summaryrefslogtreecommitdiff
path: root/server/config/etc
AgeCommit message (Collapse)AuthorFilesLines
2010-02-18Rename server/ directory to src/Stephen Gallagher6-241/+0
Also update BUILD.txt
2010-02-05Add mandatory flag to SSSD config schemaStephen Gallagher6-177/+177
Also add list_mandatory_options() to both SSSDService and SSSDDomain objects. There is a new list_options_with_mandatory() function that will return a longer tuple than list_options(), including the mandatory flag directly.
2010-02-05Remove unnecessary explicit defaults from SSSDConfig APIStephen Gallagher2-10/+10
2010-02-02Add offline failed login counterSumit Bose1-0/+2
2010-02-02Add new option ldap_referralsSumit Bose2-0/+2
2010-01-12Remove local and kerberos providers from the access_provider listStephen Gallagher2-4/+0
Update tests to reflect these removals.
2009-12-21Allow debug_timestamps setting on a per-domain basisStephen Gallagher1-0/+1
This was missing from the SSSDConfig API, though it was supported by the daemon.
2009-12-15Don't set explicit default for "timeout" in domainsStephen Gallagher1-1/+1
2009-12-10Remove default for ldap_use_start_tls in IPA providersStephen Gallagher1-1/+1
2009-12-10Add 'permit' and 'deny' access providers to SSSDConfig APIStephen Gallagher1-0/+9
2009-12-09Add missing options to sssd-ipa configuraionStephen Gallagher1-0/+72
2009-11-23Add ldap_pwd_policy optionSumit Bose1-0/+1
2009-11-20Validate Kerberos credentials with local keytabSumit Bose1-1/+3
2009-11-20Convert SSSDConfig API to ipachangeconfJakub Hrozek1-1/+2
With this patch, SSSDConfigAPI is able to keep comments and ordering of sections. Fixes: #226
2009-11-18Make the password field configurable in NSSJakub Hrozek1-0/+1
Per the discussion on sssd-devel list, nss_sss should not return a hardcoded value but this should rather be configurable to allow whatever the OS or distribution thinks is the best for the particular case. Fixes: #266
2009-11-10Add cleanup taskSimo Sorce1-0/+1
2009-11-05Update midpoint refresh logic to be relative to cache timeoutStephen Gallagher1-1/+1
2009-11-03Rename sdap_id_map to sdap_attr_mapSimo Sorce1-0/+2
Also start adding some infrastructure to use the USN counter when available. In particular add a place to add generic attrs mapping, ie attributes that are neither user nor group specific.
2009-11-03Remove magic_private_groups from SSSDConfig API schemaStephen Gallagher1-1/+0
2009-11-03Make config_file_version a hidden setting in SSSDConfig APIStephen Gallagher1-1/+0
The config_file_version should never be changed by the API, so we will hide the option inside the SSSDConfig API and remove it from the schema. Guarantee that the config file is of the correct version
2009-10-29Tidy up ipa optionsSimo Sorce2-5/+1
Do not replicate every and each option we may want to set in ipa. Just read out ldap and krb provider options (added reference in the manual too, and removed mention of ipa specific timeout values, use ldap options for that) Avoid calling auth module initialization twice, just pass the auth context to the chpass module too. Add a new ldap option SDAP_SEARCH_BASE, so that a single searching base can be used for both users and groups. the user and group search bases can still be set separately if necessary but they are now optional and set to be identical to SDAP_SEARCH_BASE if not explicitly specified in the configuration.
2009-10-28Fix sssd.api.conf with correct entry_cache_timeoutStephen Gallagher1-2/+3
Changeset 3a21103f61bf9b60256cc2d0da54b757b634319f moved the wrong option to the domain list, and also didn't update the unit tests.
2009-10-27Move responsibility for entry expiration timeoutSimo Sorce2-2/+1
The providers are now responsible for determining how long a cached entry is considered valid. The default is the same as before (600s)
2009-10-26Add IPA conf templateSimo Sorce1-0/+9
2009-10-22Add support for offline auth cache timeoutStephen Gallagher1-0/+1
This adds a new option (offline_credentials_expiration) to the [PAM] section of the sssd.conf If the user does not perform an online authentication within the timeout (in days), they will be denied auth once the timeout passes.
2009-10-22Bring SSSDConfig API options up-to-dateStephen Gallagher2-12/+48
2009-10-13Add plugin configuration schema for proxy providerStephen Gallagher1-0/+7
2009-10-12Add new SSSDConfig python APIStephen Gallagher4-0/+104
Also adds unit tests for the SSSDConfig API
generated by cgit (git 2.34.1) at 2024-07-22 04:59:38 +0000