summaryrefslogtreecommitdiff
path: root/server/responder/common
AgeCommit message (Collapse)AuthorFilesLines
2009-05-15added more flexible handling of client protocolSumit Bose2-1/+41
- allow different protocol versions for PAM and NSS - support more than one protocol version in the responder
2009-04-27Eliminate segfault on NSS and PAM responder startup.Stephen Gallagher1-0/+4
If the data provider is not yet available when NSS and PAM start, they will generate a segmentation fault when trying to configure their automatic reconnection to the Data Provider. I've now added code in sss_dp_init() to detect whether the dp_ctx is NULL and return EIO.
2009-04-17Force user check and discover user's domainSimo Sorce2-0/+274
Force a user lookup against the users domain provider. If a user domain is not specified search though all non fully qualifying domains. Perform authentication against the corrent domain auth backend, based on the user's domain found in the lookup if one was not specified. Also move the NSS-DP functions in COMMON-DP as they are reused by the PAM responder too now.
2009-04-08Change the way we retrieve domainsSimo Sorce2-37/+2
To be able to correctly filter out duplicate names when multiple non-fully qualified domains are in use we need to be able to specify the domains order. This is now accomplished by the configuration paramets 'domains' in the config/domains entry. 'domains' is a comma separated list of domain names. This paramter allows also to have disbaled domains in the configuration without requiring to completely delete them. The domains list is now kept in a linked list of sss_domain_info objects. The first domain is also the "default" domain.
2009-04-07Unify name parsing and reposnder headersSimo Sorce6-60/+147
Use common sss_parse_name function in all responders Simplify responder headers by combining common,cmd,dp in one header and add name parse structure as part of the common responder context.
2009-03-27Make nsssrv use the common responder functionsSimo Sorce4-35/+13
Make nss_ctx a private pointer of the common resp_ctx Use sss_process_init and remove all duplicate functions from nsssrv.c
2009-03-26Enable autoreconnection to the Data Provider in PAMStephen Gallagher2-3/+6
2009-03-26Refactor nss_ctx to resp_ctx in respondersStephen Gallagher4-98/+98
2009-03-10added generic PAM return messages and a false login delaySumit Bose1-1/+1
2009-03-09use fixed paths to sockets to make sure clients and server are using the sameSumit Bose3-56/+67
2009-03-05added a privileged pipeSumit Bose5-5/+135
2009-03-02first version of LOCAL pam backendSumit Bose1-0/+22
2009-02-27Refactor creation of domain_map into confdbStephen Gallagher1-68/+3
The NSS provider, the Data Provider backends and the InfoPipe all need access to the domain map provided by the confdb. Instead of reimplimenting it in multiple places, it is now provided in a pair of helper functions from the confdb. confdb_get_domains() returns a domain map by reference. Always returns the most up-to-date set of domains from the confdb. confdb_get_domains_list() returns an array of strings of all the domain names. Always returns the most up-to-date set of domains from the confdb. This patch also modifies the btreemap_get_keys() function to better handle memory and report allocation failures.
2009-02-26Rebase the code to use talloc, tdb, tevent, ldb as externalSimo Sorce5-27/+27
dependencies based on the latest samba code. Convert all references to the old events library to use the renamed tevent library.
2009-02-24Add PAM responderSumit Bose8-0/+1077
Also move responders under server/responder with shared code in server/responder/common Signed-off-by: Simo Sorce <ssorce@redhat.com>