summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2012-02-06SELinux support in PAM responderJan Zeleny2-0/+167
2012-02-06Added some SELinux-related sysdb routinesJan Zeleny4-1/+547
2012-02-06Added some SELinux-related utility functionsJan Zeleny3-1/+235
2012-02-06Renamed some sysdb constants for their wider usageJan Zeleny3-11/+9
2012-02-06Make password migration code use the IPA config retrieval codeJan Zeleny1-57/+14
2012-02-06Add support for generic IPA config retrievalJan Zeleny3-0/+210
2012-02-06Fixed minor memory-hierarchy-related issue in IPA HBACJan Zeleny1-1/+2
2012-02-06Implemented support for multiple search bases in HBAC rules and servicesJan Zeleny10-116/+365
2012-02-05Do not call sudo functions if built without-sudoJakub Hrozek2-7/+7
2012-02-05AUTOFS: LDAP providerJakub Hrozek13-2/+1488
2012-02-05AUTOFS: responderJakub Hrozek17-11/+1809
2012-02-05Split the logic to check cache expiration into separate functionJakub Hrozek3-43/+73
2012-02-05RESPONDERS: Refactor setent_req_listJakub Hrozek6-100/+133
Makes the setent_add_ref() and setent_notify_*() functions more generic to be reusable by the autofs responder.
2012-02-05AUTOFS: Data Provider requestJakub Hrozek5-30/+317
2012-02-05AUTOFS: a command-line test clientJakub Hrozek3-0/+128
A very simply binary that can be used to test getting data from the library via SSSD in pretty much the same way SSSD would. A required positional parameter specifies the map name and the tool would print out all the key/value pairs using _sss_getautomntent_r(). You can also specify -n to query a specific key using _sss_getautomntbyname_r().
2012-02-05AUTOFS: a client libraryJakub Hrozek7-1/+487
This is the library the autofs client is using. automounter dlopen()s the library so there is no header file, no pkgconfig file and the library is in the libsss_autofs package, not in -devel. The library provides the following interface: * _sss_setautomntent() - select the map for processing * _sss_getautomntent_r() - iterates through key/value pairs in the selected map. The key is usually the mount point, the value is mount information (server:/export) * _sss_getautomntbyname_r() - returns value for a specific key. * _sss_endautomntent() deselect a map, clean up
2012-02-05AUTOFS: sysdb interfaceJakub Hrozek5-7/+522
2012-02-05SYSDB: Remove code duplication between member_add and member_delJakub Hrozek1-39/+14
2012-02-05BUILD: Introduce a --with-autofs config optionJakub Hrozek2-0/+23
This would allow to select the autofs feature during build without having to select the other features.
2012-02-04Fix configure with old autoconf versionsJakub Hrozek1-1/+0
2012-02-04Build all experimental features during 'make distcheck'Stephen Gallagher1-1/+2
2012-02-04Move BUILD_SUDO outside the generic LDAP source filesJakub Hrozek5-95/+127
Avoid #ifdefs in the general part of the code
2012-02-04SUDO: introduce a new config option --with-sudoJakub Hrozek2-5/+24
At the time being the option is also turned on when --enable-all-experimental-features is specified. https://fedorahosted.org/sssd/ticket/1145
2012-02-04ConfigAPI: add sudo to known servicesJakub Hrozek3-2/+14
https://fedorahosted.org/sssd/ticket/1144 Squashed patch from Jan Zeleny: Add SUDO provider to the list of available providers in SSSDConfig.py
2012-02-04Fixes for sudo_timedJakub Hrozek2-23/+53
https://fedorahosted.org/sssd/ticket/1116
2012-02-04SUDO Integration - responder 'sudo_timed' optionPavel Březina6-38/+166
https://fedorahosted.org/sssd/ticket/1116
2012-02-04SUDO Integration - in-memory cache in responderPavel Březina8-9/+456
New sudo responder option: cache_timeout https://fedorahosted.org/sssd/ticket/1111
2012-02-04NSS: Add individual timeouts for entry typesStephen Gallagher23-43/+164
https://fedorahosted.org/sssd/ticket/1016
2012-02-04LDAP: Fix incorrect search timeoutsStephen Gallagher2-2/+2
2012-02-04LDAP: Do not fail if RootDSE check cannot determine search basesStephen Gallagher9-5/+95
https://fedorahosted.org/sssd/ticket/1152
2012-02-04NSS: Use sss_hash_create instead of destructorJakub Hrozek2-13/+2
2012-02-02RESPONDERS: Provide a common sss_cmd_send_error functionJakub Hrozek3-13/+19
The common function could be reused in new responders
2012-02-01Use profiling Docbook XSLT only if available, fall back to normalJakub Hrozek3-12/+30
2012-02-01Fixed wrong position of ldap_service_search_baseJan Zeleny1-1/+1
The wrong position in configuration directive array caused problems in IPA provider, which tried to fetch another value instead of the services lookup base.
2012-01-31Refactor nss_cmd_send_emptyJakub Hrozek6-41/+46
2012-01-31SYSDB: index sudoUserJakub Hrozek3-1/+99
Most of the the searches in the Sudo responder include the sudoUser attribute. Indexing it will make the responder faster.
2012-01-31KRB5: Add syslog messages for Kerberos failuresStephen Gallagher2-0/+9
https://fedorahosted.org/sssd/ticket/1137
2012-01-31LDAP: Add new options for service mapsStephen Gallagher4-1/+89
Adds the new service map options to the SSSDConfig API and the manpages.
2012-01-31IPA: Add support for services lookups (non-enum)Stephen Gallagher4-1/+44
2012-01-31LDAP: Add enumeration support for servicesStephen Gallagher7-3/+215
2012-01-31LDAP: Add support for service lookups (non-enum)Stephen Gallagher9-0/+893
2012-01-31SYSDB: Add sysdb_attrs_get_uint16_tStephen Gallagher2-0/+28
2012-01-31SYSDB: extend sysdb_store_service() to accept additional attributesStephen Gallagher6-21/+47
2012-01-30SUDO: Provide documentation for the SUDO APIJakub Hrozek6-3/+1673
2012-01-30docs: Use absolute srcdir pathJakub Hrozek2-4/+4
Building docs only worked in parallel builds. This patch uses abs_top_srcdir to make building documentation work in both parallel and in-tree builds.
2012-01-30Include sudo manual pages only conditionallyJakub Hrozek3-11/+44
2012-01-30SUDO Integration - manual pagePavel Březina2-1/+212
https://fedorahosted.org/sssd/ticket/1109
2012-01-30SSSDConfigAPI: Move sssd.api.* to /usr/share/sssdStephen Gallagher3-12/+11
https://fedorahosted.org/sssd/ticket/1158
2012-01-30Fix sudo compilation on RHEL5Jakub Hrozek3-0/+5
2012-01-27SUDO Integration - test client changedPavel Březina1-78/+13
Without user name given it displays cn=defaults record. Client no longer display raw data. https://fedorahosted.org/sssd/ticket/1143