Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2011-02-11 | Make 'make check' look nice again | Sumit Bose | 1 | -8/+0 | |
With current libldb releases 'make check' will print a lot of 'unable to dlopen' messages although the test will succeed. This patch place the memberof module into a directory of its own to avoid these messages. Additionally this patch introduces TESTS_ENVIRONMENT which allows us to remove the SYSDB_TEST preprocessor definition. | |||||
2011-02-11 | Clear up -Wunused-but-set-variable warnings | Stephen Gallagher | 1 | -0/+3 | |
2011-02-03 | Add additional indexing for sysdb | Stephen Gallagher | 2 | -1/+117 | |
Adds an index for dataExpireTimestamp This is used for determining which users need to be removed during the cleanup task. If enumeration is enabled (or huge numbers of users have been cached), the cleanup task runs very slowly due to the non-indexed search. Also adds an index for ONELEVEL lookups, to speed up situations where we would need to request all entries under a particular node in the LDB. | |||||
2011-01-21 | Delete attributes that are removed from LDAP | Stephen Gallagher | 2 | -0/+125 | |
Sometimes, a value in LDAP will cease to exist (the classic example being shadowExpire). We need to make sure we purge that value from SSSD's sysdb as well. https://fedorahosted.org/sssd/ticket/750 | |||||
2011-01-14 | Do not throw a DP error when a netgroup is not found | Stephen Gallagher | 1 | -1/+4 | |
https://fedorahosted.org/sssd/ticket/775 | |||||
2011-01-14 | Work around libldb bug | Stephen Gallagher | 1 | -2/+10 | |
Libldb performs non-indexed searches for ONELEVEL requests. We'll use SUBTREE instead to reduce the performance hit substantially | |||||
2010-12-21 | Add authorizedService support | Stephen Gallagher | 1 | -0/+2 | |
https://fedorahosted.org/sssd/ticket/670 | |||||
2010-12-20 | Add sysdb_has_enumerated and sysdb_set_enumerated helper functions | Stephen Gallagher | 2 | -0/+152 | |
Includes a unit test | |||||
2010-11-15 | Fix const cast issue with sysdb_attrs_users_from_str_list | Stephen Gallagher | 2 | -2/+2 | |
2010-11-15 | Fix const cast warning for sysdb_update_members | Stephen Gallagher | 2 | -4/+4 | |
2010-11-15 | Sanitize sysdb DN helpers | Stephen Gallagher | 1 | -7/+83 | |
2010-11-15 | Sanitize search filters for the sysdb | Stephen Gallagher | 1 | -6/+39 | |
2010-11-15 | Add sysdb utility function for sanitizing DN | Stephen Gallagher | 2 | -0/+27 | |
2010-10-26 | Always use uint32_t for UID/GID numbers | Jakub Hrozek | 2 | -9/+9 | |
2010-10-18 | Modify sysdb_[add|remove]_group_member to accept users and groups | Stephen Gallagher | 2 | -39/+91 | |
Previously, it assumed that all members were users. This changes the interface so that either a user or a group can be specified. Also, it eliminates the need for a memory context to be passed, since the internal memory should be self-contained. | |||||
2010-10-15 | sysdb interface for adding fake users | Jakub Hrozek | 2 | -0/+65 | |
2010-10-15 | sysdb interface for adding incomplete groups | Jakub Hrozek | 2 | -0/+49 | |
Useful for optimizing the initgroups operation. | |||||
2010-10-15 | Add sysdb_attrs_get_ulong utility function | Jakub Hrozek | 2 | -0/+29 | |
2010-10-13 | Implement netgroup support for LDAP provider | Sumit Bose | 1 | -0/+3 | |
2010-10-13 | Also return member groups to the client | Sumit Bose | 2 | -60/+83 | |
2010-10-13 | Add sysdb_netgroup_base_dn() | Sumit Bose | 2 | -0/+8 | |
2010-10-13 | Do not fail if netgroup exists just update the attributes | Sumit Bose | 1 | -1/+1 | |
2010-10-13 | Netgroups sysdb API | Stephen Gallagher | 4 | -2/+802 | |
2010-09-22 | Fix sysdb_attrs_to_list | Jakub Hrozek | 1 | -2/+2 | |
2010-09-22 | Fix sysdb_group_dn_name | Jakub Hrozek | 1 | -1/+8 | |
2010-09-22 | Initgroups on a non-cached user should go to the data provider | Stephen Gallagher | 1 | -1/+11 | |
We were accidentally returning an error when sysdb_getpwnam() returned zero results internally in sysdb_initgroups(). The correct behavior here is to return EOK and a result object with zero entries. | |||||
2010-09-22 | Fix missing variable substitution in DEBUG message | Stephen Gallagher | 1 | -2/+2 | |
2010-09-15 | Define objectclass with a constant | Jakub Hrozek | 2 | -3/+4 | |
Use a #define instead of hardcoded string | |||||
2010-09-08 | Dead assignments cleanup in various places in SSSD | Jan Zeleny | 1 | -0/+3 | |
Three assignments deleted, two return code inspection added. Also found and fixed one critical bug caused by dead assignment. Ticket: #590 | |||||
2010-09-08 | Move crypto functions into its own subdir | Jakub Hrozek | 1 | -1/+1 | |
A refactoring patch that creates a common util/crypto subdir with per-implementation subdirectories for each underlying crypto library supported by SSSD. | |||||
2010-08-03 | Add sysdb_update_members function | Stephen Gallagher | 2 | -0/+61 | |
This function will take a user, a list of groups that this user should be added to and a list of groups the user should be removed from and will recursively call sysdb_[add|remove]_group_member Includes a unit test | |||||
2010-08-03 | Add sysdb_group_dn_name utility function | Stephen Gallagher | 2 | -0/+24 | |
2010-08-03 | Add sysdb_attrs_to_list() utility function | Stephen Gallagher | 2 | -0/+81 | |
2010-06-02 | Add sysdb_attrs_get_string_array() | Sumit Bose | 2 | -0/+35 | |
2010-05-27 | Add ldap_access_filter option | Stephen Gallagher | 2 | -0/+12 | |
This option (applicable to access_provider=ldap) allows the admin to set an additional LDAP search filter that must match in order for a user to be granted access to the system. Common examples for this would be limiting access to users by in a particular group, for example: ldap_access_filter = memberOf=cn=access_group,ou=Groups,dc=example,dc=com | |||||
2010-05-26 | Add support for delayed kinit if offline | Sumit Bose | 2 | -2/+13 | |
If the configuration option krb5_store_password_if_offline is set to true and the backend is offline the plain text user password is stored and used to request a TGT if the backend becomes online. If available the Linux kernel key retention service is used. | |||||
2010-04-12 | sysydb: Finally stop using a common event context | Simo Sorce | 3 | -23/+7 | |
This commit completes the migration to a synchronous sysdb | |||||
2010-04-12 | sysdb: remove remaining traces of sysdb_handle | Simo Sorce | 3 | -222/+0 | |
2010-04-12 | sysdb: remove obsolete helpers from sysdb | Simo Sorce | 2 | -158/+0 | |
2010-04-12 | sysdb: convert sysdb_initgroups | Simo Sorce | 2 | -96/+49 | |
2010-04-12 | sysdb: convert sysdb_enumgrent | Simo Sorce | 2 | -56/+34 | |
2010-04-12 | sysdb: convert sysdb_enumpwent | Simo Sorce | 2 | -55/+23 | |
2010-04-12 | sysdb: convert sysdb_get_user_attr | Simo Sorce | 2 | -18/+23 | |
2010-04-12 | sysdb: convert sysdb_getgrgid | Simo Sorce | 2 | -22/+34 | |
2010-04-12 | sysdb: convert sysdb_getgrnam | Simo Sorce | 2 | -18/+47 | |
2010-04-12 | sysdb: convert sysdb_getpwuid | Simo Sorce | 2 | -19/+23 | |
2010-04-12 | sysdb: convert sysdb_getpwnam | Simo Sorce | 2 | -18/+22 | |
2010-04-12 | sysdb: add automatic transactions where needed | Simo Sorce | 1 | -7/+47 | |
Only functions that do multiple operations need explicit transactions as ldb_add/ldb_modify/ldb_delete already start transactions automatically intenrally. | |||||
2010-04-12 | sysdb: remove async transactions | Simo Sorce | 2 | -157/+0 | |
not used anymore | |||||
2010-04-12 | sysdb: add synchronous transaction functions | Simo Sorce | 2 | -14/+37 | |