summaryrefslogtreecommitdiff
path: root/src/providers/krb5
AgeCommit message (Expand)AuthorFilesLines
2013-01-10Change pam data auth tokens.Simo Sorce5-147/+186
2013-01-10Code can only check for cached passwordsSimo Sorce1-4/+17
2013-01-02let krb5_backup_kpasswd failover workPavel Březina1-2/+2
2013-01-02failover: Protect against empty host namesMichal Zidek1-1/+1
2012-12-20krb5 tgt renewal: fix usage of ldb_dn_get_component_val()Sumit Bose1-4/+4
2012-12-10let krb5_kpasswd failover workPavel Březina1-3/+7
2012-12-04Fix tevent_req style for krb5_authSimo Sorce4-371/+334
2012-11-26Save errno before it might be modified.Simo Sorce1-8/+16
2012-11-19Disable canonicalization during password changesSumit Bose1-2/+43
2012-11-19Fix compare_principal_realm() checkSumit Bose1-9/+3
2012-11-19Just use the service name with krb5_get_init_creds_password()Sumit Bose1-24/+2
2012-11-12Only build extract_and_send_pac on platforms that support itJakub Hrozek1-104/+18
2012-11-12KRB5: Rename variable to avoid shadowing a global declarationJakub Hrozek1-4/+4
2012-11-12Do not always return PAM_SYSTEM_ERR when offline krb5 authentication failsJakub Hrozek1-1/+2
2012-10-29Include talloc log in our debug facilityMichal Zidek1-1/+1
2012-10-26krb5_auth: update with correct UPN if neededSumit Bose3-0/+133
2012-10-26Use find_or_guess_upn() where neededSumit Bose4-34/+49
2012-10-26Add new call find_or_guess_upn()Sumit Bose4-8/+54
2012-10-26krb5_child: send back the client principalSumit Bose3-5/+41
2012-10-26krb5_mod_ccname: replace wrong memory contextSumit Bose1-1/+1
2012-10-26krb5_child: send PAC to PAC responderSumit Bose1-1/+139
2012-10-26krb5_auth: send different_realm flag to krb5_childSumit Bose2-1/+8
2012-10-26krb5_auth: check if principal belongs to a different realmSumit Bose4-0/+43
2012-10-26check_ccache_files: search sub-domains as wellSumit Bose1-4/+14
2012-10-26krb5_auth_send: check for sub-domainsSumit Bose3-5/+37
2012-10-12Only call krb5_set_trace_callback on platforms that support itJakub Hrozek1-1/+1
2012-10-12Collect krb5 trace on high debug levelsJakub Hrozek2-2/+25
2012-10-12Two fixes to child processesJakub Hrozek1-2/+0
2012-10-10Add more info about ticket validationOndrej Kos1-0/+8
2012-10-04Log possibly non-randomizable ccache file templateOndrej Kos4-6/+26
2012-09-24KRB5: Recover gracefully if the ccache file could not be reusedJakub Hrozek1-4/+6
2012-09-20KRB5 child: handle more error codes gracefullyJakub Hrozek1-31/+26
2012-09-20KRB5 child: Don't return System Error on empty passwordJakub Hrozek1-0/+4
2012-09-17Failover: use _srv_ when no primary server is definedPavel Březina1-12/+3
2012-09-13FO: Check server validity before setting statusJakub Hrozek1-5/+9
2012-09-10KRB5: Add a missing string argumentJakub Hrozek1-1/+2
2012-09-10KRB5: Return PAM_AUTH_ERR on incorrect passwordJakub Hrozek1-19/+32
2012-09-10KRB5: cancel the sysdb transaction on one place onlyJakub Hrozek1-1/+0
2012-08-24Use new debug levels in validate_tgt()Sumit Bose1-13/+16
2012-08-24Fix fallback in validate_tgt()Sumit Bose1-8/+20
2012-08-23Fix: IPv6 address with square brackets doesn't work.Michal Zidek1-1/+14
2012-08-23Unify usage of sysdb transactionsMichal Zidek1-2/+14
2012-08-15KRB5: Only return PAM error for unreachable kpasswd when performing chpassJakub Hrozek1-2/+4
2012-08-15Duplicate detection in fail over did not work.Michal Zidek1-1/+6
2012-08-09SRV resolution for backup servers should not be permitted.Michal Zidek1-2/+9
2012-08-08Allocate on top of a talloc context, not NULLJakub Hrozek1-0/+3
2012-08-01Primary server support: new options in krb5 providerJan Zeleny3-4/+17
2012-08-01Primary server support: krb5 adaptationJan Zeleny3-49/+94
2012-08-01Primary server support: basic support in failover codeJan Zeleny1-1/+1
2012-07-18Fix uninitialized valuesNick Guay2-2/+2