summaryrefslogtreecommitdiff
path: root/server/responder/pam/pam_LOCAL_domain.c
AgeCommit message (Collapse)AuthorFilesLines
2009-09-23Revert "Use syslog for logging error conditions in SSSD"Stephen Gallagher1-1/+1
This reverts commit 8c50bd085c0efe5fde354deee2c8118887aae29d. Amended: commit 1016af2b1b97ad4290ccce8fa462cc7e3c191b2e also made use of the SYSLOG_ERROR() macro, so those portions of that code also needed to be reverted.
2009-09-21Use syslog for logging error conditions in SSSDJakub Hrozek1-1/+1
This is just a band-aid until ELAPI is fully functional and ready to use.
2009-09-08Split database in multiple filesSimo Sorce1-1/+7
The special persistent local database retains the original name. All other backends now have their own cache-NAME.ldb file.
2009-07-29Address CVE-2009-2410Stephen Gallagher1-1/+1
Fix incorrect error code return in local_handler_callback
2009-07-03Rework transaction code to use tevent_reqSimo Sorce1-31/+84
This is part of a set of patches to rewrite sysdb to a hopefully better API, that will also let use use tevent_req async style calls to manipulate our cache.
2009-07-03Rename sysdb_req to sysdb_handle.Simo Sorce1-6/+6
This sysdb_req has always really been a transaction handle and not a request. This is part of a set of patches to rewrite transaction support in sysdb to a hopefully better API, that will also let use use tevent_req async style to manipulate our cache.
2009-05-18Move actual password caching into sysdbSimo Sorce1-1/+1
Convert auth modules to do the caching themselves
2009-05-18Prevent accepting blank passwordsSimo Sorce1-0/+7
2009-05-18Fix crypt functions to not use static buffers.Simo Sorce1-9/+9
Also fix style, clarify, and simplify some logic.
2009-04-13Fix a couple of segfaults and timeout checksSimo Sorce1-1/+1
2009-04-13Implement credentials caching in pam responder.Simo Sorce1-67/+86
Implement credentials caching in pam responder. Currently works only for the proxy backend. Also cleanup pam responder code and mode common code in data provider. (the data provider should never include responder private headers)
2009-04-13Always pass full domain infoSimo Sorce1-1/+1
Change sysdb to always passwd sss_domain_info, not just the domain name. This way domain specific options can always be honored at the db level.
2009-04-08Change the way we retrieve domainsSimo Sorce1-3/+2
To be able to correctly filter out duplicate names when multiple non-fully qualified domains are in use we need to be able to specify the domains order. This is now accomplished by the configuration paramets 'domains' in the config/domains entry. 'domains' is a comma separated list of domain names. This paramter allows also to have disbaled domains in the configuration without requiring to completely delete them. The domains list is now kept in a linked list of sss_domain_info objects. The first domain is also the "default" domain.
2009-03-26Refactor nss_ctx to resp_ctx in respondersStephen Gallagher1-2/+2
2009-03-10added generic PAM return messages and a false login delaySumit Bose1-45/+11
2009-03-09Always pass sss_domain_info to sysdb functions.Simo Sorce1-3/+3
2009-03-09Do not duplicate attribute names macros.Simo Sorce1-2/+2
Also shorten names oh other user attributes.
2009-03-05Remove _PW_ and _GR_ from SYSDB_ definesSimo Sorce1-7/+7
Also unify SYSDB_PW_NAME and SYSDB_GR_NAME in SYSDB_NAME and make it "name"
2009-03-05added password reset by rootSumit Bose1-0/+5
2009-03-04Simplify some aspects of pam_LOCAL_domainSimo Sorce1-136/+82
Use only one context (the local request) for all functions. Use new helper function in sysdb to set numbers as sysdb_attrs values. Do not use pam_status to report internal errors, use an error variable and check it only when we finally reply. Use sysdb_error_to_errno() to convert and ldb error to errno. Do not free every single buffer allocated, they are all appended to the local request and will be automatically freed once the request is finished.
2009-03-03replaced pure ldb calls with sysdb callsSumit Bose1-117/+306
2009-03-02first version of LOCAL pam backendSumit Bose1-0/+295
generated by cgit (git 2.34.1) at 2024-12-21 00:17:26 +0000