summaryrefslogtreecommitdiff
path: root/src/providers/krb5
AgeCommit message (Expand)AuthorFilesLines
2013-08-28krb5: Fetch ccname template from krb5.confStephen Gallagher4-12/+167
2013-08-28krb5_common: Refactor to use a talloc temp contextSimo Sorce1-12/+28
2013-08-27KRB5: Add support for KEYRING cache typeStephen Gallagher4-0/+212
2013-08-27KRB5: Remove unnecessary call to become_user()Stephen Gallagher1-6/+0
2013-08-24check_cc_validity: make sure _valid is always setSumit Bose1-5/+7
2013-08-22KRB5: Only set active and valid on successStephen Gallagher1-6/+5
2013-08-22KRB5: Refactor cc_*_check_existingStephen Gallagher1-61/+59
2013-08-22KRB5: Add new #define for collection cache typesStephen Gallagher4-18/+18
2013-08-19KRB5: Do not log to syslog on each loginJakub Hrozek1-1/+3
2013-08-19KRB5: Formatting changesJakub Hrozek1-4/+4
2013-08-11ldap, krb5: More descriptive msg on chpass failure.Michal Zidek1-0/+15
2013-07-23KRB5: Do not send PAC in server modeJakub Hrozek3-6/+19
2013-07-22Fix warnings: uninitialized variableLukas Slebodnik2-4/+3
2013-07-22Remove unused memory context from function unpack_authtokLukas Slebodnik1-3/+3
2013-07-19Add mising argument required by format stringLukas Slebodnik1-2/+3
2013-07-18KRB: Replace multiple calls with variableOndrej Kos1-6/+9
2013-07-18KRB: Handle empty password gracefullyOndrej Kos1-0/+11
2013-07-17SIGCHLD handler: do not call callback when pvt data where freedPavel Březina1-1/+1
2013-07-17print hint about password complexity when new password is rejectedPavel Březina1-1/+7
2013-07-15Use conditional build for retrieving ccache.Lukas Slebodnik2-88/+22
2013-07-11Return right directory name for dircacheLukas Slebodnik1-6/+10
2013-07-10KRB5_CHILD: Fix handling of get_password return codeOndrej Kos1-4/+10
2013-06-28Replace new_subdomain() with find_subdomain_by_name()Sumit Bose1-3/+2
2013-06-27Fix compilation warningJakub Hrozek1-1/+1
2013-06-27AD: Write out domain-realm mappingsJakub Hrozek1-1/+0
2013-06-27KRB5: guess UPN for subdomain usersJakub Hrozek7-18/+43
2013-06-26Do not switch to credentials everytime.Lukas Slebodnik1-4/+69
2013-06-26Every time return directory for krb5 cache collection.Lukas Slebodnik2-4/+64
2013-06-25krb5: do not use enterprise principals for renewalsSumit Bose1-1/+6
2013-06-25krb5: do not send pac for IPA users from the local domainSumit Bose4-10/+19
2013-06-25Revert "Always send the PAC to the PAC responder"Sumit Bose1-18/+20
2013-06-24Fix typo in pack_authtok()Sumit Bose1-1/+1
2013-06-24KRB5: use the right authtok type for renewalsSumit Bose1-3/+20
2013-06-17Set default realm for enterprise principalsSumit Bose1-0/+12
2013-06-17Use principal from the ticket to find validation entrySumit Bose1-1/+1
2013-06-14KRB: Handle preauthentication error correctlyOndrej Kos2-1/+9
2013-06-10A new option krb5_use_kdcinfoJakub Hrozek4-18/+36
2013-06-07Do not obfuscate calls with booleansJakub Hrozek1-7/+22
2013-06-06Always send the PAC to the PAC responderSumit Bose1-20/+18
2013-05-31Set canonicalize flag if enterprise principals are usedSumit Bose1-1/+6
2013-05-20Fixing critical format string issues.Lukas Slebodnik2-3/+5
2013-05-14Always update cached upn if enterprise principals are usedSumit Bose1-3/+4
2013-05-03Only check UPN if enterprise principals are not usedJakub Hrozek1-0/+5
2013-04-22Allow usage of enterprise principalsSumit Bose4-4/+18
2013-04-12Fix krbcc dir creation issue with MIT krb5 1.11Lukas Slebodnik2-11/+61
2013-04-05Further restrict become_user drop of privileges.Simo Sorce1-15/+18
2013-04-03Allow setting krb5_renew_interval with a delimiterAriel Barria3-6/+30
2013-04-03Check for correct variable nameJakub Hrozek1-4/+0
2013-04-03krb5 child: Use the correct type when processing OTPJakub Hrozek1-1/+1
2013-04-02Making the authtok structure really opaque.Lukas Slebodnik5-32/+31