Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Refactor saving sdap entities | Jakub Hrozek | 2011-12-16 | 5 | -179/+146 |
| | | | | | There was too much code duplication between sdap_save_{user,group,netgroup}. This patch removes the most egregious ones. | ||||
* | Support search bases in netgroup members translation | Pavel Březina | 2011-12-14 | 1 | -1/+11 |
| | |||||
* | Support search bases in RFC2307bis enumeration | Pavel Březina | 2011-12-14 | 1 | -10/+145 |
| | | | | https://fedorahosted.org/sssd/ticket/960 | ||||
* | Add sdap_connection_expire_timeout option | Stephen Gallagher | 2011-12-12 | 3 | -1/+15 |
| | | | | https://fedorahosted.org/sssd/ticket/1036 | ||||
* | LDAP: Fix missing break statements in force_tls | Stephen Gallagher | 2011-12-08 | 1 | -6/+12 |
| | | | | Also add a default case to protect against bad input | ||||
* | LDAP provider: Error while setting the nocanon option should not be fatal | Jakub Hrozek | 2011-12-08 | 1 | -3/+9 |
| | | | | https://fedorahosted.org/sssd/ticket/1100 | ||||
* | Add ldap_sasl_minssf option | Jan Zeleny | 2011-12-08 | 3 | -0/+19 |
| | | | | https://fedorahosted.org/sssd/ticket/1075 | ||||
* | Use dereference during IPA provider initgroups | Jakub Hrozek | 2011-11-30 | 1 | -40/+149 |
| | | | | https://fedorahosted.org/sssd/ticket/1099 | ||||
* | Fix two small bugs in group dereferencing | Jakub Hrozek | 2011-11-29 | 1 | -2/+5 |
| | |||||
* | Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connections | Jakub Hrozek | 2011-11-29 | 4 | -10/+42 |
| | |||||
* | LDAP: Try next failover server on any error | Stephen Gallagher | 2011-11-29 | 1 | -9/+5 |
| | |||||
* | Fix sdap_id_ctx/ipa_id_ctx mismatch in IPA provider | Jakub Hrozek | 2011-11-25 | 2 | -2/+14 |
| | | | | | This was causing a segfault during HBAC processing and any ID lookups except for netgroups | ||||
* | Modified sdap_parse_search_base() | Jan Zeleny | 2011-11-23 | 3 | -12/+10 |
| | |||||
* | Renamed some LDAP routines | Jan Zeleny | 2011-11-23 | 6 | -41/+49 |
| | | | | | These were renamed just ot make sure they are not mistook for IPA netgroup functions. | ||||
* | Cleanup: Remove unused parameters | Jakub Hrozek | 2011-11-22 | 10 | -67/+27 |
| | |||||
* | Prevent printing NULL in several places of LDAP provider | Jakub Hrozek | 2011-11-18 | 2 | -5/+9 |
| | |||||
* | Use one transaction instead of two during RFC2307bis group processing | Jakub Hrozek | 2011-11-11 | 1 | -31/+55 |
| | | | | https://fedorahosted.org/sssd/ticket/1054 | ||||
* | Squash transactions in sdap_initgr_common_store | Jakub Hrozek | 2011-11-11 | 1 | -6/+25 |
| | | | | https://fedorahosted.org/sssd/ticket/1053 | ||||
* | LDAP: Remove redundant groups from the lookup list | Stephen Gallagher | 2011-11-08 | 1 | -23/+0 |
| | |||||
* | Use correct state struct in sdap_initgr_rfc2307bis_next_base | Jakub Hrozek | 2011-11-07 | 1 | -2/+3 |
| | |||||
* | Fix segfault in sdap_get_initgr_user | Jakub Hrozek | 2011-11-07 | 1 | -1/+2 |
| | |||||
* | Support to request canonicalization in LDAP/IPA provider | Jan Zeleny | 2011-11-02 | 5 | -0/+26 |
| | | | | https://fedorahosted.org/sssd/ticket/957 | ||||
* | LDAP: Add support for multiple search bases for group enumeration | Stephen Gallagher | 2011-11-02 | 4 | -24/+101 |
| | |||||
* | LDAP: Add support for multiple search bases for user enumeration | Stephen Gallagher | 2011-11-02 | 4 | -8/+49 |
| | |||||
* | LDAP: Convert ldap_*_search_filter | Stephen Gallagher | 2011-11-02 | 3 | -59/+23 |
| | | | | | | Instead of making this a global option for all user lookups, make it only used if the search base is passed without an explicit filter. | ||||
* | LDAP: Add multiple search bases for initgroups (RFC2307bis groups) | Stephen Gallagher | 2011-11-02 | 1 | -77/+225 |
| | |||||
* | LDAP: Add multiple search bases for initgroups (RFC2307 groups) | Stephen Gallagher | 2011-11-02 | 1 | -17/+99 |
| | |||||
* | LDAP: Add multiple search bases for initgroups (users) | Stephen Gallagher | 2011-11-02 | 1 | -30/+72 |
| | |||||
* | LDAP: Support multiple group search bases (non-enumeration, RFC2307) | Stephen Gallagher | 2011-11-02 | 4 | -16/+74 |
| | |||||
* | LDAP: Support multiple netgroup search bases | Stephen Gallagher | 2011-11-02 | 3 | -14/+65 |
| | |||||
* | LDAP: Support multiple user search bases (non-enumeration) | Stephen Gallagher | 2011-11-02 | 4 | -14/+70 |
| | |||||
* | LDAP: Add parser for multiple search bases | Stephen Gallagher | 2011-11-02 | 4 | -26/+360 |
| | |||||
* | Make sdap_get_id_specific_filter() more strict | Stephen Gallagher | 2011-11-02 | 2 | -4/+4 |
| | |||||
* | Fix size return for split_on_separator() | Stephen Gallagher | 2011-11-02 | 1 | -5/+5 |
| | | | | | | | It was returning the size of the array, rather than the number of elements. (The array was NULL-terminated). This argument was only used in one place that was actually working around this odd return value. | ||||
* | Remove unused sdap_options attributes | Stephen Gallagher | 2011-11-02 | 1 | -3/+0 |
| | | | | These DNs were never assigned or referenced anywhere. | ||||
* | Cleanup of unused function in ldap access provider | Jan Zeleny | 2011-11-02 | 1 | -2/+0 |
| | |||||
* | Remove confusing do-while loop | Jakub Hrozek | 2011-11-02 | 1 | -35/+36 |
| | | | | | The deref processing would return a single control back. The do-while loop was harmless but confusing. | ||||
* | Use LDAPDerefSpec properly | Jakub Hrozek | 2011-11-02 | 1 | -4/+6 |
| | | | | | | | | ldap_create_deref_control_value expects an array of LDAPDerefSpec structures with LDAPDerefSpec.derefAttr == NULL as a sentinel. We were passing a single instance of a LDAPDerefSpec structure. https://fedorahosted.org/sssd/ticket/1050 | ||||
* | Steal result onto mem_ctx in sdap_initgr_nested_get_direct_parents | Jakub Hrozek | 2011-10-31 | 1 | -2/+1 |
| | |||||
* | RFC2307bis initgroups: fix nested groups processing | Jakub Hrozek | 2011-10-31 | 1 | -20/+33 |
| | | | | | Due to incorrectly written loop, SSSD would go into infitite loop if it processed the same group on two different levels of membership. | ||||
* | Plug memory leaks in LDAP provider | Jakub Hrozek | 2011-10-25 | 1 | -0/+3 |
| | |||||
* | Cancel transactions correctly during initgroups | Jakub Hrozek | 2011-10-17 | 1 | -13/+31 |
| | |||||
* | Use fewer transactions during IPA initgroups | Jakub Hrozek | 2011-10-17 | 1 | -171/+273 |
| | |||||
* | Use fewer transactions during RFC2307bis initgroups | Jakub Hrozek | 2011-10-17 | 1 | -346/+366 |
| | |||||
* | Utility functions for LDAP nested schema initgroups | Jakub Hrozek | 2011-10-17 | 1 | -0/+119 |
| | |||||
* | SysDB commands that save lastUpdate allows this value to be passed in | Pavel Březina | 2011-10-13 | 5 | -21/+41 |
| | | | | https://fedorahosted.org/sssd/ticket/836 | ||||
* | Fix small bug where TALLOC_CTX could end up unfreed. | Pavel Zuna | 2011-10-06 | 1 | -3/+3 |
| | |||||
* | Use explicit base 10 for converting strings to integers | Jakub Hrozek | 2011-10-03 | 1 | -2/+2 |
| | | | | https://fedorahosted.org/sssd/ticket/1013 | ||||
* | Store name aliases for users, groups | Jakub Hrozek | 2011-09-28 | 5 | -37/+216 |
| | | | | | | Also checks fake users for aliases when storing a real users so that getgrnam for a RFC2307 group that references a user by his secondary name followed by getpwnam for this user by his primary name works | ||||
* | Add a sysdb_get_direct_parents function | Jakub Hrozek | 2011-09-28 | 1 | -57/+5 |
| |