summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Properly handle dbus send attempts on a closed connectionStephen Gallagher2010-03-157-133/+109
| | | | | | | | dbus_connection_send_with_reply() will report success and return a NULL pending_reply when the connection is not open for communication. This patch creates a new wrapper around dbus_connection_send_with_reply() to properly detect this condition and report it as an error.
* Revert "Add better checks on PAM socket"Stephen Gallagher2010-03-154-266/+5
| | | | This reverts commit ff019cfb5d083a152361ec9ce3f233211ff3907a.
* Updating translation files for string freeze.Stephen Gallagher2010-03-1512-24/+72
|
* Prompt for old password even when running as rootRalf Haferkamp2010-03-151-2/+4
| | | | | When changing an expired password (during e.g. login) the PAM module needs to prompt for the old password even when running as root.
* Warn user about an expired passwordRalf Haferkamp2010-03-151-1/+6
|
* Fixed authentication check for CHAUTHTOK_PRELIMRalf Haferkamp2010-03-151-1/+1
| | | | | When changing passwords, treat SDAP_AUTH_PW_EXPIRED as a successful authentication in SSS_PAM_CHAUTHTOK_PRELIM.
* Fixed check for expired passwordsRalf Haferkamp2010-03-151-2/+4
| | | | | | When the user's password is expired it might also be indicated by the bind operation returning "INVALID_CREDENTIALS" with the ppolicy control's errorcode set to "PP_passwordExpired".
* Updating zh_TW translationCheng-Chia Tseng2010-03-151-144/+165
|
* Update translations for string freezeStephen Gallagher2010-03-1512-577/+697
|
* Remove unused M4 codeJakub Hrozek2010-03-151-14/+0
|
* Flush NSCD cache after modifying local databaseJakub Hrozek2010-03-159-1/+153
| | | | Fixes: #221
* Add krb5_kpasswd optionSumit Bose2010-03-1212-71/+373
|
* Fix build when check-devel is not installedStephen Gallagher2010-03-124-86/+115
| | | | | tests/common.c is now required by all tests (check-based and not), so we need to properly ifdef it
* Write the IP address of the KDC to the kdcinfo fileSumit Bose2010-03-113-58/+63
|
* Add expandable sequences to krb5_ccachedirSumit Bose2010-03-118-114/+773
| | | | | | | As with krb5_ccname_template sequences like %u can be used in the krb5_ccachedir parameter which are expanded at runtime. If the directory does not exist, it will be created. Depending on the used sequences it is created as a public or private directory.
* Fix memberof calculation when deleting groupsSimo Sorce2010-03-111-0/+5
| | | | | | With complex hierarchies it could happen that the group just deleted was re-added by mistake to the list of groups a user is member of, causing the user to have a stray memberof value in its entry.
* Updating PL translationPiotr Drąg2010-03-111-27/+28
|
* Updating PT translationRui Gouveia2010-03-111-27/+27
|
* Add better checks on PAM socketSumit Bose2010-03-114-5/+266
| | | | | - check if the public socket belongs to root and has 0666 permissions - use a SCM_CREDENTIALS message if available
* Adding empty zh_TW translation filesCheng-Chia Tseng2010-03-092-0/+817
|
* Update ES translationHéctor Daniel Cabrera2010-03-091-27/+27
|
* Update POTFILES.in to include missing translatable stringsStephen Gallagher2010-03-0912-1803/+3009
| | | | Updates the .po files to add these strings.
* Add ID translation for SSSD 1.1.0Stephen Gallagher2010-03-092-0/+728
|
* Updating ES translation for 1.1.0Héctor Daniel Cabrera2010-03-091-3/+4
|
* Updating PT translation for 1.1.0Rui Gouveia2010-03-091-7/+7
|
* Updating PL translation for 1.1Piotr Drąg2010-03-091-3/+3
|
* Update translatable strings for string freezeStephen Gallagher2010-03-0810-241/+326
|
* Add simple access providerSumit Bose2010-03-089-5/+540
|
* Make filter_users and filter_groups also per-domainJakub Hrozek2010-03-084-14/+118
| | | | Fixes: #290
* Updating ES translationHéctor Daniel Cabrera2010-03-081-106/+101
|
* Package example logrotate scriptJakub Hrozek2010-03-082-0/+12
|
* Reopen logs when SIGHUP is caughtJakub Hrozek2010-03-089-3/+62
| | | | | | | | Upon receiving SIGHUP, the monitor signals all services to reopen their debug logs. It is also possible to signal individual services to reopen their particular files. Fixes: #332
* Do not run negative resolv test with no networkJakub Hrozek2010-03-081-3/+73
| | | | | | One of our resolv tests tries to resolve a nonexistent hostname. Do not run this test unless we are explicitly told that a network connection is available (-n). Also do not automatically resolving localhost.
* Fixed alignment problems in nss client/serverGeorge McCollister2010-03-084-13/+37
| | | | | | | | I fixed a handful of alignment problems in sss_client and nss responder. Enumerating group and passwd with getgrent and getpwent now works correctly on ARM. Signed-off-by: George McCollister <georgem@novatech-llc.com>
* groupshow: only show all parents in recursive modeJakub Hrozek2010-03-082-21/+225
|
* Fix debug_timestampsSimo Sorce2010-03-041-0/+1
| | | | | It was broken when the default was changed, making it impossible to silence from the config file.
* Add forgotten \n in DEBUG statementsMartin Nagy2010-03-0415-33/+33
| | | | | | Logs from confdb with missing '\n' in the DEBUG statements annoyed me so I decided to fix them. I also made a quick grep through the code and found other places so I fixed them too.
* Make confdb_init's confdb_location parameter constMartin Nagy2010-03-042-2/+2
|
* Eliminate monitor reconfigStephen Gallagher2010-03-044-380/+4
| | | | | | | | | | | | We disabled live reconfiguration a long time ago with the intent of fixing it so that it wasn't completely broken, but we've decided that live updates are too delicate to handle all cases gracefully. For the forseeable future, we will rely on process restart for updating the configuration. Furthermore, we had not completely disabled live updates. It would still attempt to run if we sent a SIGHUP. This has also been eliminated.
* Add --with-test-dir option to configureStephen Gallagher2010-03-0419-21/+113
| | | | | | All 'make check' tests will chdir() into this directory before running the suite. This provides the option of having temporary files generated in a tmpfs or ramdisk
* Define _GNU_SOURCE in pam_sss.c.George McCollister2010-03-041-0/+4
| | | | | _GNU_SOURCE needs to be defined when using strndup. Signed-off-by: George McCollister <georgem@novatech-llc.com>
* Updating PL translationPiotr Drąg2010-03-041-9/+6
|
* Updating PT translationRui Gouveia2010-03-041-15/+18
|
* Improve safe alignment buffer handling macrosSimo Sorce2010-03-035-64/+74
| | | | | | | | | Make the counter optional so that alignment safe macros can be used also where there is no counter to update. Change arguments names so that they are not deceiving (ptr normlly identify a pointer) Turn the memcpy substitute into an inline function so that passing a pointer to rp and checking for it doesn't make the compiler spit lots of warnings.
* proxy: use correct _recv functionSimo Sorce2010-03-031-1/+1
|
* Update translations for releasesssd-1_0_99Stephen Gallagher2010-02-2510-667/+795
|
* Fix check for values of expiration limitsJakub Hrozek2010-02-252-3/+3
| | | | | There were inconsistencies between what sssd.conf manpage said and what the code enforces.
* Remove a check that was left behindJakub Hrozek2010-02-251-7/+1
| | | | | When refactoring talloc_asprintf calls a check was left behind that cased the backend to go offline immediately.
* Better cleanup task handlingJakub Hrozek2010-02-2311-39/+263
| | | | | | | | | | | | | | | | Implements a different mechanism for cleanup task. Instead of just deleting expired entries, this patch adds a new option account_cache_expiration for domains. If an entry is expired and the last login was more days in the past that account_cache_expiration, the entry is deleted. Groups are deleted if they are expired and and no user references them (no user has memberof: attribute pointing at that group). The parameter account_cache_expiration is not LDAP-specific, so that other future backends might use the same timeout setting. Fixes: #391
* Store lastLogin attribute when authenticating onlineJakub Hrozek2010-02-231-0/+5
|
generated by cgit (git 2.34.1) at 2024-06-22 03:33:47 +0000