summaryrefslogtreecommitdiff
path: root/server/tools
AgeCommit message (Collapse)AuthorFilesLines
2009-09-25Upgrade confdb to version 2Stephen Gallagher1-8/+11
This converts a great many configuration options to the new standard format.
2009-09-23Allow entering parent groups as FQDNJakub Hrozek8-7/+83
Allow entering parent groups for groupadd,useradd,usermod as FQDN. Since members and parents must be from the same domain, error out if we can't determine the domain of member. Fixes: #121
2009-09-23Revert "Use syslog for logging error conditions in SSSD"Stephen Gallagher1-3/+0
This reverts commit 8c50bd085c0efe5fde354deee2c8118887aae29d. Amended: commit 1016af2b1b97ad4290ccce8fa462cc7e3c191b2e also made use of the SYSLOG_ERROR() macro, so those portions of that code also needed to be reverted.
2009-09-21Use syslog for logging error conditions in SSSDJakub Hrozek1-0/+3
This is just a band-aid until ELAPI is fully functional and ready to use.
2009-09-21Provide python bindings for sysdbJakub Hrozek1-0/+2
Implement a set of python bindings for the sysdb with feature set similar to what is available in the tools. The primary consumers would be applications like system-config-users. Resolves: Ticket #102
2009-09-21Decouple synchronous sysdb interface from toolsJakub Hrozek10-1020/+1843
Instead of working directly with async code in tools, create synchronous wrappers that could be used by tools and python bindings. Also resolves many issues with code duplication in tools and thus fixes ticket #87
2009-09-21Refactor tools codeJakub Hrozek8-268/+244
Move parameter parsing in tools before attempting to do anything that might fail - so that we have debug_level set correctly for potential error messages. That allows printing the --help and --usage messages without being root. Fix code duplicates in tools and refactor its code a little to lay ground for decoupling the synchronous interfaces. Remove some legacy tools leftovers, re-add sensible error message on removing nonexistent users/groups which was removed by accident. Fixes: Trac ticket #75 Fix typo in groupdel: fixes ticket #136
2009-09-11Add copyright noticesJakub Hrozek1-0/+22
Fixes: #138
2009-09-10Remove unused event context argument from confdb_initStephen Gallagher1-1/+1
Because the confdb always operates synchronously, it maintains its own private event context internally. The event context argument passed to it is never used, so we'll remove it to avoid confusion.
2009-09-08Remove shadow-utils support from toolsJakub Hrozek8-763/+73
Removes the ability to proxy to shadow-utils. Also remove all the supporting functions for getting domain type, domain by id etc.
2009-09-08Tools are allowed to touch only the 'local' domainSimo Sorce8-76/+35
2009-09-08Split database in multiple filesSimo Sorce8-22/+71
The special persistent local database retains the original name. All other backends now have their own cache-NAME.ldb file.
2009-08-21Disallow all operations outside domains, fix deleting cache for filesJakub Hrozek4-11/+41
One of the previous patches disallowed adding users and groups outside known domains but it was missing disallowing modifying, deleting, etc. Also don't error if there's no sysdb cache to delete after deleting legacy user/domain. Fixes: tickets #113,#114
2009-08-13Make "files" a reserved word for legacy local domainJakub Hrozek1-1/+2
This patch introduces provider=files as a valid provider. Upon loading the backend, its properties in confdb are overwritten to those that represent legacy local domain. Also document this in sssd.conf(5) and example config
2009-08-13Tools ID range fixesJakub Hrozek3-4/+16
The tools did not take the special case where id_max = 0 (no limit) into account. Also disallow adding users when ID is specified outside any domain. Resolves trac tickets #86 and #89
2009-08-12Fix reversal of parent and member in groupmodSimo Sorce1-8/+8
ticket #101
2009-08-05Parse fully qualified names in toolsJakub Hrozek8-88/+289
Allow adding users into different domains not only by specifying ID directly but also by specifying fully qualified name. Exit when both specifications are used in conflict.
2009-08-05Fix adding to groups on user creationJakub Hrozek1-1/+1
2009-07-31Correct check for local domain in toolsJakub Hrozek2-14/+2
When looking for the local domain in the tools, do so by looking on provider value, not domain name. Also removes one redundant lookup of local domain.
2009-07-31Notify user when deleting nonexistent user or groupJakub Hrozek2-5/+20
Fixes: RHBZ #513247, RHBZ #513250
2009-07-31Use correct return codesJakub Hrozek4-4/+4
Some code paths that should exit with an error used potentionally incorrect return code.
2009-07-31Improve error messagesJakub Hrozek4-5/+32
Fixes: * RHBZ 513282 - Error Message Incorrect when Trying to add Group with GID already in use * RHBZ 513284 - Error Message Incorrect when Trying to add User with UID already in use * RHBZ 513242 - Better error Message when modifying a user that doesn't exist * RHBZ 513244 - Better error Message when adding a user to a group that doesn't exist
2009-07-20Start rationalizing user tools a bitSimo Sorce7-408/+299
There is a lot of duplication in user tools. First steps to remove as much duplication as possible.
2009-07-08fixed a double talloc_free errorSumit Bose6-12/+0
2009-07-06Check for root before initializingJakub Hrozek8-4/+98
Also move setting locale to separate function to be called before anything else to make sure the "Not root" message would be localized.
2009-07-03Rework transaction code to use tevent_reqSimo Sorce6-280/+651
This is part of a set of patches to rewrite sysdb to a hopefully better API, that will also let use use tevent_req async style calls to manipulate our cache.
2009-07-03Rename sysdb_req to sysdb_handle.Simo Sorce6-41/+41
This sysdb_req has always really been a transaction handle and not a request. This is part of a set of patches to rewrite transaction support in sysdb to a hopefully better API, that will also let use use tevent_req async style to manipulate our cache.
2009-07-02Gettextize the sss_ toolsJakub Hrozek7-109/+176
2009-06-17Create gettext framework for SSSD daemonStephen Gallagher8-13/+38
2009-05-26Silence warningsSimo Sorce1-1/+1
2009-05-26Move useradd defaults to confdbJakub Hrozek1-3/+25
Previously, sss_useradd defaults were hardcoded with no way to change user's default shell or base for home directory. This patch moves them into config/user_defaults
2009-05-18Move actual password caching into sysdbSimo Sorce1-1/+0
Convert auth modules to do the caching themselves
2009-05-14More useful error message when adding user/group that already existsJakub Hrozek2-2/+18
Fixes: RHBZ #498462
2009-04-28Add debug param to the tools, fix lock/unlock in sss_usermodJakub Hrozek6-3/+31
2009-04-28Invoke shadow-utils in sss_ toolsJakub Hrozek8-47/+626
Make shadow-utils base path configurable Use default values for params, allow configuring them
2009-04-23fixes for user and group creation in LOCAL domainSumit Bose1-1/+1
- added range check for supplied UIDs and GIDs - initialize pc_gid to 0 to trigger gid generation
2009-04-13Always pass full domain infoSimo Sorce1-1/+1
Change sysdb to always passwd sss_domain_info, not just the domain name. This way domain specific options can always be honored at the db level.
2009-04-08Change the way we retrieve domainsSimo Sorce7-21/+46
To be able to correctly filter out duplicate names when multiple non-fully qualified domains are in use we need to be able to specify the domains order. This is now accomplished by the configuration paramets 'domains' in the config/domains entry. 'domains' is a comma separated list of domain names. This paramter allows also to have disbaled domains in the configuration without requiring to completely delete them. The domains list is now kept in a linked list of sss_domain_info objects. The first domain is also the "default" domain.
2009-03-10Fix returning user with missing optional attributes.Simo Sorce1-1/+1
Gecos, homedir and shell are optional, fix the responder not to refuse to return the user completely if they are missing, replace an empty homedir with "/". Also fix fullname vs gecos, and always return gecos for NSS data. On user creation set gecos to the same value as the user Full Name, to help populate the gecos field with data that makes sense.
2009-03-10Hide uid and gid options in usermod and groupmodJakub Hrozek2-3/+3
2009-03-09Always pass sss_domain_info to sysdb functions.Simo Sorce1-4/+5
2009-03-09Move MPG checks within sysdb.Simo Sorce4-116/+0
This allows to perform checks and modifications in one transaction. Uses configuration stored in confdb to determins if a domain uses MPGs.
2009-03-09sss_groupmodJakub Hrozek1-0/+281
2009-03-09sss_usermodJakub Hrozek4-44/+407
Move parse_groups into tools_utils
2009-03-09Fix parameter parsing and adding to groups in useraddJakub Hrozek1-4/+10
2009-03-08Fix initialization problemsJakub Hrozek4-11/+12
Init tools ctx in groupadd before copying its value
2009-03-07sss_groupdel, delete by DN in sss_userdelJakub Hrozek2-73/+177
Don't convert username->uid in userdel, use DN
2009-03-06sss_groupaddJakub Hrozek1-0/+172
2009-03-06sss_userdelJakub Hrozek1-0/+230
Also install tools into /sbin, own them in specfile
2009-03-06Add userspace tools to manipulate accounts.Simo Sorce3-0/+630
The first functional command is sss_useradd (Name is temporary, while looking for a better one)