sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
*	LDAP: Add enum request with custom connection	Jakub Hrozek	2014-01-29	1	-125/+180
\| \| \| \| \| \| \| \| \|	This commit changes the enumerate-sdap-domain request to accept a connection context per object that can be enumerated. Internally in the request, an sdap_id_op is also created per enumerated object type. This change will allow i.e. users to be enumerated using GC connection, while keeping the LDAP connection for groups and services.
*	sdap_idmap_domain_has_algorithmic_mapping: add domain name argument	Sumit Bose	2013-10-25	1	-0/+2
\| \| \| \| \| \| \| \| \| \| \| \| \|	When libss_idmap was only used to algorithmically map a SID to a POSIX ID a domain SID was strictly necessary and the only information needed to find a domain. With the introduction of external mappings there are cases where a domain SID is not available. Currently we relied on the fact that external mapping was always used as a default if not specific information about the domain was found. The lead to extra CPU cycles and potentially confusing debug messages. Adding the domain name as a search parameter will avoid this.
*	LDAP: Store cleanup timestamp after initial cleanup	Jakub Hrozek	2013-09-11	1	-1/+1
\| \| \| \| \| \|	When the SSSD changes serves (and hence lastUSN) we perform a cleanup as well. However, after recent changes, we didn't set the cleanup timestamp correctly, which made the lastUSN logic fail.
*	LDAP: Make the cleanup task reusable for subdomains	Jakub Hrozek	2013-08-28	1	-2/+2
\| \| \| \| \| \|	Instead of always performing the cleanup on the main domain, the task now accepts a sdap_domain structure to perform the cleanup on. This change will make the cleanup task reusable for subdomains.
*	LDAP: Make cleanup synchronous	Jakub Hrozek	2013-08-28	1	-20/+6
\| \| \| \| \| \|	The LDAP cleanup request was asynchronous for no good reason, probably a leftover from the days of async sysdb. This patch makes it sychronous again, removing a lot of uneeded code.
*	LDAP: Move the ldap enum request to its own reusable module	Jakub Hrozek	2013-08-28	1	-0/+687
	The LDAP enumeration was too closely tied to the LDAP identity provider. Because some providers might need special handling such as refresh the master domain record before proceeding with the enumeration itself, this patch splits the request itself to a separate async request and lets the ldap_id_enum.c module only configure this new request. Also move the enum timestamp to sdap_domain to make the enum tracking per sdap domain. The cleanup timestamp will be moved in another patch.