| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2012-11-20 | LDAP: Only convert direct parents' ghost attribute to member | Jakub Hrozek | 1 | -1/+0 | |
| https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting. | |||||
| 2012-02-24 | IPA hosts refactoring | Jan Zeleny | 1 | -6/+0 | |
| 2012-02-06 | Separate the host-retrieval code from IPA HBAC to common IPA code | Jan Zeleny | 1 | -19/+0 | |
| 2012-02-06 | Implemented support for multiple search bases in HBAC rules and services | Jan Zeleny | 1 | -17/+1 | |
| 2012-01-14 | Support multiple search bases in HBAC | Jan Zeleny | 1 | -1/+1 | |
| 2011-11-29 | Add ipa_hbac_support_srchost option to IPA provider | Jan Zeleny | 1 | -0/+3 | |
| don't fetch all host groups if this option is false https://fedorahosted.org/sssd/ticket/1078 | |||||
| 2011-11-22 | Cleanup: Remove unused parameters | Jakub Hrozek | 1 | -8/+0 | |
| 2011-10-14 | HBAC: Use originalMember for identifying hostgroups | Stephen Gallagher | 1 | -0/+5 | |
| 2011-10-14 | HBAC: Use originalMember for identifying servicegroups | Stephen Gallagher | 1 | -0/+5 | |
| 2011-07-08 | Add helper functions for looking up HBAC rule components | Stephen Gallagher | 1 | -0/+194 | |
 |
index : sssd | |
| System Security Services Daemon | ben |
| summaryrefslogtreecommitdiff |