Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix typo in initgroups negative cache check | Stephen Gallagher | 2011-05-31 | 1 | -1/+1 |
| | |||||
* | Changing default to Default for consistency | Kaushik Banerjee | 2011-05-31 | 1 | -1/+1 |
| | |||||
* | Add more detail to ldap_uri manpage entry | Stephen Gallagher | 2011-05-27 | 1 | -1/+13 |
| | |||||
* | Sanitize username during initgroups call | Sumit Bose | 2011-05-25 | 1 | -1/+7 |
| | |||||
* | Separate return paths for success and failure in sdap_nested_group_check_cache | Jakub Hrozek | 2011-05-25 | 1 | -6/+10 |
| | |||||
* | Make "password" the default for ldap_default_authtok_type | Stephen Gallagher | 2011-05-24 | 2 | -1/+4 |
| | |||||
* | Fix uninitialized scalar variable in sdap_nested_group_check_cache | Jakub Hrozek | 2011-05-24 | 1 | -2/+4 |
| | | | | https://fedorahosted.org/sssd/ticket/878 | ||||
* | Fix uninitialized pointer read in sdap_x_deref_parse_entry | Jakub Hrozek | 2011-05-24 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/877 | ||||
* | Fix bad comparison in sdap_has_deref_support | Jakub Hrozek | 2011-05-24 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/876 | ||||
* | Import config.h earlier | Stephen Gallagher | 2011-05-23 | 3 | -5/+3 |
| | | | | | | On RHEL 5 and other older platforms, failing to set _GNU_SOURCE early would cause some functions - such as strndup() - to be unavailable. | ||||
* | Include string.h in sss_cli.h | Sumit Bose | 2011-05-23 | 1 | -0/+1 |
| | | | | Since memcpy() is used in sss_cli.h it should be declared here, too. | ||||
* | Set _GNU_SOURCE globally | Sumit Bose | 2011-05-23 | 13 | -23/+13 |
| | |||||
* | Use dereference when processing RFC2307bis nested groups | Jakub Hrozek | 2011-05-20 | 9 | -17/+487 |
| | | | | | | | | Instead of issuing N LDAP requests when processing a group with N users, utilize the dereference functionality to pull down all the members in a single LDAP request. https://fedorahosted.org/sssd/ticket/799 | ||||
* | Refactor RFC2307bis nested group processing | Jakub Hrozek | 2011-05-20 | 1 | -123/+188 |
| | | | | | | This patch splits checking cache and hash tables into standalone functions. This will make it easy to reuse the code in a new branch that uses dereferencing. | ||||
* | Use fake users during RFC2307bis nested group processing | Jakub Hrozek | 2011-05-20 | 1 | -13/+165 |
| | | | | | | Instead of downloading complete user data which is potentionally very slow, only download the necessary minimum information and store the users as dummy entries. | ||||
* | Change sysdb_add_fake_user to add OriginalDN | Jakub Hrozek | 2011-05-20 | 3 | -3/+11 |
| | | | | | RFC2307bis code relies heavily on originalDN, so the fake users need to have an option to store it, too. | ||||
* | Generic dereference search | Jakub Hrozek | 2011-05-20 | 2 | -0/+157 |
| | | | | | | A generic wrapper around ASQ and OpenLDAP dereference searches. https://fedorahosted.org/sssd/ticket/635 | ||||
* | OpenLDAP dereference searches | Jakub Hrozek | 2011-05-20 | 3 | -0/+376 |
| | | | | | | | | This dereference method is supported at least by OpenLDAP and 389DS/RHDS For more details, see: http://tools.ietf.org/html/draft-masarati-ldap-deref-00 | ||||
* | Add support for Attribute Scoped Queries | Jakub Hrozek | 2011-05-20 | 2 | -0/+207 |
| | | | | | | For more details on ASQ, see: http://msdn.microsoft.com/en-us/library/aa366976%28VS.85%29.aspx http://msdn.microsoft.com/en-us/library/aa746418%28v=VS.85%29.aspx | ||||
* | Generic dereference data structures and utilities | Jakub Hrozek | 2011-05-20 | 2 | -0/+45 |
| | | | | These will be shared by both dereference methods in a later patch. | ||||
* | sdap_get_generic_ext | Jakub Hrozek | 2011-05-20 | 1 | -73/+202 |
| | | | | | | | | | | | Add a private sdap_get_generic_ext_send()/_recv() request that exposes more of ldap_search_ext options, in particular the server contols. The existing sdap_generic_search_send()/_recv() request is now a thin wrapper around the new _ext request. The other important change is that an entry parsing is a callback now. That was done in order to allow custom parsing for results such as OpenLDAP deref or Attribute Scoped Queries. | ||||
* | Add new options to override shell value | Jakub Hrozek | 2011-05-20 | 8 | -1/+188 |
| | | | | https://fedorahosted.org/sssd/ticket/742 | ||||
* | Add a new option to override home directory value | Jakub Hrozek | 2011-05-20 | 9 | -2/+192 |
| | | | | https://fedorahosted.org/sssd/ticket/551 | ||||
* | Add a new option to override primary GID number | Jakub Hrozek | 2011-05-20 | 8 | -2/+33 |
| | | | | https://fedorahosted.org/sssd/ticket/742 | ||||
* | Fixed copying of pam_data structure | Jan Zeleny | 2011-05-20 | 1 | -0/+1 |
| | | | | | Related ticket: https://fedorahosted.org/sssd/ticket/855 | ||||
* | Rename label in expand_ccname_template | Jakub Hrozek | 2011-05-20 | 1 | -17/+17 |
| | | | | The label was named fail but used also in success cases. | ||||
* | Remove append_attrs_to_array | Jakub Hrozek | 2011-05-20 | 2 | -12/+0 |
| | | | | This function was not used anywhere | ||||
* | IPA Provider: don't fail if user is not a member of any groups | Stephen Gallagher | 2011-05-20 | 1 | -2/+5 |
| | |||||
* | Fixed uninitialized value in sss_cache | Jan Zeleny | 2011-05-16 | 1 | -0/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/865 | ||||
* | Fixed unitialized pointer in select_principal_from_keytab | Jan Zeleny | 2011-05-16 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/857 | ||||
* | Fixed unitialized return value in match_principal | Jan Zeleny | 2011-05-16 | 1 | -2/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/858 | ||||
* | Possible memory leak fixed | Jan Zeleny | 2011-05-16 | 1 | -1/+1 |
| | |||||
* | Fixed wrong variable in sdap_initgr_nested_store | Jan Zeleny | 2011-05-16 | 1 | -1/+1 |
| | |||||
* | Fixed --debug-to-files for nss and pam services | Jan Zeleny | 2011-05-16 | 1 | -4/+4 |
| | | | | | This error caused that monitor didn't pass --debug-to-files option to nss and pam services when creating them. | ||||
* | Set c-ares to retry nameservers | Jakub Hrozek | 2011-05-12 | 1 | -1/+1 |
| | | | | https://fedorahosted.org/sssd/ticket/867 | ||||
* | Use a temporary memory context in expand_ccname_template | Jakub Hrozek | 2011-05-12 | 1 | -20/+33 |
| | |||||
* | Add support for openldap24 package on RHEL 5.7 | Sumit Bose | 2011-05-06 | 1 | -0/+21 |
| | |||||
* | Allow changing the log level without restart | Stephen Gallagher | 2011-05-06 | 10 | -17/+89 |
| | | | | | | We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP. | ||||
* | Create common sss_monitor_init() | Stephen Gallagher | 2011-05-06 | 4 | -69/+55 |
| | | | | | | | | This was implemented almost identically for both the responders and the providers. It is easier to maintain as a single routine. This patch also adds the ability to provide a private context to attach to the sbus_connection for later use. | ||||
* | Remove unused constants from data_provider.h | Jakub Hrozek | 2011-05-06 | 1 | -11/+0 |
| | |||||
* | Do not leak netgroups hash table | Jakub Hrozek | 2011-05-06 | 1 | -0/+12 |
| | |||||
* | Added some kerberos functions for building on RHEL5 | Jan Zeleny | 2011-05-05 | 4 | -8/+192 |
| | |||||
* | Man page for sss_cache | Jan Zeleny | 2011-05-04 | 2 | -1/+123 |
| | |||||
* | Some minor fixes and changes in sysdb_ops | Jan Zeleny | 2011-05-04 | 1 | -17/+40 |
| | |||||
* | Cache cleaning tool | Jan Zeleny | 2011-05-04 | 1 | -0/+360 |
| | |||||
* | Add a function for searching netgroups with custom filter | Jan Zeleny | 2011-05-04 | 2 | -0/+65 |
| | |||||
* | Make sysdb_ctx_list public structure | Jan Zeleny | 2011-05-04 | 3 | -8/+53 |
| | | | | Also create a routine to initialize it | ||||
* | Fixed lastUSN checking improvements | Jan Zeleny | 2011-05-04 | 3 | -5/+23 |
| | | | | | | | | This patch fixes some issues with setting lastUSN attribute and it adds check against the highest user/group USN after enumeration to keep better track of the real highest USN. Optimal solution here would be to schedule a check of rootDSE entry right after the enumeration finishes, but for the moment this is good enough. | ||||
* | Override config file debug_level with command-line | Stephen Gallagher | 2011-05-04 | 4 | -22/+66 |
| | | | | | | | | | | | This patch also makes the following changes: 1) The [sssd] debug_level setting no longer acts as a default for all other sections. 2) We will now skip passing the debug argument to the child processes from the master unless the SSSD was run with a command-line argument for the debug level. https://fedorahosted.org/sssd/ticket/764 | ||||
* | Do not leak LDAP URI with high log level | Jakub Hrozek | 2011-05-04 | 1 | -2/+7 |
| |