Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Save original memberof, not memberof | Jakub Hrozek | 2011-12-20 | 1 | -4/+16 |
| | |||||
* | SUDO Integration - fixed memory leak in sdap_sudo_handler() | Pavel Březina | 2011-12-20 | 1 | -0/+1 |
| | |||||
* | SUDO Integration - be_sudo_req removed from sudo_ctx | Pavel Březina | 2011-12-20 | 2 | -2/+0 |
| | |||||
* | Pass sdap_id_ctx to online check from IPA provider | Jakub Hrozek | 2011-12-19 | 2 | -17/+42 |
| | |||||
* | Move child_common routines to util | Stephen Gallagher | 2011-12-19 | 3 | -3/+3 |
| | |||||
* | Logically dead code in sdap_nested_group_lookup_group | Pavel Březina | 2011-12-16 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/1113 | ||||
* | SUDO integration - LDAP provider | Pavel Březina | 2011-12-16 | 4 | -0/+657 |
| | |||||
* | SUDO Integration - LDAP provider - save sudo rules functions | Jakub Hrozek | 2011-12-16 | 2 | -0/+125 |
| | |||||
* | SUDO Integration - LDAP configuration options | Pavel Březina | 2011-12-16 | 4 | -2/+110 |
| | |||||
* | Export the function to convert ldb_result to sysdb_attrs | Jakub Hrozek | 2011-12-16 | 1 | -29/+0 |
| | | | | It will be reused later in the sudo responder | ||||
* | Use the case sensitivity flag in the LDAP provider | Jakub Hrozek | 2011-12-16 | 6 | -11/+31 |
| | |||||
* | Refactor saving sdap entities | Jakub Hrozek | 2011-12-16 | 5 | -179/+146 |
| | | | | | There was too much code duplication between sdap_save_{user,group,netgroup}. This patch removes the most egregious ones. | ||||
* | Support search bases in netgroup members translation | Pavel Březina | 2011-12-14 | 1 | -1/+11 |
| | |||||
* | Support search bases in RFC2307bis enumeration | Pavel Březina | 2011-12-14 | 1 | -10/+145 |
| | | | | https://fedorahosted.org/sssd/ticket/960 | ||||
* | Add sdap_connection_expire_timeout option | Stephen Gallagher | 2011-12-12 | 3 | -1/+15 |
| | | | | https://fedorahosted.org/sssd/ticket/1036 | ||||
* | LDAP: Fix missing break statements in force_tls | Stephen Gallagher | 2011-12-08 | 1 | -6/+12 |
| | | | | Also add a default case to protect against bad input | ||||
* | LDAP provider: Error while setting the nocanon option should not be fatal | Jakub Hrozek | 2011-12-08 | 1 | -3/+9 |
| | | | | https://fedorahosted.org/sssd/ticket/1100 | ||||
* | Add ldap_sasl_minssf option | Jan Zeleny | 2011-12-08 | 3 | -0/+19 |
| | | | | https://fedorahosted.org/sssd/ticket/1075 | ||||
* | Use dereference during IPA provider initgroups | Jakub Hrozek | 2011-11-30 | 1 | -40/+149 |
| | | | | https://fedorahosted.org/sssd/ticket/1099 | ||||
* | Fix two small bugs in group dereferencing | Jakub Hrozek | 2011-11-29 | 1 | -2/+5 |
| | |||||
* | Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connections | Jakub Hrozek | 2011-11-29 | 4 | -10/+42 |
| | |||||
* | LDAP: Try next failover server on any error | Stephen Gallagher | 2011-11-29 | 1 | -9/+5 |
| | |||||
* | Fix sdap_id_ctx/ipa_id_ctx mismatch in IPA provider | Jakub Hrozek | 2011-11-25 | 2 | -2/+14 |
| | | | | | This was causing a segfault during HBAC processing and any ID lookups except for netgroups | ||||
* | Modified sdap_parse_search_base() | Jan Zeleny | 2011-11-23 | 3 | -12/+10 |
| | |||||
* | Renamed some LDAP routines | Jan Zeleny | 2011-11-23 | 6 | -41/+49 |
| | | | | | These were renamed just ot make sure they are not mistook for IPA netgroup functions. | ||||
* | Cleanup: Remove unused parameters | Jakub Hrozek | 2011-11-22 | 10 | -67/+27 |
| | |||||
* | Prevent printing NULL in several places of LDAP provider | Jakub Hrozek | 2011-11-18 | 2 | -5/+9 |
| | |||||
* | Use one transaction instead of two during RFC2307bis group processing | Jakub Hrozek | 2011-11-11 | 1 | -31/+55 |
| | | | | https://fedorahosted.org/sssd/ticket/1054 | ||||
* | Squash transactions in sdap_initgr_common_store | Jakub Hrozek | 2011-11-11 | 1 | -6/+25 |
| | | | | https://fedorahosted.org/sssd/ticket/1053 | ||||
* | LDAP: Remove redundant groups from the lookup list | Stephen Gallagher | 2011-11-08 | 1 | -23/+0 |
| | |||||
* | Use correct state struct in sdap_initgr_rfc2307bis_next_base | Jakub Hrozek | 2011-11-07 | 1 | -2/+3 |
| | |||||
* | Fix segfault in sdap_get_initgr_user | Jakub Hrozek | 2011-11-07 | 1 | -1/+2 |
| | |||||
* | Support to request canonicalization in LDAP/IPA provider | Jan Zeleny | 2011-11-02 | 5 | -0/+26 |
| | | | | https://fedorahosted.org/sssd/ticket/957 | ||||
* | LDAP: Add support for multiple search bases for group enumeration | Stephen Gallagher | 2011-11-02 | 4 | -24/+101 |
| | |||||
* | LDAP: Add support for multiple search bases for user enumeration | Stephen Gallagher | 2011-11-02 | 4 | -8/+49 |
| | |||||
* | LDAP: Convert ldap_*_search_filter | Stephen Gallagher | 2011-11-02 | 3 | -59/+23 |
| | | | | | | Instead of making this a global option for all user lookups, make it only used if the search base is passed without an explicit filter. | ||||
* | LDAP: Add multiple search bases for initgroups (RFC2307bis groups) | Stephen Gallagher | 2011-11-02 | 1 | -77/+225 |
| | |||||
* | LDAP: Add multiple search bases for initgroups (RFC2307 groups) | Stephen Gallagher | 2011-11-02 | 1 | -17/+99 |
| | |||||
* | LDAP: Add multiple search bases for initgroups (users) | Stephen Gallagher | 2011-11-02 | 1 | -30/+72 |
| | |||||
* | LDAP: Support multiple group search bases (non-enumeration, RFC2307) | Stephen Gallagher | 2011-11-02 | 4 | -16/+74 |
| | |||||
* | LDAP: Support multiple netgroup search bases | Stephen Gallagher | 2011-11-02 | 3 | -14/+65 |
| | |||||
* | LDAP: Support multiple user search bases (non-enumeration) | Stephen Gallagher | 2011-11-02 | 4 | -14/+70 |
| | |||||
* | LDAP: Add parser for multiple search bases | Stephen Gallagher | 2011-11-02 | 4 | -26/+360 |
| | |||||
* | Make sdap_get_id_specific_filter() more strict | Stephen Gallagher | 2011-11-02 | 2 | -4/+4 |
| | |||||
* | Fix size return for split_on_separator() | Stephen Gallagher | 2011-11-02 | 1 | -5/+5 |
| | | | | | | | It was returning the size of the array, rather than the number of elements. (The array was NULL-terminated). This argument was only used in one place that was actually working around this odd return value. | ||||
* | Remove unused sdap_options attributes | Stephen Gallagher | 2011-11-02 | 1 | -3/+0 |
| | | | | These DNs were never assigned or referenced anywhere. | ||||
* | Cleanup of unused function in ldap access provider | Jan Zeleny | 2011-11-02 | 1 | -2/+0 |
| | |||||
* | Remove confusing do-while loop | Jakub Hrozek | 2011-11-02 | 1 | -35/+36 |
| | | | | | The deref processing would return a single control back. The do-while loop was harmless but confusing. | ||||
* | Use LDAPDerefSpec properly | Jakub Hrozek | 2011-11-02 | 1 | -4/+6 |
| | | | | | | | | ldap_create_deref_control_value expects an array of LDAPDerefSpec structures with LDAPDerefSpec.derefAttr == NULL as a sentinel. We were passing a single instance of a LDAPDerefSpec structure. https://fedorahosted.org/sssd/ticket/1050 | ||||
* | Steal result onto mem_ctx in sdap_initgr_nested_get_direct_parents | Jakub Hrozek | 2011-10-31 | 1 | -2/+1 |
| |