sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2013-09-20	AD: Failure to get flat name is not fatal	Jakub Hrozek	3	-68/+86
	https://fedorahosted.org/sssd/ticket/2067 Some AD or AD-like servers do not contain the netlogon attribute in the master domain name. Instead of failing completely, we should just abort the master domain request and carry on. The only functionality we miss would be getting users by domain flat name.
2013-09-20	sdap_domain_add: remove too strict consistency check	Sumit Bose	1	-10/+0
	The check worked for simple setups but fails e.g. in environment with trusts.
2013-09-20	man: improve sssd-sudo manual page	Pavel Březina	1	-2/+22
	Resolves: https://fedorahosted.org/sssd/ticket/2085
2013-09-20	LDAP: Deprecate ldap_{user,group}_search_filter	Jakub Hrozek	2	-44/+12

2013-09-20	MAN: Fix provider man page subtitle	Jakub Hrozek	5	-5/+5

2013-09-18	AD: Download master domain info when enumerating	Jakub Hrozek	5	-7/+211
	https://fedorahosted.org/sssd/ticket/2068 With the current design, downloading master domain data was tied to subdomains refresh, triggered by responders. But because enumeration is a background task that can't be triggered on its own, we can't rely on responders to download the master domain data and we need to check the master domain on each enumeration request.
2013-09-18	LDAP: sdap_id_setup_tasks accepts a custom enum request	Jakub Hrozek	4	-18/+29
	AD provider will override the default with its own.
2013-09-18	AD: async request to retrieve master domain info	Jakub Hrozek	5	-214/+417
	Adds a reusable async request to download the master domain info.
2013-09-18	BE: Log domain name to journald if available	Jakub Hrozek	4	-0/+16
	If the SSSD is compiled with journald support, then all sss_log() statements will include a new field called "SSSD_DOMAIN" that includes the domain name. Filtering only messages from the single domain is then as easy as: # journalctl SSSD_DOMAIN=foo.example.com
2013-09-18	Add journald support	Jakub Hrozek	5	-0/+80

2013-09-17	KRB5: Call umask before mkstemp in the krb5 child code	Jakub Hrozek	1	-0/+3

2013-09-17	Do not set HAVE_SYSTEMD_LOGIN if libsystemd-login is not available	Sumit Bose	1	-1/+1
	Even if HAVE_SYSTEMD_LOGIN is set to 0 #ifdef will still see it as defined.
2013-09-17	nss: Wrong debug message.	Michal Zidek	1	-1/+2

2013-09-17	simple provider: obey case sensitivity for subdomain users and groups	Pavel Březina	1	-7/+43
	When comparing username and his groups to access list, we will obey case sensitivity of object from access list. Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	simple access test: initialize be_ctx for all tests	Pavel Březina	1	-15/+16
	Recent simple access provider patches started using be_ctx during access check. This caused segfault in unit tests, since be_ctx wasn't initialized. Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	simple provider: support subdomain groups	Pavel Březina	1	-23/+64
	Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	util: add find_subdomain_by_object_name()	Pavel Březina	2	-0/+39
	This function will parse object name into name and domain name part and return appropriate sss domain. Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	util: add find_subdomain_by_sid()	Pavel Březina	2	-0/+35
	This function takes domain SID (doesn't have the last component) or object SID (have all components) and returns subdomain. The subdomain is found by comparing domain->domainid with the SID. E.g. domain SID: S-1-5-21-3940105347-3434501867-2690409756 object SID: S-1-5-21-3940105347-3434501867-2690409756-513 Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	simple provider: support subdomain users	Pavel Březina	1	-5/+10
	Resolves: https://fedorahosted.org/sssd/ticket/2034
2013-09-17	simple access tests: fix typos	Pavel Březina	1	-5/+5

2013-09-17	util: add sss_idmap_talloc[_free]	Pavel Březina	8	-62/+76
	Remove code duplication.
2013-09-16	Add missing new line in DEBUG message	Lukas Slebodnik	1	-2/+3

2013-09-16	util: Use systemd-login to check user sessions	Simo Sorce	4	-5/+51
	Use systemd-lgin in preference to check if the user is logged in or not. Fall back to the old method if no systemd-login support is available at compile time or if it returns a fatal error, and can't determine the status of the user on its own. This will allow to consider a user really active (in order to reuse or refresh crdentials) only if it really is logged into the system, and not just if one of the user's processes is stuck around. Resolves: https://fedorahosted.org/sssd/ticket/2084
2013-09-13	man sssd: Add note about SSS_NSS_USE_MEMCACHE	Michal Zidek	1	-0/+8

2013-09-13	Rename _SSS_MC_SPECIAL	Michal Zidek	1	-2/+2
	If the environment variable _SSS_MC_SPECIAL is set to "NO", the mmap cache is skipped in the client code. The name is not very descriptive. This patch renames the variable to SSS_NSS_USE_MEMCACHE.
2013-09-13	IPA: Deprecate ipa_hbac_support_srchost option	Ondrej Kos	3	-23/+11
	This option got already deprecated on the ipa server side. Option is undocumented and warning is printed both to the sssd log files and syslog. Resolves: https://fedorahosted.org/sssd/ticket/1918
2013-09-13	MAN: Remove IPA specific LDAP settings	Ondrej Kos	1	-218/+0
	Resolves: https://fedorahosted.org/sssd/ticket/1187
2013-09-13	Bump version to track 1.12 development	Jakub Hrozek	1	-1/+1

2013-09-12	KRB: Remove unused function parameters	Lukas Slebodnik	1	-4/+2
	Parameter "int dp_err" and parameter "int pam_status" were unused in static function krb5_auth_prepare_ccache_name.
2013-09-12	KRB: Remove unused memory context	Lukas Slebodnik	3	-3/+3
	mem_ctx was unused in function get_domain_or_subdomain
2013-09-12	TESTS: Remove unused variable	Jakub Hrozek	1	-4/+0
	The tmpl variable was only ever used to default to FILE backend in case absolute patch w/o ccache type was selected. Since backends are no longer there, we can remove the variable, too.
2013-09-12	Remove unused code	Jakub Hrozek	2	-69/+0

2013-09-11	Enable printf format string checking	Lukas Slebodnik	2	-2/+26
	https://fedorahosted.org/sssd/ticket/1945
2013-09-11	Fix formating of variables with type: gid_t	Lukas Slebodnik	7	-25/+27

2013-09-11	Fix formating of variables with type: uid_t	Lukas Slebodnik	9	-18/+27

2013-09-11	Fix formating of variables with type: id_t	Lukas Slebodnik	5	-7/+38

2013-09-11	Use right formating to print string	Lukas Slebodnik	1	-1/+1
	format specifies type 'int' but the argument has type 'const char *'
2013-09-11	Fix warning: data argument not used by format string	Lukas Slebodnik	1	-2/+5

2013-09-11	Fix formating of variables with ber_ type	Lukas Slebodnik	2	-3/+4

2013-09-11	Fix formating of variables with type: time_t	Lukas Slebodnik	7	-9/+10

2013-09-11	Fix formating of variables with type defined in stdint.h	Lukas Slebodnik	4	-11/+14

2013-09-11	Fix formating of variables with type: rlim_t	Lukas Slebodnik	2	-5/+12

2013-09-11	Fix formating of variables with type: key_serial_t	Lukas Slebodnik	2	-1/+5

2013-09-11	Adding new header for printf formating macros	Lukas Slebodnik	3	-0/+34

2013-09-11	Fix formating of variables with type: size_t	Lukas Slebodnik	33	-69/+82

2013-09-11	Fix formating of variables with type: ssize_t	Lukas Slebodnik	7	-10/+11

2013-09-11	Use the same variable type like in struct ldb_message_element	Lukas Slebodnik	1	-1/+1
	struct ldb_message_element.num_values is unsigned This patch indirectly fixes printf format string warning.
2013-09-11	Fix pointer formatting	Lukas Slebodnik	1	-5/+5

2013-09-11	Fix formating of variables with type: int	Lukas Slebodnik	3	-5/+7

2013-09-11	Fix formating of variables with type: unsigned long	Lukas Slebodnik	2	-2/+2