sssd - System Security Services Daemon

Age	Commit message (Collapse)	Author	Files	Lines
2009-05-26	Adjust sysdb tests to the new confdb interface and improve sysdb test coverage	Jakub Hrozek	1	-39/+771

2009-05-26	Silence warnings	Simo Sorce	10	-22/+29

2009-05-26	Do not fire up backend search when the data provider is local	Jakub Hrozek	3	-17/+21

2009-05-26	Stop overwriting the stack	Simo Sorce	1	-2/+2
	Actually use the buffer not it's location on the stack.
2009-05-26	Link proxy backend against internal crypto library	Stephen Gallagher	1	-2/+4

2009-05-26	Move useradd defaults to confdb	Jakub Hrozek	1	-3/+25
	Previously, sss_useradd defaults were hardcoded with no way to change user's default shell or base for home directory. This patch moves them into config/user_defaults
2009-05-26	Clean up automake build to work on older versions of libtool	Stephen Gallagher	2	-1/+3
	LT_INIT is supported only on Libtool >= 2.0, so I reverted it to using AC_PROG_LIBTOOL. Also reorganized how the common libraries were being built. Now they are treated as libtool convenience libraries instead of installable libraries (the --with-singlelib configure flag can still be used to generate a combined, installable DSO) I cleaned up the set of files being installed by automake, so the list of things we need to remove before packaging the RPM is now only the .la files associated with our own plugins.
2009-05-26	Fix manual UID assignment in sysdb	Jakub Hrozek	1	-11/+15
	If it's an MPG domain, set them equal. If it's a non-MPG domain, get the next available GID and use that.
2009-05-26	Fix infopipe packaging	Jakub Hrozek	1	-0/+4

2009-05-26	Add some more InfoPipe tests	Jakub Hrozek	2	-1/+627

2009-05-26	Fix typos in the Introspection XML file	Jakub Hrozek	1	-3/+5

2009-05-26	Fix initscript return codes	Jakub Hrozek	1	-6/+6

2009-05-26	Read the config before startup, fail if cannot be read	Jakub Hrozek	1	-0/+26

2009-05-19	Fix RPM generation issues with sssd	Stephen Gallagher	1	-1/+1
	Ensures that the common libraries build statically. Also ensures that the sssd.spec creates the SYSV init script with the appropriate permissions. Cleans up the useless rpmdist target that was obsolete. Adds the *.so.N.0.0 files to the RPM, as the .so and .so.N files were dangling symlinks.
2009-05-19	Use freeipa-devel@redhat.com for bug reports	Stephen Gallagher	1	-1/+1

2009-05-19	Enable automake builds for sssd server	Stephen Gallagher	13	-3791/+467

2009-05-19	call tevent_add_fd only once	Sumit Bose	1	-27/+11

2009-05-19	added prototype for sysdb_set_cached_password	Sumit Bose	1	-0/+6

2009-05-18	Implement approximate offline detection in proxy	Simo Sorce	1	-5/+98
	This will blackout any request to the backend for 15 seconds, then will allow again to retry.
2009-05-18	Move actual password caching into sysdb	Simo Sorce	12	-156/+286
	Convert auth modules to do the caching themselves
2009-05-18	Split ldap backend into auth and identity files	Simo Sorce	3	-20/+800

2009-05-18	Move ldap_be.c into ldap/ldap_auth.c	Simo Sorce	1	-0/+0

2009-05-18	Prevent accepting blank passwords	Simo Sorce	1	-0/+7

2009-05-18	Fix crypt functions to not use static buffers.	Simo Sorce	4	-338/+334
	Also fix style, clarify, and simplify some logic.
2009-05-15	Treat the local provider as a special case	Stephen Gallagher	2	-1/+17
	The local provider needs no backend, so we'll create a special provider entry for it called "local" that will not attempt to retrieve provider configuration but will remain in the service list so it can be updated when the config file changes.
2009-05-15	added new pam client protocol	Sumit Bose	1	-1/+132

2009-05-15	added more flexible handling of client protocol	Sumit Bose	4	-2/+63
	- allow different protocol versions for PAM and NSS - support more than one protocol version in the responder
2009-05-14	Manpage generation	Jakub Hrozek	7	-3/+240
	Provides a set of make rules for generating UNIX manual pages from DocBook 4.5 source as well as sample manpage for sss_useradd. Automatic generation of manual pages during "make" process is tunable with config parameter "--with-manpages". To rebuild the man pages separately, use the "make doc" target. Before building, the manpages are validated using a DTD schema.
2009-05-14	Update configure rules for LDB and POPT	Stephen Gallagher	2	-4/+9
	We need to ensure that configure fails with an error if the popt development libraries are not present or if ldb module support is not available.
2009-05-14	More useful error message when adding user/group that already exists	Jakub Hrozek	2	-2/+18
	Fixes: RHBZ #498462
2009-05-14	Check for valid ID range, domains overlap	Jakub Hrozek	1	-0/+36

2009-05-14	added check for NULL values	Sumit Bose	3	-9/+8
	- allow unspecified value in struct pam_data to be NULL - check if domain structure is initialized in pam_reply
2009-05-12	Fix warnings in monitor.c and confdb.c	Stephen Gallagher	2	-7/+13

2009-05-11	Separate confdb API from confdb setup	Stephen Gallagher	8	-374/+458
	Refactoring the confdb so that the setup code can be linked separately from the access API. This is being done so that our plugins do not need to link against the collection and ini_config libraries.
2009-05-08	Chdir to / when daemonizing	Jakub Hrozek	1	-0/+11

2009-05-08	Use tevent for shutdown signals, remove old pidfile, make sssd single-instance.	Jakub Hrozek	2	-1/+79
	Use tevent signal handling facilities for handlong SIGTERM and SIGINT in the monitor. Remove pidfile on SIGTERM and SIGINT. Make sssd single-instance by checking if we suceeded in signaling the process in the pidfile.
2009-05-08	redirect stderr to /dev/null in initscript	Jakub Hrozek	1	-1/+1

2009-05-06	Fix some more return paths using uninitalized ret	Simo Sorce	1	-3/+3

2009-05-04	Fixes for porting SSSD to Debian-based platforms	Stephen Gallagher	5	-5/+7

2009-04-29	Fix configuration corruption issue	Stephen Gallagher	1	-2/+20
	In the event that the configuration was corrupt the first time the SSSD is started, it would write in the special data for attributes and indexes, but it would fail before writing the version. Subsequent reloads (even with correct configuration files) would fail, since they would try again to write the attributes and indexes and fail since they were already present.
2009-04-29	Fix use of uninitialized return variable	Simo Sorce	1	-5/+5

2009-04-28	Add debug param to the tools, fix lock/unlock in sss_usermod	Jakub Hrozek	6	-3/+31

2009-04-28	Invoke shadow-utils in sss_ tools	Jakub Hrozek	11	-48/+643
	Make shadow-utils base path configurable Use default values for params, allow configuring them
2009-04-28	handle other pam calls when offline	Sumit Bose	1	-0/+10

2009-04-28	Use different attribute for cached passwords change time	Sumit Bose	1	-2/+2

2009-04-28	enable offline handling for native LDAP backend	Sumit Bose	1	-4/+48

2009-04-28	change PAM timeout the match NSS time	Sumit Bose	2	-3/+1

2009-04-27	Use different attribute for cached passwords	Simo Sorce	2	-3/+5
	This fixes a bug with legacy backends where the cached password would be cleared on a user update. Using a different attribute we make sure a userPassword coming from the remote backend does not interfere with a cachedPassword (and vice versa).
2009-04-27	Release version 0.3.3	Stephen Gallagher	1	-1/+1

2009-04-27	Eliminate segfault on NSS and PAM responder startup.	Stephen Gallagher	1	-0/+4
	If the data provider is not yet available when NSS and PAM start, they will generate a segmentation fault when trying to configure their automatic reconnection to the Data Provider. I've now added code in sss_dp_init() to detect whether the dp_ctx is NULL and return EIO.