summaryrefslogtreecommitdiffstats
path: root/src/tools
Commit message (Collapse)AuthorAgeFilesLines
* tools: sss_userdel and groupdel remove entries from memory cache1.9.2-44Michal Zidek2012-12-142-0/+47
| | | | https://fedorahosted.org/sssd/ticket/1659
* LDAP: Only convert direct parents' ghost attribute to memberJakub Hrozek2012-11-212-2/+3
| | | | | | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting.
* Display more information on DB version crashOndrej Kos2012-11-193-0/+4
| | | | | | | | | | | | | https://fedorahosted.org/sssd/ticket/1589 Added check for determining, whether database version is higher or lower than expected. To distinguish it from other errors it uses following retun values (further used for appropriate error message): EMEDIUMTYPE for lower version than expected EUCLEAN for higher version than expected When SSSD or one of it's tools fails on DB version mismatch, new error message is showed suggesting how to proceed.
* sss_cache: Remove fastcache even if sssd is not running.Michal Zidek2012-11-063-20/+152
| | | | https://fedorahosted.org/sssd/ticket/1584
* sss_cache: Multiple domains not handled properlyMichal Zidek2012-11-061-35/+37
| | | | | | | | | | When working with multiple domains and no matching objects for deletion were found in the first domain, the other domains were not searched at all. Also the ERROR message informing about object not found (the one printed for each domain) was changed to DEBUG message.
* sss_seed: Improved error message when the domain does not exist.Michal Zidek2012-10-031-2/+5
| | | | https://fedorahosted.org/sssd/ticket/1553
* sss_seed: Passwords longer then PASS_MAX not allowed.Michal Zidek2012-10-031-1/+8
| | | | | | | | sss_seed fails if password file specified with -p or --password-file option contains password longer than PASS_MAX. Man pages inform about PASS_MAX limitation.
* sss_seed: Make only first line of password file valid.Michal Zidek2012-10-031-0/+36
| | | | | | | | When file is used to specify a password in sss_seed, then only first line of this file is used. Also empty passwords are treated as errors. https://fedorahosted.org/sssd/ticket/1548
* sss_seed: Show error message when interactive input fails.Michal Zidek2012-10-031-0/+1
| | | | https://fedorahosted.org/sssd/ticket/1549
* sss_seed: Option --debug did not work in sss_seed tool.Michal Zidek2012-10-031-4/+4
| | | | | | | debug_level was set before the parameters were parsed, so the default debug_level value was always used. Also CHECK_ROOT macro was used on bad place, so only root was able to run sss_seed --help/-?.
* SYSDB: Remove unnecessary domain parameter from several sysdb callsJakub Hrozek2012-09-242-13/+6
| | | | | The domain can be read from the sysdb object. Removing the domain string makes the API more self-contained.
* sss_cache tool invalidates records in memory cache.Michal Zidek2012-09-241-0/+26
|
* tools_util.h provides signal_sssd function.Michal Zidek2012-09-243-99/+99
|
* Unify usage of sysdb transactionsMichal Zidek2012-08-236-11/+67
| | | | | | Removing bad examples of usage of sysdb_transaction_start/commit/end functions and making it more consistent (all files except of src/db/sysdb_*.c).
* Return value of fread in src/tools/sss_debuglevel.c no longer ignored.Michal Zidek2012-08-031-1/+9
| | | | https://fedorahosted.org/sssd/ticket/1426
* First-boot sss_seed toolNick Guay2012-08-011-0/+829
|
* Make re_expression and full_name_format per domain optionsStef Walter2012-06-121-1/+1
| | | | | | | | | | | * Allows different user/domain qualified names for different domains. For example Domain\User or user@domain. * The global re_expression and full_name_format options remain as defaults for the domains. * Subdomains get the re_expression and full_name_format of their parent domain. https://bugzilla.redhat.com/show_bug.cgi?id=811663
* Ghost members - modified sss_groupshowJan Zeleny2012-05-311-4/+40
|
* Always use positional arguments in translatable stringsStephen Gallagher2012-05-228-23/+23
| | | | https://fedorahosted.org/sssd/ticket/1336
* SSS_DEBUGLEVEL: silence analyzer warningsJakub Hrozek2012-05-031-2/+3
| | | | | | | Errno was returned instead of ret. The other hunk removes return code from fread - it is not needed, the NULL termination of the string is ensured by initializing the buffer.
* Convert read and write operations to sss_atomic_readJakub Hrozek2012-04-201-32/+19
| | | | https://fedorahosted.org/sssd/ticket/1209
* sss_cache: Better error reportingJakub Hrozek2012-04-181-37/+94
| | | | | | | | | | * Print usage when no options are given * Report skipped entries * Print error message when a nonexistent domain is selected https://fedorahosted.org/sssd/ticket/1301 https://fedorahosted.org/sssd/ticket/1305 https://fedorahosted.org/sssd/ticket/1306
* sss_cache: support invalidating services and autofs mapsJakub Hrozek2012-04-181-9/+118
| | | | https://fedorahosted.org/sssd/ticket/1170
* Hide --debug option in sss_debuglevelPavel Březina2012-03-021-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1224
* Keep sysdb context in domain info structSumit Bose2012-02-292-16/+4
|
* pam_sss: keep selinux optionalSimo Sorce2012-02-231-3/+0
| | | | Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>
* Don't give memory context in confdb where not neededJan Zeleny2012-02-211-3/+3
|
* Cleanup: Remove unused parametersJakub Hrozek2011-11-227-39/+30
|
* Fixed possible resource leak in create_mail_spool()Jan Zeleny2011-11-071-9/+9
| | | | https://fedorahosted.org/sssd/ticket/1071
* TOOLS: Do not leak pid_file handle on errorStephen Gallagher2011-10-141-1/+2
| | | | Coverity 11032
* SysDB commands that save lastUpdate allows this value to be passed inPavel Březina2011-10-131-2/+2
| | | | https://fedorahosted.org/sssd/ticket/836
* Use explicit base 10 for converting strings to integersJakub Hrozek2011-10-031-1/+1
| | | | https://fedorahosted.org/sssd/ticket/1013
* Multiline macro cleanupJakub Hrozek2011-09-281-1/+1
| | | | | | | | | | This is mostly a cosmetic patch. The purpose of wrapping a multi-line macro in a do { } while(0) is to make the macro usable as a regular statement, not a compound statement. When the while(0) is terminated with a semicolon, the do { } while(0); block becomes a compound statement again.
* sss_debuglevel - change the debug levels on the flyPavel Březina2011-09-061-0/+393
| | | | https://fedorahosted.org/sssd/ticket/950
* New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0Pavel Březina2011-08-258-8/+8
| | | | | | | | | | | | | | | | | | | | | Removed: SSS_UNRESOLVED_DEBUG_LEVEL (completely replaced with SSSDBG_UNRESOLVED) Added new macro: CONVERT_AND_SET_DEBUG_LEVEL(new_value) Changes unresolved debug level value (SSSDBG_UNRESOLVED) from -1 to 0 so DEBUG macro could be reduced by one condition. Anyway, it has a minor effect, every time you want to load debug_level from command line parameters, you have to use following pattern: /* Set debug level to invalid value so we can deside if -d 0 was used. */ debug_level = SSSDBG_INVALID; pc = poptGetContext(argv[0], argc, argv, long_options, 0); while((opt = poptGetNextOpt(pc)) != -1) { ... } CONVERT_AND_SET_DEBUG_LEVEL(debug_level);
* New DEBUG facility - conversionPavel Březina2011-08-259-21/+9
| | | | | | | | | | https://fedorahosted.org/sssd/ticket/925 Conversion of the old debug_level format to the new one. (only where it was necessary) Removed: SSS_DEFAULT_DEBUG_LEVEL (completely replaced with SSSDBG_DEFAULT)
* sysdb refactoring: memory context deletedJan Zeleny2011-08-152-13/+9
| | | | | | This patch deletes memory context parameter in those places in sysdb where it is not necessary. The code using modified functions has been updated. Tests updated as well.
* sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny2011-08-1510-45/+23
| | | | | The patch also updates code using modified functions. Tests have also been adjusted.
* Replace system() function with fork and execl call.Matthew Ife2011-07-011-22/+30
| | | | | | | | | | This is much more selinux friendly as it allows policy makers to call nscd_domtrans to transition to nscd_t instead of giving more access to the system via the corcmd_exec_bin macro. Modified-by: Simo Sorce <ssorce@redhat.com> Signed-off-by: Simo Sorce <ssorce@redhat.com>
* Set _GNU_SOURCE globallySumit Bose2011-05-231-1/+0
|
* Fixed uninitialized value in sss_cacheJan Zeleny2011-05-161-0/+1
| | | | https://fedorahosted.org/sssd/ticket/865
* Cache cleaning toolJan Zeleny2011-05-041-0/+360
|
* sss_obfuscate: abort on ctrl+cStephen Gallagher2011-03-241-0/+12
| | | | | | | There is a python bug (http://bugs.python.org/issue11236) where getpass.getpass() does not throw KeyboardInterrupt on ctrl+c. This workaround is the closest we can get: if we detect the control character in the string that we read, we'll cancel.
* sss_obfuscate: Avoid traceback on ctrl+dStephen Gallagher2011-03-241-5/+9
|
* removing password option functionalityGowrishankar Rajaiyan2011-02-031-5/+1
|
* Gracefully handle permission errors in sss_obfuscateStephen Gallagher2011-02-031-3/+15
|
* Make the domain argument mandatory in sss_obfuscateStephen Gallagher2011-02-031-2/+6
| | | | | It doesn't make sense to set a "default" domain. We should require that the domain always be specified.
* Fix usability of sss_obfuscate commandStephen Gallagher2011-01-171-12/+21
|
* Fix boolean comparison against stringStephen Gallagher2011-01-051-2/+2
| | | | Coverity 10082 and 100083
* Properly check the return value from semanage_commitStephen Gallagher2010-11-051-2/+2
| | | | | | | semanage_commit() returns -1 on error, and can return a positive value on success. https://bugzilla.redhat.com/show_bug.cgi?id=649037
generated by cgit (git 2.34.1) at 2024-05-01 20:43:19 +0000