sssd.git - sssd with jhrozek's patches

	Commit message (Collapse)	Author	Age	Files	Lines
*	RESPONDERS: Create a common file with service names and versions	Jakub Hrozek	2012-12-18	1	-3/+1
\| \| \| \| \| \| \|	The monitor sends calls different sbus methods to different responders. Instead of including headers of the particular responders directly in monitor, which breaks layering a little, create a common header file that will be included from src/responder/common/
*	sssd_pam: Cleanup requests cache on sbus reconect1.9.2-45	Simo Sorce	2012-12-14	1	-1/+4
\| \| \| \| \| \| \| \| \|	The pam responder was not properly configured to recover from a backend disconnect. The connections that were in flight before the disconnection were never freed and new requests for the same user would just pile up on top of the now phantom requests. Fixes: https://fedorahosted.org/sssd/ticket/1655
*	Make re_expression and full_name_format per domain options	Stef Walter	2012-06-12	1	-2/+1
\| \| \| \| \| \| \| \| \| \| \|	* Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663
*	Modified responder_get_domain()	Jan Zeleny	2012-04-24	1	-1/+1
\| \| \| \|	Now it checks for subdomains as well as for the domain itself
*	Don't give memory context in confdb where not needed	Jan Zeleny	2012-02-21	1	-4/+4
\|
*	RESPONDERS: Make the fd_limit setting configurable	Stephen Gallagher	2012-02-17	1	-1/+12
\| \| \| \| \| \| \| \| \| \|	This code will now attempt first to see if it has privilege to set the value as specified, and if not it will fall back to the previous behavior. So on systems with the CAP_SYS_RESOURCE capability granted to SSSD, it will be able to ignore the limits.conf hard limit. https://fedorahosted.org/sssd/ticket/1197
*	RESPONDERS: Allow increasing the file-descriptor limit	Stephen Gallagher	2012-02-17	1	-0/+5
\| \| \| \| \| \| \|	This patch will increase the file descriptor limit to 8k or the limits.conf maximum, whichever is lesser. https://fedorahosted.org/sssd/ticket/1197
*	PAM: make initgroups timeout work across multiple clients	Stephen Gallagher	2011-12-20	1	-0/+9
\| \| \| \| \| \| \| \| \| \| \|	Instead of timing out the initgroups lookup on a per-cctx basis, we will maintain a hash table of recently-seen users and use this instead. This will allow SSSD to handle user's logging into multiple services simultaneously more graciously, as well as playing nicer with SSH (which makes calls to PAM both before and after a fork). https://fedorahosted.org/sssd/ticket/1063
*	New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0	Pavel Březina	2011-08-25	1	-1/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Removed: SSS_UNRESOLVED_DEBUG_LEVEL (completely replaced with SSSDBG_UNRESOLVED) Added new macro: CONVERT_AND_SET_DEBUG_LEVEL(new_value) Changes unresolved debug level value (SSSDBG_UNRESOLVED) from -1 to 0 so DEBUG macro could be reduced by one condition. Anyway, it has a minor effect, every time you want to load debug_level from command line parameters, you have to use following pattern: /* Set debug level to invalid value so we can deside if -d 0 was used. */ debug_level = SSSDBG_INVALID; pc = poptGetContext(argv[0], argc, argv, long_options, 0); while((opt = poptGetNextOpt(pc)) != -1) { ... } CONVERT_AND_SET_DEBUG_LEVEL(debug_level);
*	New DEBUG facility - conversion	Pavel Březina	2011-08-25	1	-0/+2
\| \| \| \| \| \| \| \| \| \|	https://fedorahosted.org/sssd/ticket/925 Conversion of the old debug_level format to the new one. (only where it was necessary) Removed: SSS_DEFAULT_DEBUG_LEVEL (completely replaced with SSSDBG_DEFAULT)
*	Allow changing the log level without restart	Stephen Gallagher	2011-05-06	1	-1/+1
\| \| \| \| \| \|	We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP.
*	Update the ID cache for any PAM request	Stephen Gallagher	2010-12-22	1	-0/+9
\| \| \| \| \| \| \| \|	Also adds an option to limit how often we check the ID provider, so that conversations with multiple PAM requests won't update the cache multiple times. https://fedorahosted.org/sssd/ticket/749
*	Honor filter_users in PAM	Stephen Gallagher	2010-06-17	1	-3/+28
\|
*	Remove dead code from the PAM responder	Jakub Hrozek	2010-06-06	1	-12/+0
\|
*	Fix warnings from -Wmissing-field-initializers	Sumit Bose	2010-03-25	1	-17/+17
\| \| \| \|	This patch removes some tab-indentations from pamsrv.c, too.
*	Reopen logs when SIGHUP is caught	Jakub Hrozek	2010-03-08	1	-0/+1
\| \| \| \| \| \| \| \|	Upon receiving SIGHUP, the monitor signals all services to reopen their debug logs. It is also possible to signal individual services to reopen their particular files. Fixes: #332
*	Eliminate monitor reconfig	Stephen Gallagher	2010-03-04	1	-13/+0
\| \| \| \| \| \| \| \| \| \| \| \|	We disabled live reconfiguration a long time ago with the intent of fixing it so that it wasn't completely broken, but we've decided that live updates are too delicate to handle all cases gracefully. For the forseeable future, we will rely on process restart for updating the configuration. Furthermore, we had not completely disabled live updates. It would still attempt to run if we sent a SIGHUP. This has also been eliminated.
*	Remove unnecessary "domain" parameter from DP registration	Stephen Gallagher	2010-02-22	1	-1/+1
\| \| \| \| \| \|	This was a holdover from when the DP and the providers were unique processes. The NSS and PAM registrations do not need to send the domain, as it is not ambiguous which one they are talking to.
*	Rename server/ directory to src/	Stephen Gallagher	2010-02-18	1	-0/+224
	Also update BUILD.txt