summaryrefslogtreecommitdiffstats
path: root/src/responder
Commit message (Collapse)AuthorAgeFilesLines
...
* SUDO Integration review issuesPavel Březina2012-01-172-1/+4
|
* NSS: Improve DEBUG messages for netgroup cacheStephen Gallagher2012-01-171-2/+2
|
* nsssrv: use sized_string in fill_grentSimo Sorce2012-01-091-35/+48
|
* nsssrv: use sized_string in fill_pwentSimo Sorce2012-01-091-41/+56
|
* nsssrv: add string manipulation helperSimo Sorce2012-01-092-0/+19
| | | | | the sized_string structure makes it easier to keep track of string lengths and makes passing around data more compat and readable.
* nsssrv: remove unused macroSimo Sorce2012-01-041-2/+0
|
* Return user and group names lowercased in case insensitive domainsJakub Hrozek2011-12-211-12/+32
|
* sss_get_cased_name utility functionJakub Hrozek2011-12-213-11/+11
|
* PAM: make initgroups timeout work across multiple clientsStephen Gallagher2011-12-206-6/+241
| | | | | | | | | | | Instead of timing out the initgroups lookup on a per-cctx basis, we will maintain a hash table of recently-seen users and use this instead. This will allow SSSD to handle user's logging into multiple services simultaneously more graciously, as well as playing nicer with SSH (which makes calls to PAM both before and after a fork). https://fedorahosted.org/sssd/ticket/1063
* Deleted declaration of nss_get_dom()Jan Zeleny2011-12-191-4/+0
| | | | | This function has been renamed to responder_get_domain() but this declaration hasn't been deleted.
* Pass client context to sss_dp_get_account_sendJakub Hrozek2011-12-191-1/+1
|
* DP: Remove processed callbacksJakub Hrozek2011-12-161-3/+5
|
* SUDO Integration - responder - get sudo rules logicJakub Hrozek2011-12-161-2/+444
|
* SUDO Integration - responderPavel Březina2011-12-166-0/+1041
|
* Use the case sensitivity flag in respondersJakub Hrozek2011-12-166-46/+168
|
* Canonicalize username in PAM providerJakub Hrozek2011-12-161-0/+27
|
* Responders: Split getting domain by name into separate functionJakub Hrozek2011-12-165-22/+21
|
* Ignore NULL-terminator when checking UTF8-validity for netgroupsStephen Gallagher2011-12-081-1/+1
| | | | Glib fails if the NULL-terminator is included when a length is specified.
* Pass the correct private data into Data Provider callbackJakub Hrozek2011-12-071-1/+1
|
* Ignore NULL-terminator when checking UTF8-validityStephen Gallagher2011-12-052-4/+4
| | | | | Glib fails if the NULL-terminator is included when a length is specified.
* Allow using Glib for UTF8 supportStephen Gallagher2011-12-051-9/+1
|
* RESPONDER: Refactor DP requests into tevent_req styleStephen Gallagher2011-11-296-427/+641
|
* Cleanup: Remove unused parametersJakub Hrozek2011-11-221-2/+1
|
* RESPONDER: Ensure that all input strings are valid UTF-8Stephen Gallagher2011-11-185-0/+44
|
* RESPONDER: Fix segfault in sss_packet_send()Stephen Gallagher2011-11-021-0/+5
| | | | | | | | | There are several places (all error-handling) where sss_cmd_done() is called with no response packet created. As a short-term solution, we need to check whether the packet is NULL and simply return EINVAL. client_send() (the consumer) will then forcibly disconnect the client (which will return PAM_SYSTEM_ERR to the client).
* Fixed timeout handling in respondersJan Zeleny2011-10-141-72/+72
|
* Check if dp_requests hash table exists before using itJakub Hrozek2011-10-131-0/+5
|
* Use explicit base 10 for converting strings to integersJakub Hrozek2011-10-031-2/+2
| | | | https://fedorahosted.org/sssd/ticket/1013
* Return users and groups based on aliasJakub Hrozek2011-09-281-2/+3
| | | | https://fedorahosted.org/sssd/ticket/926
* Enable the midpoint cache update by defaultStephen Gallagher2011-09-211-1/+1
| | | | https://fedorahosted.org/sssd/ticket/918
* New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0Pavel Březina2011-08-252-2/+8
| | | | | | | | | | | | | | | | | | | | | Removed: SSS_UNRESOLVED_DEBUG_LEVEL (completely replaced with SSSDBG_UNRESOLVED) Added new macro: CONVERT_AND_SET_DEBUG_LEVEL(new_value) Changes unresolved debug level value (SSSDBG_UNRESOLVED) from -1 to 0 so DEBUG macro could be reduced by one condition. Anyway, it has a minor effect, every time you want to load debug_level from command line parameters, you have to use following pattern: /* Set debug level to invalid value so we can deside if -d 0 was used. */ debug_level = SSSDBG_INVALID; pc = poptGetContext(argv[0], argc, argv, long_options, 0); while((opt = poptGetNextOpt(pc)) != -1) { ... } CONVERT_AND_SET_DEBUG_LEVEL(debug_level);
* New DEBUG facility - conversionPavel Březina2011-08-252-0/+4
| | | | | | | | | | https://fedorahosted.org/sssd/ticket/925 Conversion of the old debug_level format to the new one. (only where it was necessary) Removed: SSS_DEFAULT_DEBUG_LEVEL (completely replaced with SSSDBG_DEFAULT)
* Do not delete requests inside hash_iterate loopJakub Hrozek2011-08-151-10/+12
|
* sysdb refactoring: memory context deletedJan Zeleny2011-08-152-9/+5
| | | | | | This patch deletes memory context parameter in those places in sysdb where it is not necessary. The code using modified functions has been updated. Tests updated as well.
* sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny2011-08-154-20/+13
| | | | | The patch also updates code using modified functions. Tests have also been adjusted.
* Remove unused temporary contextJakub Hrozek2011-08-081-5/+0
|
* Prevent segfault if vetoed_shells are specified without allowed_shellsJakub Hrozek2011-08-081-16/+19
| | | | https://fedorahosted.org/sssd/ticket/954
* Revert "Allow LDAP to decide when an expiration warning is warranted"Stephen Gallagher2011-08-041-4/+3
| | | | This reverts commit b0b9c38dfce3e3ccbfaa4d00fdf2ea08a70d41a6.
* Allow LDAP to decide when an expiration warning is warrantedStephen Gallagher2011-08-011-3/+4
| | | | | | | | | Previously, we were only displaying expiration warnings if the password was going to expire within a day. We'll allow LDAP to make this decision (by whether it passes us the expiration time). In the future, we can add an option to clamp this down to a shorter period if the local admin prefers it.
* Converge accept_fd_handler and accept_priv_fd_handlerStephen Gallagher2011-07-291-85/+50
| | | | | These two functions were almost identical. Better to maintain them as a single function.
* Add vetoed_shells optionJohn Hodrien2011-07-293-1/+17
| | | | | | | | There may be users in LDAP that have a valid but unwelcome shell set in their account. This adds a blacklist of shells that should always be replaced by the fallback_shell. Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
* Fix indexing of skipped groupsJakub Hrozek2011-07-211-2/+4
| | | | https://fedorahosted.org/sssd/ticket/928
* fix typosSimo Sorce2011-06-271-5/+5
|
* Non-posix group processing - ldap provider and nss responderJan Zeleny2011-06-021-3/+11
|
* Fix typo in initgroups negative cache checkStephen Gallagher2011-05-311-1/+1
|
* Set _GNU_SOURCE globallySumit Bose2011-05-231-3/+1
|
* Add new options to override shell valueJakub Hrozek2011-05-203-1/+123
| | | | https://fedorahosted.org/sssd/ticket/742
* Add a new option to override home directory valueJakub Hrozek2011-05-203-1/+140
| | | | https://fedorahosted.org/sssd/ticket/551
* Add a new option to override primary GID numberJakub Hrozek2011-05-202-2/+10
| | | | https://fedorahosted.org/sssd/ticket/742
* Allow changing the log level without restartStephen Gallagher2011-05-064-2/+17
| | | | | | We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP.
generated by cgit (git 2.34.1) at 2025-09-29 22:54:17 +0000