summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2010-02-22Remove Kerberos options from confdb.hJakub Hrozek1-8/+0
Kerberos-specific options are pulled using dp_get_opts() and defined in Kerberos subtree. There is no need to keep these in confdb.
2010-02-22Remove unnecessary domain parameter from PAM requestsStephen Gallagher2-28/+5
If we're sending a message to the backend, we already know which domain the request is targeting. Carrying this information is not useful and confuses the interface.
2010-02-22Remove unnecessary "domain" parameter from DP registrationStephen Gallagher6-10/+7
This was a holdover from when the DP and the providers were unique processes. The NSS and PAM registrations do not need to send the domain, as it is not ambiguous which one they are talking to.
2010-02-19Add documentation for PAM response messagesSumit Bose4-20/+273
2010-02-19Remove unneeded items from struct pam_dataSumit Bose8-89/+71
2010-02-19Update PL translationPiotr Drąg1-5/+5
2010-02-19Disable rpath support in the linkerStephen Gallagher1-1/+2
The Fedora Package Guidelines forbid the use of rpaths
2010-02-19Send Kerberos environment after password changeSumit Bose1-1/+1
2010-02-19Fix two typosSumit Bose1-2/+2
2010-02-19Updating ES translationDomingo Becker1-11/+12
2010-02-18Fix bad mergeStephen Gallagher4-1/+3
Merging ba8937d83675c7d69808d1d3df8f823afdc5ce2a left the COPYING and COPYING.LESSER files in the now-defunct sss_client directory. This patch moves them into the right location and fixes the spec file to look for them correctly.
2010-02-18Fix licensing issues for sss_clientStephen Gallagher8-32/+914
2010-02-18Properly license libdhashStephen Gallagher4-0/+88
2010-02-18Fix licensing issues in SSSDStephen Gallagher3-0/+72
2010-02-18License libpath_utils under LGPLStephen Gallagher2-7/+38
2010-02-18Build all manpages from a single locationStephen Gallagher2-1/+1
2010-02-18Rename server/ directory to src/Stephen Gallagher243-23/+12
Also update BUILD.txt
2010-02-18Remove unneeded files from sss_clientStephen Gallagher22-4031/+0
2010-02-18Merge sss_client and sss_daemon translations togetherStephen Gallagher12-13/+1103
2010-02-18Eliminate separate build tree for sss_clientStephen Gallagher42-7/+69
2010-02-18Use macros to hide memcpy callsJakub Hrozek5-149/+71
The memcpy calls introduced in the memalign patches are ugly. This patch hides them behind a set of macros.
2010-02-18Supress warnings with -O2Jakub Hrozek5-12/+10
2010-02-16Add test for number of options in IPA and LDAP backendsJakub Hrozek4-6/+75
2010-02-16Synchronize IPA and LDAP optionsJakub Hrozek1-2/+4
2010-02-16Remove replaceSumit Bose71-14732/+3
2010-02-15Make PAM responses more compatible with D-BUS specStephen Gallagher2-34/+108
Previously, the PAM responses could contain an arbitrary number of arguments. This is not acceptable by the D-BUS protocol, as there is no way to introspect it. This patch converts the response objects to be an array of D-BUS structs. It also fixes two potential memory leaks by not unref'ing the reply object if we get an error.
2010-02-15Make attr_type an integerStephen Gallagher2-20/+14
Previously it was a string being passed and converted into an integer. It will be more efficient this way (and simpler for other implementers)
2010-02-15Add doxygen docs for ConfDBStephen Gallagher5-14/+1761
2010-02-12Add check for broken LDAP connection callbacksSumit Bose2-2/+12
2010-02-12sss_groupshow: separate member lists by commaJakub Hrozek1-3/+6
Fixes: #398
2010-02-12Remove ELAPI from the SSSD repositoryStephen Gallagher40-8421/+3
ELAPI now lives in its own project at https://fedorahosted.org/ELAPI
2010-02-12gitignore additionsJakub Hrozek1-0/+3
2010-02-12Make change password errors more transparentSumit Bose9-24/+228
2010-02-12Don't pass a variable as format to talloc_asprintf()Martin Nagy2-2/+2
This practice is not recommended and can also be dangerous.
2010-02-10sss_groupshow improvementsJakub Hrozek2-104/+698
This patch fixes the following issues: * man page issues (#395) * show info on MPGs (#396) * recursively print indirect members (#397) * the list of groupnames is comma separated (#398) * output inconsistencies (#399)
2010-02-10Make collection_queue.h and collection_stack.h into public headersStephen Gallagher2-3/+5
2010-02-10Fix other memory alignment issuesJakub Hrozek4-42/+55
Similar to George McCollister's patch to the pam code, this patch fixes other places in the code where we forced data into 32-bit alignment. Fixes: #390
2010-02-10Few misc minor man page bugsJakub Hrozek3-26/+23
* sssd.conf * sbus_timeout was used in an example but explained nowhere * enum_cache_timeout unit was not defined * same for entry_cache_timeout * store_legacy_passwords option does not exist anymore * better example than domain/LOCAL - domain/LDAP which uses krb5/ldap * sssd.conf(5) listed sssd.conf(5) in SEE ALSO section * sssd-krb5, sssd-ldap * these include each other in SEE ALSO section Fixes: #393
2010-02-10Make return values more specific during password changeSumit Bose5-38/+84
- return PAM_AUTHTOK_ERR instead of PAM_SYSTEM_ERR if the password change operation fails - send a message to the user if the system is offline and the password cannot be changed
2010-02-10Updating PL translationPiotr Drąg2-8/+10
2010-02-10Fix handling of the global context in the leak detectorSumit Bose2-1/+3
2010-02-10Send a message to the user if the login is delayedSumit Bose7-36/+152
2010-02-05Update translatable stringsStephen Gallagher19-609/+815
2010-02-05Add a few additional extensions to .gitignoreStephen Gallagher1-0/+3
2010-02-05Document when LDAP referral chasing is availableSumit Bose2-0/+17
2010-02-05Reactivate old fd handling conditionallySumit Bose5-1/+82
Older versions of openLDAP do not provide a connection callback. This patch adds a configure check to see if the callback is available and activates the old way of handling the file description of the LDAP connection. This also means that it is not possible to follow referrals.
2010-02-05Add mandatory flag to SSSD config schemaStephen Gallagher8-207/+455
Also add list_mandatory_options() to both SSSDService and SSSDDomain objects. There is a new list_options_with_mandatory() function that will return a longer tuple than list_options(), including the mandatory flag directly.
2010-02-05Remove unnecessary explicit defaults from SSSDConfig APIStephen Gallagher2-10/+10
2010-02-05Add missing includeJakub Hrozek1-0/+1
2010-02-05Added option to use libcrypto instead of NSS.George McCollister7-11/+416
crypto_sha512crypt.c is a clone of nss_sha512crypt.c with the exception that all usage of NSS and related libraries has been switched to libcrypto. I renamed nss_sha512crypt.h to sha512crypt.h since it is common to both crypto_sha512crypt.c and nss_sha512crypt.c. Note that the random number generator is not seeded manually and thus relies on seeding done automatically by libcrypto. On some systems without /dev/urandom seeding may not be performed. See http://www.openssl.org/docs/crypto/RAND_add.html. Signed-off-by: George McCollister <georgem@novatech-llc.com>