| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2010-03-03 | proxy: use correct _recv function | Simo Sorce | 1 | -1/+1 | |
| 2010-02-25 | Update version to 1.1.0 | Stephen Gallagher | 1 | -1/+1 | |
| 2010-02-25 | Fix release script to handle version numbers with multiple digits | Stephen Gallagher | 1 | -1/+1 | |
| 2010-02-25 | Update translations for release | Stephen Gallagher | 10 | -667/+795 | |
| 2010-02-25 | Fix check for values of expiration limits | Jakub Hrozek | 2 | -3/+3 | |
| There were inconsistencies between what sssd.conf manpage said and what the code enforces. | |||||
| 2010-02-25 | Remove a check that was left behind | Jakub Hrozek | 1 | -7/+1 | |
| When refactoring talloc_asprintf calls a check was left behind that cased the backend to go offline immediately. | |||||
| 2010-02-23 | Better cleanup task handling | Jakub Hrozek | 11 | -39/+263 | |
| Implements a different mechanism for cleanup task. Instead of just deleting expired entries, this patch adds a new option account_cache_expiration for domains. If an entry is expired and the last login was more days in the past that account_cache_expiration, the entry is deleted. Groups are deleted if they are expired and and no user references them (no user has memberof: attribute pointing at that group). The parameter account_cache_expiration is not LDAP-specific, so that other future backends might use the same timeout setting. Fixes: #391 | |||||
| 2010-02-23 | Store lastLogin attribute when authenticating online | Jakub Hrozek | 1 | -0/+5 | |
| 2010-02-23 | Revert "Change default for enumeration to TRUE" | Stephen Gallagher | 2 | -2/+2 | |
| This reverts commit 75a9f18ad8ac6e885ac34cdeebc4d8f8734713f8. | |||||
| 2010-02-23 | Include hour in 'make prerelease-rpms' | Stephen Gallagher | 1 | -2/+2 | |
| 2010-02-23 | Do not check entries during cleanup task | Jakub Hrozek | 3 | -82/+60 | |
| Do not attempt to validate expired entries in cache, just delete them. Also increase the cache timeouts. Fixes: #331 | |||||
| 2010-02-23 | Do not schedule enumeration after a cleanup | Jakub Hrozek | 1 | -2/+2 | |
| 2010-02-23 | Handle expired passwords like other PAM modules | Sumit Bose | 4 | -21/+53 | |
| So far we handled expired password during authentication. Other PAM modules typically detect expired password during account management and return PAM_NEW_AUTHTOK_REQD if the password is expired and should be changed. The PAM library then calls the change password routines. To meet these standards pam_sss is change accordingly. As a result it is now possible to update an expired password via ssh if sssd is running with PasswordAuthentication=yes. One drawback due to limitations of PAM is that the user now has to type his current password again before setting a new one. | |||||
| 2010-02-23 | Fix file permissions of config.ldb | Sumit Bose | 1 | -0/+4 | |
| 2010-02-23 | Check and set permissions on SBUS sockets | Sumit Bose | 7 | -25/+141 | |
| 2010-02-22 | Restrict family lookups | Jakub Hrozek | 12 | -34/+172 | |
| Adds a new option that tells resolver which address family to prefer or use exclusively. Fixes: #404 | |||||
| 2010-02-22 | Remove Kerberos options from confdb.h | Jakub Hrozek | 1 | -8/+0 | |
| Kerberos-specific options are pulled using dp_get_opts() and defined in Kerberos subtree. There is no need to keep these in confdb. | |||||
| 2010-02-22 | Remove unnecessary domain parameter from PAM requests | Stephen Gallagher | 2 | -28/+5 | |
| If we're sending a message to the backend, we already know which domain the request is targeting. Carrying this information is not useful and confuses the interface. | |||||
| 2010-02-22 | Remove unnecessary "domain" parameter from DP registration | Stephen Gallagher | 6 | -10/+7 | |
| This was a holdover from when the DP and the providers were unique processes. The NSS and PAM registrations do not need to send the domain, as it is not ambiguous which one they are talking to. | |||||
| 2010-02-19 | Add documentation for PAM response messages | Sumit Bose | 4 | -20/+273 | |
| 2010-02-19 | Remove unneeded items from struct pam_data | Sumit Bose | 8 | -89/+71 | |
| 2010-02-19 | Update PL translation | Piotr Drąg | 1 | -5/+5 | |
| 2010-02-19 | Disable rpath support in the linker | Stephen Gallagher | 1 | -1/+2 | |
| The Fedora Package Guidelines forbid the use of rpaths | |||||
| 2010-02-19 | Send Kerberos environment after password change | Sumit Bose | 1 | -1/+1 | |
| 2010-02-19 | Fix two typos | Sumit Bose | 1 | -2/+2 | |
| 2010-02-19 | Updating ES translation | Domingo Becker | 1 | -11/+12 | |
| 2010-02-18 | Fix bad merge | Stephen Gallagher | 4 | -1/+3 | |
| Merging ba8937d83675c7d69808d1d3df8f823afdc5ce2a left the COPYING and COPYING.LESSER files in the now-defunct sss_client directory. This patch moves them into the right location and fixes the spec file to look for them correctly. | |||||
| 2010-02-18 | Fix licensing issues for sss_client | Stephen Gallagher | 8 | -32/+914 | |
| 2010-02-18 | Properly license libdhash | Stephen Gallagher | 4 | -0/+88 | |
| 2010-02-18 | Fix licensing issues in SSSD | Stephen Gallagher | 3 | -0/+72 | |
| 2010-02-18 | License libpath_utils under LGPL | Stephen Gallagher | 2 | -7/+38 | |
| 2010-02-18 | Build all manpages from a single location | Stephen Gallagher | 2 | -1/+1 | |
| 2010-02-18 | Rename server/ directory to src/ | Stephen Gallagher | 243 | -23/+12 | |
| Also update BUILD.txt | |||||
| 2010-02-18 | Remove unneeded files from sss_client | Stephen Gallagher | 22 | -4031/+0 | |
| 2010-02-18 | Merge sss_client and sss_daemon translations together | Stephen Gallagher | 12 | -13/+1103 | |
| 2010-02-18 | Eliminate separate build tree for sss_client | Stephen Gallagher | 42 | -7/+69 | |
| 2010-02-18 | Use macros to hide memcpy calls | Jakub Hrozek | 5 | -149/+71 | |
| The memcpy calls introduced in the memalign patches are ugly. This patch hides them behind a set of macros. | |||||
| 2010-02-18 | Supress warnings with -O2 | Jakub Hrozek | 5 | -12/+10 | |
| 2010-02-16 | Add test for number of options in IPA and LDAP backends | Jakub Hrozek | 4 | -6/+75 | |
| 2010-02-16 | Synchronize IPA and LDAP options | Jakub Hrozek | 1 | -2/+4 | |
| 2010-02-16 | Remove replace | Sumit Bose | 71 | -14732/+3 | |
| 2010-02-15 | Make PAM responses more compatible with D-BUS spec | Stephen Gallagher | 2 | -34/+108 | |
| Previously, the PAM responses could contain an arbitrary number of arguments. This is not acceptable by the D-BUS protocol, as there is no way to introspect it. This patch converts the response objects to be an array of D-BUS structs. It also fixes two potential memory leaks by not unref'ing the reply object if we get an error. | |||||
| 2010-02-15 | Make attr_type an integer | Stephen Gallagher | 2 | -20/+14 | |
| Previously it was a string being passed and converted into an integer. It will be more efficient this way (and simpler for other implementers) | |||||
| 2010-02-15 | Add doxygen docs for ConfDB | Stephen Gallagher | 5 | -14/+1761 | |
| 2010-02-12 | Add check for broken LDAP connection callbacks | Sumit Bose | 2 | -2/+12 | |
| 2010-02-12 | sss_groupshow: separate member lists by comma | Jakub Hrozek | 1 | -3/+6 | |
| Fixes: #398 | |||||
| 2010-02-12 | Remove ELAPI from the SSSD repository | Stephen Gallagher | 40 | -8421/+3 | |
| ELAPI now lives in its own project at https://fedorahosted.org/ELAPI | |||||
| 2010-02-12 | gitignore additions | Jakub Hrozek | 1 | -0/+3 | |
| 2010-02-12 | Make change password errors more transparent | Sumit Bose | 9 | -24/+228 | |
| 2010-02-12 | Don't pass a variable as format to talloc_asprintf() | Martin Nagy | 2 | -2/+2 | |
| This practice is not recommended and can also be dangerous. | |||||
 |
index : sssd | |
| System Security Services Daemon | ben |
| summaryrefslogtreecommitdiff |