summaryrefslogtreecommitdiff
path: root/server/responder/pam/pamsrv.h
AgeCommit message (Collapse)AuthorFilesLines
2009-10-22Add support for offline auth cache timeoutStephen Gallagher1-0/+1
This adds a new option (offline_credentials_expiration) to the [PAM] section of the sssd.conf If the user does not perform an online authentication within the timeout (in days), they will be denied auth once the timeout passes.
2009-10-22Add pam_ctx (similar to nss_ctx) for storing global PAM configStephen Gallagher1-0/+4
2009-09-11Add copyright noticesJakub Hrozek1-0/+21
Fixes: #138
2009-08-17Fix reconnection codeSimo Sorce1-1/+1
Remove redundant reconnection code that was interfeering with the sbus reconnection code. Consolidate include files for sbus relates operations. Make pamsrv code similar to nsssrv code.
2009-08-11Change the why DP clients identifySimo Sorce1-1/+0
Mirrors what we have done with the monitor.
2009-08-10Simplify interfaces initializationSimo Sorce1-1/+1
Make as much as possible static, and remove use of talloc_reference and allocation/deallocation of memory when not necessary. Fix also responder use of rctx->conn, was mistakenly used for both monitor and dp connections.
2009-05-18Move actual password caching into sysdbSimo Sorce1-1/+0
Convert auth modules to do the caching themselves
2009-04-28change PAM timeout the match NSS timeSumit Bose1-2/+0
2009-04-17Force user check and discover user's domainSimo Sorce1-0/+3
Force a user lookup against the users domain provider. If a user domain is not specified search though all non fully qualifying domains. Perform authentication against the corrent domain auth backend, based on the user's domain found in the lookup if one was not specified. Also move the NSS-DP functions in COMMON-DP as they are reused by the PAM responder too now.
2009-04-13Implement credentials caching in pam responder.Simo Sorce1-39/+14
Implement credentials caching in pam responder. Currently works only for the proxy backend. Also cleanup pam responder code and mode common code in data provider. (the data provider should never include responder private headers)
2009-04-07Unify name parsing and reposnder headersSimo Sorce1-1/+1
Use common sss_parse_name function in all responders Simplify responder headers by combining common,cmd,dp in one header and add name parse structure as part of the common responder context.
2009-03-20added response type PAM_ENV_ITEM and integrated response data into dbus messagesSumit Bose1-5/+5
2009-03-19use pam_data as main data structure for dbus communicationSumit Bose1-0/+5
2009-03-10added generic PAM return messages and a false login delaySumit Bose1-2/+15
2009-03-04Simplify some aspects of pam_LOCAL_domainSimo Sorce1-1/+2
Use only one context (the local request) for all functions. Use new helper function in sysdb to set numbers as sysdb_attrs values. Do not use pam_status to report internal errors, use an error variable and check it only when we finally reply. Use sysdb_error_to_errno() to convert and ldb error to errno. Do not free every single buffer allocated, they are all appended to the local request and will be automatically freed once the request is finished.
2009-03-02first version of LOCAL pam backendSumit Bose1-0/+7
2009-02-24Add PAM responderSumit Bose1-0/+33
Also move responders under server/responder with shared code in server/responder/common Signed-off-by: Simo Sorce <ssorce@redhat.com>
generated by cgit (git 2.34.1) at 2024-10-17 06:51:01 +0000