summaryrefslogtreecommitdiffstats
path: root/src/providers
Commit message (Collapse)AuthorAgeFilesLines
* Silence warnings with -O2Jakub Hrozek2010-04-302-8/+22
|
* Support SRV servers in failoverJakub Hrozek2010-04-302-51/+523
| | | | | | | | | | | | | | | Adds a new failover API call fo_add_srv_server that allows the caller to specify a server that is later resolved into a list of specific servers using SRV requests. Also adds a new failover option that specifies how often should the servers resolved from SRV query considered valid until we need a refresh. The "real" servers to connect to are returned to the user as usual, using the fo_resolve_service_{send,recv} calls. Make SRV resolution work with c-ares 1.6
* Remove freed server_common entities from listJakub Hrozek2010-04-301-1/+24
|
* Display a message if a password reset by root failsSumit Bose2010-04-262-0/+15
|
* Make the handling of fd events opaqueSumit Bose2010-04-265-184/+278
| | | | | | | Depending on the version of the OpenLDAP libraries we use two different schemes to find the file descriptor of the connection to the LDAP server. This patch removes the related ifdefs from the main code and introduces helper functions which can handle the specific cases.
* Treat server names as case-insensitive in failover codeJakub Hrozek2010-04-261-2/+2
|
* Set LDAP_OPT_RESTART for all LDAP connectionsSumit Bose2010-04-261-7/+7
|
* Make ID provider init functions clearerStephen Gallagher2010-04-164-11/+11
| | | | | | | | | | | Using sssm_*_init() as the name of the initialization function for identity providers was a holdover from earlier development when we thought we would only have a single "provider" entry in the config file. As we have now separated out the initialization functions for auth, chpass and access, we should rename sssm_*_init() to sssm_*_id_init() for a cleaner interface.
* sysydb: Finally stop using a common event contextSimo Sorce2010-04-121-1/+1
| | | | This commit completes the migration to a synchronous sysdb
* sysdb: remove remaining traces of sysdb_handleSimo Sorce2010-04-122-6/+0
|
* sysdb: convert sysdb_get_user_attrSimo Sorce2010-04-122-172/+82
|
* Remove remaining use of sysdb_transaction_sendSimo Sorce2010-04-123-491/+173
|
* proxy: complete conversion to synchronous sysdbSimo Sorce2010-04-121-1113/+428
| | | | This makes proxy use only synchronous functions again.
* sysdb: convert sysdb_search_groupsSimo Sorce2010-04-121-133/+57
|
* sysdb: delete sysdb_delete_groupSimo Sorce2010-04-123-184/+65
|
* sysdb: convert sysdb_delete_userSimo Sorce2010-04-123-227/+74
|
* sysdb: convert sysdb_search_usersSimo Sorce2010-04-121-67/+37
|
* sysdb: convert sysdb_asq_searchSimo Sorce2010-04-121-150/+69
|
* sysdb: convert sysdb_store_customSimo Sorce2010-04-121-113/+35
|
* sysdb: convert sysdb_search_customSimo Sorce2010-04-121-42/+60
|
* sysdb: convert sysdb_cache_passwordSimo Sorce2010-04-123-89/+28
|
* sysdb: convert sysdb_store/add(_basic)_groupSimo Sorce2010-04-122-403/+158
|
* sysdb: convert sysdb_store/add(_basic)_userSimo Sorce2010-04-122-367/+219
|
* sysdb: convert sysdb_set_entry/user/group_attrSimo Sorce2010-04-121-23/+4
|
* sysdb: convert sysdb_search_user_by_name/uidSimo Sorce2010-04-121-61/+14
|
* sysdb: convert sysdb_search_entry and sysdb_delete_recursiveSimo Sorce2010-04-122-62/+16
|
* sysdb: convert sysdb_delete_entryStephen Gallagher2010-04-121-66/+42
|
* Allow arbitrary-length PAM messagesStephen Gallagher2010-03-255-37/+27
| | | | | | | | | The PAM standard allows for messages of any length to be returned to the client. We were discarding all messages of length greater than 255. This patch dynamically allocates the message buffers so we can pass the complete message. This resolves https://fedorahosted.org/sssd/ticket/432
* Fix LDAP search paths for IPA HBACSumit Bose2010-03-255-43/+81
| | | | | | - use domain_to_basedn() to construct LDAP search paths for IPA HBAC - move domain_to_basedn() to a separate file to simplify the build of a test
* Add krb5_kpasswd to IPA providerEugene Indenbom2010-03-252-2/+3
| | | | The krb5 options were out of sync, causing a runtime abort.
* Regression test against RHBZ #576856Jakub Hrozek2010-03-252-5/+5
|
* Fix warnings from -Wmissing-field-initializersSumit Bose2010-03-251-1/+3
| | | | This patch removes some tab-indentations from pamsrv.c, too.
* Set LDAP_OPT_RESTART for ldap_sasl_interactive_bind_s()Sumit Bose2010-03-251-0/+7
| | | | | | | This option is needed for the rare case where a poll() call during ldap_sasl_interactive_bind_s() is interrupted by a signal. LDAP_OPT_RESTART enables the handling of the EINTR error instead of returning an error.
* Improvements for LDAP Password Policy supportRalf Haferkamp2010-03-224-13/+103
| | | | | | | | Display warnings about remaining grace logins and password expiration to the user, when LDAP Password Policies are used. Improved detection if LDAP Password policies are supported by LDAP Server.
* Lower debug level of unexpected LDAP result codesSumit Bose2010-03-221-0/+5
|
* Fix error message for ldap_start_tlsStephen Gallagher2010-03-181-1/+1
|
* Fix a series of memory leaks in the SBUSStephen Gallagher2010-03-171-1/+5
|
* Properly handle dbus send attempts on a closed connectionStephen Gallagher2010-03-151-22/+1
| | | | | | | | dbus_connection_send_with_reply() will report success and return a NULL pending_reply when the connection is not open for communication. This patch creates a new wrapper around dbus_connection_send_with_reply() to properly detect this condition and report it as an error.
* Fixed authentication check for CHAUTHTOK_PRELIMRalf Haferkamp2010-03-151-1/+1
| | | | | When changing passwords, treat SDAP_AUTH_PW_EXPIRED as a successful authentication in SSS_PAM_CHAUTHTOK_PRELIM.
* Fixed check for expired passwordsRalf Haferkamp2010-03-151-2/+4
| | | | | | When the user's password is expired it might also be indicated by the bind operation returning "INVALID_CREDENTIALS" with the ppolicy control's errorcode set to "PP_passwordExpired".
* Add krb5_kpasswd optionSumit Bose2010-03-127-32/+208
|
* Write the IP address of the KDC to the kdcinfo fileSumit Bose2010-03-112-19/+21
|
* Add expandable sequences to krb5_ccachedirSumit Bose2010-03-116-21/+292
| | | | | | | As with krb5_ccname_template sequences like %u can be used in the krb5_ccachedir parameter which are expanded at runtime. If the directory does not exist, it will be created. Depending on the used sequences it is created as a public or private directory.
* Add simple access providerSumit Bose2010-03-082-0/+196
|
* Reopen logs when SIGHUP is caughtJakub Hrozek2010-03-081-0/+1
| | | | | | | | Upon receiving SIGHUP, the monitor signals all services to reopen their debug logs. It is also possible to signal individual services to reopen their particular files. Fixes: #332
* Add forgotten \n in DEBUG statementsMartin Nagy2010-03-042-2/+2
| | | | | | Logs from confdb with missing '\n' in the DEBUG statements annoyed me so I decided to fix them. I also made a quick grep through the code and found other places so I fixed them too.
* Improve safe alignment buffer handling macrosSimo Sorce2010-03-034-49/+50
| | | | | | | | | Make the counter optional so that alignment safe macros can be used also where there is no counter to update. Change arguments names so that they are not deceiving (ptr normlly identify a pointer) Turn the memcpy substitute into an inline function so that passing a pointer to rp and checking for it doesn't make the compiler spit lots of warnings.
* proxy: use correct _recv functionSimo Sorce2010-03-031-1/+1
|
* Fix check for values of expiration limitsJakub Hrozek2010-02-251-1/+1
| | | | | There were inconsistencies between what sssd.conf manpage said and what the code enforces.
* Remove a check that was left behindJakub Hrozek2010-02-251-7/+1
| | | | | When refactoring talloc_asprintf calls a check was left behind that cased the backend to go offline immediately.
generated by cgit (git 2.34.1) at 2024-06-13 22:36:43 +0000