summaryrefslogtreecommitdiff
path: root/src/providers/ipa
AgeCommit message (Collapse)AuthorFilesLines
2010-05-07Use service discovery in backendsJakub Hrozek3-8/+21
Integrate the failover improvements with our back ends. The DNS domain used in the SRV query is always the SSSD domain name. Please note that this patch changes the default value of ldap_uri from "ldap://localhost" to "NULL" in order to use service discovery with no server set.
2010-05-07Compare the full service nameSumit Bose1-1/+2
2010-05-07Create kdcinfo and kpasswdinfo file at startupSumit Bose1-0/+9
2010-05-07Fix memory hierarchy in the ipa timerulesJakub Hrozek1-4/+4
2010-05-03Fix a wrong return value in IPA HBACSumit Bose1-2/+2
2010-05-03Better handle sdap_handle memory from callers.Simo Sorce1-8/+0
Always just mark the sdap_handle as not connected and let later _send() functions to take care of freeing the handle before reconnecting. Introduce restart functions to avoid calling _send() functions in _done() functions error paths as this would have the same effect as directly freeing the sdap_handle and cause access to freed memory in sdap_handle_release() By freeing sdap_handle only in the connection _recv() function we guarantee it can never be done within sdap_handle_release() but only in a following event.
2010-04-16Make ID provider init functions clearerStephen Gallagher1-5/+5
Using sssm_*_init() as the name of the initialization function for identity providers was a holdover from earlier development when we thought we would only have a single "provider" entry in the config file. As we have now separated out the initialization functions for auth, chpass and access, we should rename sssm_*_init() to sssm_*_id_init() for a cleaner interface.
2010-04-12sysdb: remove remaining traces of sysdb_handleSimo Sorce1-4/+0
2010-04-12Remove remaining use of sysdb_transaction_sendSimo Sorce1-69/+25
2010-04-12sysdb: convert sysdb_asq_searchSimo Sorce1-150/+69
2010-04-12sysdb: convert sysdb_store_customSimo Sorce1-113/+35
2010-04-12sysdb: convert sysdb_search_customSimo Sorce1-42/+60
2010-04-12sysdb: convert sysdb_search_user_by_name/uidSimo Sorce1-61/+14
2010-04-12sysdb: convert sysdb_search_entry and sysdb_delete_recursiveSimo Sorce1-25/+5
2010-03-25Fix LDAP search paths for IPA HBACSumit Bose5-43/+81
- use domain_to_basedn() to construct LDAP search paths for IPA HBAC - move domain_to_basedn() to a separate file to simplify the build of a test
2010-03-25Add krb5_kpasswd to IPA providerEugene Indenbom2-2/+3
The krb5 options were out of sync, causing a runtime abort.
2010-03-25Regression test against RHBZ #576856Jakub Hrozek2-5/+5
2010-03-12Add krb5_kpasswd optionSumit Bose1-2/+3
2010-03-11Write the IP address of the KDC to the kdcinfo fileSumit Bose1-3/+11
2010-02-23Better cleanup task handlingJakub Hrozek2-2/+3
Implements a different mechanism for cleanup task. Instead of just deleting expired entries, this patch adds a new option account_cache_expiration for domains. If an entry is expired and the last login was more days in the past that account_cache_expiration, the entry is deleted. Groups are deleted if they are expired and and no user references them (no user has memberof: attribute pointing at that group). The parameter account_cache_expiration is not LDAP-specific, so that other future backends might use the same timeout setting. Fixes: #391
2010-02-18Rename server/ directory to src/Stephen Gallagher9-0/+4449
Also update BUILD.txt
generated by cgit (git 2.34.1) at 2025-02-19 16:01:07 +0000