summaryrefslogtreecommitdiffstats
path: root/daemons/ipa-kdb
Commit message (Expand)AuthorAgeFilesLines
* kdb: check for local realm in enterprise principalsHEADmasterSumit Bose2016-07-061-12/+40
* IPA KDB: use empty profile to init krb5 context in testsSumit Bose2016-07-061-1/+7
* Allow unexpiring passwordsDavid Kupka2016-07-012-1/+16
* ipa-kdb: set krbCanonicalName when creating new principalsMartin Babinsky2016-06-231-3/+1
* perform case-insensitive principal search when canonicalization is requestedMartin Babinsky2016-06-231-1/+12
* adtrust: support UPNs for trusted domain usersAlexander Bokovoy2016-06-112-11/+50
* Migrate from #ifndef guards to #pragma onceNathaniel McCallum2016-05-291-5/+1
* Enable authentication indicators for OTP and RADIUSNathaniel McCallum2016-05-261-2/+8
* Return password-only preauth if passwords are allowedNathaniel McCallum2016-05-261-4/+2
* ipa_kdb: add krbPrincipalAuthInd handlingMatt Rogers2016-05-021-0/+170
* Allow to specify Kerberos authz data type per userSimo Sorce2016-03-091-7/+9
* Allow admins to disable preauth for SPNs.Simo Sorce2016-03-083-6/+27
* ipa-kdb: map_groups() consider all resultsSumit Bose2016-02-021-52/+56
* ipa-kdb: get_authz_data_types() make sure entry can be NULLSumit Bose2016-01-272-1/+9
* Always verify we have a valid ldap context.Simo Sorce2016-01-131-0/+29
* FIX: ipa_kdb_principals: add missing break statementMartin Basti2015-11-301-0/+1
* Return default TL_DATA is krbExtraData is missingSimo Sorce2015-11-251-1/+10
* ipa_kdb_tests: Fix test with default krb5.confLukas Slebodnik2015-11-181-0/+4
* cmocka_tests: Do not use deprecated cmocka interfaceLukas Slebodnik2015-11-181-8/+15
* ipa_kdb_tests: Fix warning Wmissing-bracesLukas Slebodnik2015-11-131-2/+2
* ipa_kdb_tests: Remove unused variablesLukas Slebodnik2015-11-131-4/+0
* client referral support for trusted domain principalsAlexander Bokovoy2015-10-083-0/+123
* ipa-kdb: add unit_tests for string_to_sid() and dom_sid_string()Sumit Bose2015-07-081-0/+60
* ipa-kdb: make string_to_sid() and dom_sid_string() more robustSumit Bose2015-07-081-1/+10
* ipa-kdb: add unit-test for filter_logon_info()Sumit Bose2015-07-083-50/+323
* ipa-kdb: convert test to cmockaSumit Bose2015-07-082-88/+49
* ipa-kdb: filter out group membership from MS-PAC for exact SID matches tooAlexander Bokovoy2015-07-081-1/+99
* ipa-kdb: use proper memory chunk size when moving sidsAlexander Bokovoy2015-07-081-3/+17
* ipa-kdb: common function to get key encodings/salt typesMartin Babinsky2015-06-292-70/+62
* Fix s4u2proxy README and add warningSimo Sorce2015-06-081-2/+14
* Detect default encsalts kadmin password changeSimo Sorce2015-05-275-0/+144
* ipa-kdb: reject principals from disabled domains as a KDC policyAlexander Bokovoy2015-02-161-1/+1
* ipa-kdb: when processing transitions, hand over unknown ones to KDCAlexander Bokovoy2015-02-161-1/+2
* Handle DAL ABI change in MIT 1.13Simo Sorce2015-02-132-0/+14
* Expose the disabled User Auth TypeNathaniel McCallum2015-02-121-6/+7
* ipa-kdb: more robust handling of principal addition/editingMartin Babinsky2015-01-301-23/+47
* always get PAC for client principal if AS_REQ is trueMartin Babinsky2015-01-301-1/+1
* ipa-kdb: unexpected error code in 'ipa_kdb_audit_as_req' triggers a messageMartin Babinsky2015-01-302-3/+4
* Avoid calling ldap functions without a contextSimo Sorce2015-01-081-3/+16
* Fix unchecked return value in ipa-kdbJan Cholasta2014-11-251-1/+1
* Fix possible NULL dereference in ipa-kdbJan Cholasta2014-11-051-3/+5
* ipa-kdb: fix unit testsSumit Bose2014-09-262-1/+4
* Periodically refresh global ipa-kdb configurationNathaniel McCallum2014-06-195-45/+86
* Restore krbCanonicalName handlingNalin Dahyabhai2014-05-301-5/+1
* Accept any alias, not just the last valueNalin Dahyabhai2014-05-301-0/+3
* kdb: Don't provide password expiration when using only RADIUSNathaniel McCallum2014-05-221-0/+4
* Avoid passing non-terminated string to is_master_hostMartin Kosek2014-03-111-1/+2
* ipa-kdb: do not fetch client principal if it is the same as existing entryAlexander Bokovoy2014-03-061-6/+13
* fix filtering of subdomain-based trust usersAlexander Bokovoy2014-03-051-9/+32
* ipa-kdb: make sure we don't produce MS-PAC in case of authdata flag cleared b...Alexander Bokovoy2014-02-261-0/+8
generated by cgit (git 2.34.1) at 2024-05-08 23:59:44 +0000