Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add originalDN to fake groups | Jakub Hrozek | 2011-03-23 | 1 | -2/+2 |
| | |||||
* | Use realm for basedn instead of IPA domain | Jakub Hrozek | 2011-02-28 | 1 | -0/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/807 | ||||
* | Clear up -Wunused-but-set-variable warnings | Stephen Gallagher | 2011-02-11 | 1 | -1/+1 |
| | |||||
* | Delete attributes that are removed from LDAP | Stephen Gallagher | 2011-01-21 | 1 | -1/+1 |
| | | | | | | | | Sometimes, a value in LDAP will cease to exist (the classic example being shadowExpire). We need to make sure we purge that value from SSSD's sysdb as well. https://fedorahosted.org/sssd/ticket/750 | ||||
* | Validate user supplied size of data items | Sumit Bose | 2011-01-11 | 1 | -0/+14 |
| | | | | | | Specially crafted packages might lead to an integer overflow and the parsing of the input buffer might not continue as expected. This issue was identified by Sebastian Krahmer <krahmer@suse.de>. | ||||
* | Add sysdb_has_enumerated and sysdb_set_enumerated helper functions | Stephen Gallagher | 2010-12-20 | 1 | -0/+40 |
| | | | | Includes a unit test | ||||
* | Fix unchecked return value in test_sysdb_attrs_to_list | Stephen Gallagher | 2010-12-17 | 1 | -3/+6 |
| | | | | https://fedorahosted.org/sssd/ticket/714 | ||||
* | Fix uninitialized value error in main() in stress-tests.c | Sumit Bose | 2010-12-15 | 1 | -0/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/732 | ||||
* | Fix uninitialized value error in setup_test in fail_over-tests.c | Sumit Bose | 2010-12-14 | 1 | -0/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/728 | ||||
* | Add group support to the simple access provider | Stephen Gallagher | 2010-12-13 | 1 | -2/+2 |
| | | | | | | | | | | | | | This patch adds simple_allow_groups and simple_deny_groups options to the simple access provider. It makes it possible to grant or deny access based on a user's group memberships within the domain. This patch makes one minor change to previous functionality: now all deny rules will supersede allow rules. Previously, if both simple_allow_users and simple_deny_users were set with the same value, the allow would win. https://fedorahosted.org/sssd/ticket/440 | ||||
* | Bye, bye, ipa_timerules | Sumit Bose | 2010-12-08 | 1 | -582/+0 |
| | | | | | | It was decided that IPA HBAC will move to a different format to specify time ranges in access control rules. The evaluation based on the old format is not needed anymore. | ||||
* | Fix const cast warnings in tests | Stephen Gallagher | 2010-11-15 | 2 | -2/+2 |
| | |||||
* | Fix const cast warning for sysdb_update_members | Stephen Gallagher | 2010-11-15 | 1 | -4/+4 |
| | |||||
* | Add unit tests for users and groups with odd characters | Stephen Gallagher | 2010-11-15 | 1 | -0/+145 |
| | |||||
* | Add utility function to sanitize LDAP/LDB filters | Stephen Gallagher | 2010-11-15 | 1 | -0/+68 |
| | | | | Also adds a unit test. | ||||
* | Always use uint32_t for UID/GID numbers | Jakub Hrozek | 2010-10-26 | 1 | -10/+10 |
| | |||||
* | Modify sysdb_[add|remove]_group_member to accept users and groups | Stephen Gallagher | 2010-10-18 | 1 | -5/+10 |
| | | | | | | | | Previously, it assumed that all members were users. This changes the interface so that either a user or a group can be specified. Also, it eliminates the need for a memory context to be passed, since the internal memory should be self-contained. | ||||
* | sysdb interface for adding incomplete groups | Jakub Hrozek | 2010-10-15 | 1 | -0/+40 |
| | | | | Useful for optimizing the initgroups operation. | ||||
* | Also return member groups to the client | Sumit Bose | 2010-10-13 | 1 | -44/+44 |
| | |||||
* | netgroup tests | Stephen Gallagher | 2010-10-13 | 1 | -0/+516 |
| | |||||
* | Use POPT_TABLEEND to close option table | Sumit Bose | 2010-10-13 | 7 | -8/+8 |
| | |||||
* | Suppress some 'unchecked return value' warnings | Sumit Bose | 2010-09-28 | 1 | -6/+13 |
| | |||||
* | Suppress some 'may be used uninitialized' warnings | Sumit Bose | 2010-09-28 | 1 | -1/+1 |
| | | | | | Additionally the handling of errno and the errno_t return value of functions is fixed in krb5_common.c. | ||||
* | Initialize debug_level to zero in crypto tests | Stephen Gallagher | 2010-09-22 | 1 | -1/+1 |
| | |||||
* | Fix sysdb_group_dn_name | Jakub Hrozek | 2010-09-22 | 1 | -0/+35 |
| | |||||
* | Add parameter to skip cleanup in sysdb test | Jakub Hrozek | 2010-09-15 | 1 | -1/+4 |
| | | | | This might be useful for examining the test database manually with LDB tools | ||||
* | Password obfuscation utility functions | Jakub Hrozek | 2010-09-08 | 1 | -0/+139 |
| | | | | | | | Adds two utility functions to obfuscate a password and inverse to extract the cleartext password back. So far, only NSS-based implementation is provided. | ||||
* | Add sysdb_update_members function | Stephen Gallagher | 2010-08-03 | 1 | -0/+56 |
| | | | | | | | | This function will take a user, a list of groups that this user should be added to and a list of groups the user should be removed from and will recursively call sysdb_[add|remove]_group_member Includes a unit test | ||||
* | Add diff_string_lists utility function | Stephen Gallagher | 2010-08-03 | 1 | -0/+227 |
| | | | | Includes a unit test | ||||
* | Add sysdb_attrs_to_list() utility function | Stephen Gallagher | 2010-08-03 | 1 | -0/+31 |
| | |||||
* | Standardize on correct spelling of "principal" for krb5 | Stephen Gallagher | 2010-06-16 | 1 | -4/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/542 | ||||
* | Print correct return code | Jakub Hrozek | 2010-06-14 | 1 | -1/+1 |
| | | | | Fixes: #535 | ||||
* | Add support for delayed kinit if offline | Sumit Bose | 2010-05-26 | 1 | -2/+2 |
| | | | | | | | If the configuration option krb5_store_password_if_offline is set to true and the backend is offline the plain text user password is stored and used to request a TGT if the backend becomes online. If available the Linux kernel key retention service is used. | ||||
* | Sort SRV replies according to RFC 2782 | Jakub Hrozek | 2010-04-30 | 1 | -0/+88 |
| | | | | | | | | | | RFC 2782 defines a way to sort replies to a SRV query. In short, the algorithm sorts all replies by priority and then does a weight-based selection for every priority level. For details, please see the sections "Usage rules" for overview of the algorithm and section "The 'Weight' field" for description on the weight selection. | ||||
* | Fix warning in sysdb-tests.c | Stephen Gallagher | 2010-04-14 | 1 | -8/+0 |
| | | | | | | When we converted to the synchronous sysdb interface, the synchronous-simulating function test_loop() became unnecessary, but we forgot to remove it. | ||||
* | sysydb: Finally stop using a common event context | Simo Sorce | 2010-04-12 | 2 | -2/+2 |
| | | | | This commit completes the migration to a synchronous sysdb | ||||
* | sysdb: remove remaining traces of sysdb_handle | Simo Sorce | 2010-04-12 | 1 | -1/+0 |
| | |||||
* | sysdb: convert sysdb_enumgrent | Simo Sorce | 2010-04-12 | 1 | -32/+7 |
| | |||||
* | sysdb: convert sysdb_enumpwent | Simo Sorce | 2010-04-12 | 1 | -32/+5 |
| | |||||
* | sysdb: convert sysdb_get_user_attr | Simo Sorce | 2010-04-12 | 1 | -46/+16 |
| | |||||
* | sysdb: convert sysdb_getgrgid | Simo Sorce | 2010-04-12 | 1 | -48/+17 |
| | |||||
* | sysdb: convert sysdb_getgrnam | Simo Sorce | 2010-04-12 | 1 | -52/+27 |
| | |||||
* | sysdb: convert sysdb_getpwuid | Simo Sorce | 2010-04-12 | 1 | -48/+16 |
| | |||||
* | sysdb: convert sysdb_getpwnam | Simo Sorce | 2010-04-12 | 1 | -52/+25 |
| | |||||
* | tests: remove use of asynchronus transactions | Simo Sorce | 2010-04-12 | 1 | -502/+86 |
| | | | | now all calls are synchronous | ||||
* | sysdb: convert sysdb_cache_auth | Simo Sorce | 2010-04-12 | 1 | -39/+18 |
| | |||||
* | sysdb: delete sysdb_delete_group | Simo Sorce | 2010-04-12 | 1 | -40/+7 |
| | |||||
* | sysdb: convert sysdb_delete_user | Simo Sorce | 2010-04-12 | 1 | -41/+4 |
| | |||||
* | sysdb: convert sysdb_asq_search | Simo Sorce | 2010-04-12 | 1 | -36/+23 |
| | |||||
* | sysdb: convert sysdb_store_custom | Simo Sorce | 2010-04-12 | 1 | -18/+3 |
| |