summaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* Add new options to override shell valueJakub Hrozek2011-05-208-1/+188
| | | | https://fedorahosted.org/sssd/ticket/742
* Add a new option to override home directory valueJakub Hrozek2011-05-209-2/+192
| | | | https://fedorahosted.org/sssd/ticket/551
* Add a new option to override primary GID numberJakub Hrozek2011-05-208-2/+33
| | | | https://fedorahosted.org/sssd/ticket/742
* Fixed copying of pam_data structureJan Zeleny2011-05-201-0/+1
| | | | | Related ticket: https://fedorahosted.org/sssd/ticket/855
* Rename label in expand_ccname_templateJakub Hrozek2011-05-201-17/+17
| | | | The label was named fail but used also in success cases.
* Remove append_attrs_to_arrayJakub Hrozek2011-05-202-12/+0
| | | | This function was not used anywhere
* IPA Provider: don't fail if user is not a member of any groupsStephen Gallagher2011-05-201-2/+5
|
* Fixed uninitialized value in sss_cacheJan Zeleny2011-05-161-0/+1
| | | | https://fedorahosted.org/sssd/ticket/865
* Fixed unitialized pointer in select_principal_from_keytabJan Zeleny2011-05-161-1/+1
| | | | https://fedorahosted.org/sssd/ticket/857
* Fixed unitialized return value in match_principalJan Zeleny2011-05-161-2/+1
| | | | https://fedorahosted.org/sssd/ticket/858
* Possible memory leak fixedJan Zeleny2011-05-161-1/+1
|
* Fixed wrong variable in sdap_initgr_nested_storeJan Zeleny2011-05-161-1/+1
|
* Fixed --debug-to-files for nss and pam servicesJan Zeleny2011-05-161-4/+4
| | | | | This error caused that monitor didn't pass --debug-to-files option to nss and pam services when creating them.
* Set c-ares to retry nameserversJakub Hrozek2011-05-121-1/+1
| | | | https://fedorahosted.org/sssd/ticket/867
* Use a temporary memory context in expand_ccname_templateJakub Hrozek2011-05-121-20/+33
|
* Add support for openldap24 package on RHEL 5.7Sumit Bose2011-05-061-0/+21
|
* Allow changing the log level without restartStephen Gallagher2011-05-0610-17/+89
| | | | | | We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP.
* Create common sss_monitor_init()Stephen Gallagher2011-05-064-69/+55
| | | | | | | | This was implemented almost identically for both the responders and the providers. It is easier to maintain as a single routine. This patch also adds the ability to provide a private context to attach to the sbus_connection for later use.
* Remove unused constants from data_provider.hJakub Hrozek2011-05-061-11/+0
|
* Do not leak netgroups hash tableJakub Hrozek2011-05-061-0/+12
|
* Added some kerberos functions for building on RHEL5Jan Zeleny2011-05-054-8/+192
|
* Man page for sss_cacheJan Zeleny2011-05-042-1/+123
|
* Some minor fixes and changes in sysdb_opsJan Zeleny2011-05-041-17/+40
|
* Cache cleaning toolJan Zeleny2011-05-041-0/+360
|
* Add a function for searching netgroups with custom filterJan Zeleny2011-05-042-0/+65
|
* Make sysdb_ctx_list public structureJan Zeleny2011-05-043-8/+53
| | | | Also create a routine to initialize it
* Fixed lastUSN checking improvementsJan Zeleny2011-05-043-5/+23
| | | | | | | | This patch fixes some issues with setting lastUSN attribute and it adds check against the highest user/group USN after enumeration to keep better track of the real highest USN. Optimal solution here would be to schedule a check of rootDSE entry right after the enumeration finishes, but for the moment this is good enough.
* Override config file debug_level with command-lineStephen Gallagher2011-05-044-22/+66
| | | | | | | | | | | This patch also makes the following changes: 1) The [sssd] debug_level setting no longer acts as a default for all other sections. 2) We will now skip passing the debug argument to the child processes from the master unless the SSSD was run with a command-line argument for the debug level. https://fedorahosted.org/sssd/ticket/764
* Do not leak LDAP URI with high log levelJakub Hrozek2011-05-041-2/+7
|
* Do not leak pcre contextJakub Hrozek2011-05-041-0/+12
|
* clients: use poll instead of selectSimo Sorce2011-05-031-9/+6
| | | | | | | select is limited to fd numbers up to 1024, we need to use poll() here to avoid causing memory corruption in the calling process. Fixes: https://fedorahosted.org/sssd/ticket/861
* Fix minor typo in error messageStephen Gallagher2011-05-021-1/+1
| | | | https://fedorahosted.org/sssd/ticket/825
* Return pam data to the renewal item if renewal failsSumit Bose2011-05-021-4/+9
| | | | | | | | | A previous patch changed a talloc_steal() into a talloc_move(). Now it is not enough to change the parent memory context with talloc_steal to give back the data, but it has to be assigned back too. Additionally this patch uses the missing pam data as an indication that a renewal request for this data is currently running.
* Fix order of arguments in select_principal_from_keytab() callJakub Hrozek2011-04-291-1/+1
|
* Fix bad password caching when using automatic TGT renewalStephen Gallagher2011-04-291-3/+12
| | | | Fixes CVE-2011-1758, https://fedorahosted.org/sssd/ticket/856
* Fix segfault in IPA providerStephen Gallagher2011-04-291-2/+2
| | | | | | We were trying to request the krb5 keytab from the auth provider configuration, but it hasn't yet been set up. Much better to use the value in the ID provider.
* Fix IPA config bug with SDAP_KRB5_REALMStephen Gallagher2011-04-281-1/+1
|
* Do not leak LDAP paging controlsJakub Hrozek2011-04-281-0/+5
|
* Regular translation updateStephen Gallagher2011-04-276-939/+1562
|
* Add "description" option to SSSDConfig APIStephen Gallagher2011-04-272-0/+3
| | | | https://fedorahosted.org/sssd/ticket/850
* Add ldap_page_size configuration optionStephen Gallagher2011-04-279-5/+28
|
* Enable paging support for LDAPStephen Gallagher2011-04-271-23/+117
|
* Log the LDAP message type we're processingStephen Gallagher2011-04-271-0/+57
|
* simple provider: Don't treat primary GID lookup failures as fatalStephen Gallagher2011-04-271-13/+19
|
* Require openssl-devel is libcrypto backend is selectedJakub Hrozek2011-04-273-17/+44
|
* Modify principal selection for keytab authenticationJan Zeleny2011-04-2510-30/+254
| | | | | | | | | | | | | | | | Currently we construct the principal as host/fqdn@REALM. The problem with this is that this principal doesn't have to be in the keytab. In that case the provider fails to start. It is better to scan the keytab and find the most suitable principal to use. Only in case no suitable principal is found the backend should fail to start. The second issue solved by this patch is that the realm we are authenticating the machine to can be in general different from the realm our users are part of (in case of cross Kerberos trust). The patch adds new configuration option SDAP_SASL_REALM. https://fedorahosted.org/sssd/ticket/781
* Case insensitive originalDN testJakub Hrozek2011-04-251-0/+47
|
* Added originalDN to attributes with case-insensitive searchJan Zeleny2011-04-252-1/+106
| | | | https://fedorahosted.org/sssd/ticket/808
* Configuration parsing updatesJan Zeleny2011-04-256-53/+19
| | | | | | | | | | | | These changes are all related to following ticket: https://fedorahosted.org/sssd/ticket/763 Changes in SSSDConfig.py merge old and new domain record instead of just deleting the old and inserting the new one. The old approach let to loss of some information like comments and blank lines in the config file. Changes in API config were performed so our Python scripts (like sss_obfuscate) don't add extra config options to the config file.
* Don't use negative cache in netgroup lookupJan Zeleny2011-04-252-20/+20
| | | | | | | | | | | | | | In responder a negative cache is used to indicate that the record has not been found by previous lookup. This approach is however not applicable for netgroup lookup because the design of their lookup is a little different. This patch removes some pieces of code working with negative cache, because they didn't fuction well. Instead a new flag has been added to the positive cache. This flag indicates if the record in the cache is a record of existing netgroup or it's just a placeholder. https://fedorahosted.org/sssd/ticket/820
generated by cgit (git 2.34.1) at 2024-04-30 19:15:03 +0000