny2012-02-061-1/+2
|
* Implemented support for multiple search bases in HBAC rules and servicesJan Zeleny2012-02-069-116/+364
|
* AUTOFS: LDAP providerJakub Hrozek2012-02-052-1/+26
|
* NSS: Add individual timeouts for entry typesStephen Gallagher2012-02-045-9/+11
| | | | https://fedorahosted.org/sssd/ticket/1016
* LDAP: Do not fail if RootDSE check cannot determine search basesStephen Gallagher2012-02-041-0/+7
| | | | https://fedorahosted.org/sssd/ticket/1152
* Fixed wrong position of ldap_service_search_baseJan Zeleny2012-02-011-1/+1
| | | | | | The wrong position in configuration directive array caused problems in IPA provider, which tried to fetch another value instead of the services lookup base.
* IPA: Add support for services lookups (non-enum)Stephen Gallagher2012-01-312-1/+41
|
* docs: Use absolute srcdir pathJakub Hrozek2012-01-301-1/+1
| | | | | | Building docs only worked in parallel builds. This patch uses abs_top_srcdir to make building documentation work in both parallel and in-tree builds.
* LDAP: Add option to disable paging controlStephen Gallagher2012-01-182-2/+3
| | | | Fixes https://fedorahosted.org/sssd/ticket/967
* SUDO Integration - periodical update of rules in data providerPavel Březina2012-01-172-1/+3
| | | | | | | | https://fedorahosted.org/sssd/ticket/1110 Adds new configuration options: - ldap_sudo_refresh_enabled - enable/disable periodical updates - ldap_sudo_refresh_timeout - rules timeout (refresh period)
* SUDO Integration review issuesPavel Březina2012-01-171-2/+2
|
* IPA: Detect nsupdate support for the realm directiveStephen Gallagher2012-01-171-14/+40
| | | | | For older platforms, do not add the 'realm' line in the update message
* Raise the debug level of two very noisy statementsStephen Gallagher2012-01-171-2/+3
|
* Support multiple search bases in HBACJan Zeleny2012-01-145-39/+176
|
* IPA netgroups: Do not reuse loop iterator variableJakub Hrozek2012-01-061-3/+3
|
* HBAC: create empty groups with one NULL elementJakub Hrozek2012-01-061-16/+15
| | | | https://fedorahosted.org/sssd/ticket/1130
* Pass sdap_id_ctx to online check from IPA providerJakub Hrozek2011-12-193-1/+14
|
* Move child_common routines to utilStephen Gallagher2011-12-192-2/+2
|
* SUDO Integration - LDAP configuration optionsPavel Březina2011-12-162-1/+40
|
* Export the function to convert ldb_result to sysdb_attrsJakub Hrozek2011-12-161-1/+1
| | | | It will be reused later in the sudo responder
* Add sdap_connection_expire_timeout optionStephen Gallagher2011-12-122-2/+3
| | | | https://fedorahosted.org/sssd/ticket/1036
* Fix uninitialized value error in ipa_netgroups.cStephen Gallagher2011-12-121-0/+1
| | | | | | | DEBUG message can print an unitialized value if the first netgroup has no members. Coverity 12382
* Fixed IPA netgroup processingJan Zeleny2011-12-093-2/+7
| | | | | | | | In case IPA netgroup had indirect member hosts, they wouldn't be detected. This patch also modifies debug messages for easier debugging in the future.
* Add ldap_sasl_minssf optionJan Zeleny2011-12-082-1/+2
| | | | https://fedorahosted.org/sssd/ticket/1075
* Allow using Glib for UTF8 supportStephen Gallagher2011-12-051-33/+11
|
* Add ipa_hbac_support_srchost option to IPA providerJan Zeleny2011-11-296-36/+151
| | | | | don't fetch all host groups if this option is false https://fedorahosted.org/sssd/ticket/1078
* IPA migration fixesJakub Hrozek2011-11-293-97/+141
| | | | | | | * use the id connection for looking up the migration flag * force TLS on the password based authentication connection https://fedorahosted.org/sssd/ticket/924
* Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connectionsJakub Hrozek2011-11-291-1/+1
|
* Fixed logically dead code in netgroup processingJan Zeleny2011-11-281-1/+1
|
* Fixed uninitialized pointer read in netgroups processingJan Zeleny2011-11-281-0/+6
|
* Fix sdap_id_ctx/ipa_id_ctx mismatch in IPA providerJakub Hrozek2011-11-252-2/+4
| | | | | This was causing a segfault during HBAC processing and any ID lookups except for netgroups
* Added IPA account info handlerJan Zeleny2011-11-233-1/+373
| | | | | Currently it is only handling netgroups by itself, other requests are forwarded to LDAP provider.
* Added support for fetching netgroups in IPA providerJan Zeleny2011-11-231-0/+992
|
* New IPA ID contextJan Zeleny2011-11-233-22/+37
|
* Added and modified options for IPA netgroupsJan Zeleny2011-11-232-24/+69
|
* Modified sdap_parse_search_base()Jan Zeleny2011-11-231-4/+4
|
* Cleanup: Remove unused parametersJakub Hrozek2011-11-2210-40/+6
|
* Support to request canonicalization in LDAP/IPA providerJan Zeleny2011-11-022-1/+2
| | | | https://fedorahosted.org/sssd/ticket/957
* Add support to request canonicalization on krb AS requestsJan Zeleny2011-11-022-2/+3
| | | | https://fedorahosted.org/sssd/ticket/957
* LDAP: Add parser for multiple search basesStephen Gallagher2011-11-021-0/+20
|
* Add a missing breakJakub Hrozek2011-10-171-0/+1
|
* HBAC: Use originalMember for identifying hostgroupsStephen Gallagher2011-10-143-45/+165
|
* HBAC: Use originalMember for identifying servicegroupsStephen Gallagher2011-10-143-41/+169
|
* HBAC: Do not save member/memberOf linksStephen Gallagher2011-10-141-120/+0
| | | | We can just trust the values from the FreeIPA server
* HBAC: fix typos preventing proper hostgroup evaluationStephen Gallagher2011-09-281-3/+3
|
generated by cgit (git 2.34.1) at 2024-05-27 00:38:38 +0000