summaryrefslogtreecommitdiff
path: root/src/providers/ldap/ldap_common.c
AgeCommit message (Collapse)AuthorFilesLines
2012-08-06shadow attributes can contain -1Pavel Březina1-1/+1
https://fedorahosted.org/sssd/ticket/1393
2012-08-01Primary server support: new options in krb5 providerJan Zeleny1-4/+3
This patch adds support for new config options krb5_backup_server and krb5_backup_kpasswd. The description of this option's functionality is included in man page in one of previous patches.
2012-08-01Primary server support: LDAP adaptationJan Zeleny1-32/+79
This patch adds support for the primary server functionality into LDAP provider. No backup servers are added at the moment, just the basic support is in place.
2012-08-01Primary server support: basic support in failover codeJan Zeleny1-2/+2
Now there are two list of servers for each service. If currently selected server is only backup, then an event will be scheduled which tries to get connection to one of primary servers and if it succeeds, it starts using this server instead of the one which is currently connected to.
2012-07-06LDAP: Rename user and group maps for ADStephen Gallagher1-2/+2
This will eliminate ambiguity for the AD provider
2012-07-06KRB5: Drop memctx parameter of krb5_try_kdcipStephen Gallagher1-1/+1
This function is not supposed to return any newly-allocated memory directly. It was actually leaking the memory for krb5_servers if krb5_kdcip was being used, though it was undetectable because it was allocated on the provided memctx. This patch removes the memctx parameter and allocates krb5_servers temporarily on NULL and ensures that it is freed on all exit conditions. It is not necessary to retain this memory, as dp_opt_set_string() performs a talloc_strdup onto the appropriate context internally. It also updates the DEBUG messages for this function to the appropriate new macro levels.
2012-06-29sudo ldap provider: load host filter configuration on initPavel Březina1-1/+9
We need to load host information during provider initialization. Currently it loads only values from configuration files, but it is implemented as an asynchrounous request as it will later try to autodetect these settings (which will need to contact DNS).
2012-06-20Move some debug lines to new debug log levelsStef Walter1-1/+1
* These are common lines of debug output when starting up sssd https://bugzilla.redhat.com/show_bug.cgi?id=811113
2012-05-31Add support for filtering atributesJan Zeleny1-1/+2
This patch adds support for filtering attributes when constructing attribute list from a map for LDAP query.
2012-05-10LDAP: Add attr_count return value to build_attrs_from_map()Stephen Gallagher1-4/+1
This is necessary because in several places in the code, we are appending to the attrs returned from this value, and if we relied on the map size macro, we would be appending after the NULL terminator if one or more attributes were defined as NULL.
2012-05-03LDAP: Add helper routine to convert LDAP blob to SID stringStephen Gallagher1-0/+37
2012-03-28Put dp_option maps in their own fileStephen Gallagher1-279/+2
There is no functional change due to this patch.
2012-03-16Fix uninitialized variableJakub Hrozek1-1/+1
2012-03-14LDAP: Add AD 2008r2 schemaStephen Gallagher1-2/+49
https://fedorahosted.org/sssd/ticket/1031
2012-03-01IPA: Set the DNS discovery domain to match ipa_domainStephen Gallagher1-1/+2
https://fedorahosted.org/sssd/ticket/1217
2012-02-24Modifications to simplify list_missing_attrsJan Zeleny1-6/+14
2012-02-23IPA: Add ipa_parse_search_base()Stephen Gallagher1-10/+23
Previously, we were using sdap_parse_search_base() for setting up the search_base objects for use in IPA. However, this was generating unfriendly log messages about unknown search base types. This patch creates a new common_parse_search_base() routine that can be used with either LDAP or IPA providers. https://fedorahosted.org/sssd/ticket/1151
2012-02-21Don't give memory context in confdb where not neededJan Zeleny1-1/+1
2012-02-13Add missing breaks to switch statementsStephen Gallagher1-0/+1
Coverity #12525 and #12524
2012-02-07LDAP: Add support for SSH user public keysJan Cholasta1-2/+4
2012-02-06Update shadowLastChanged attribute during LDAP password changeJan Zeleny1-0/+1
https://fedorahosted.org/sssd/ticket/1019
2012-02-05AUTOFS: LDAP providerJakub Hrozek1-0/+106
2012-02-04Move BUILD_SUDO outside the generic LDAP source filesJakub Hrozek1-60/+0
Avoid #ifdefs in the general part of the code
2012-02-04NSS: Add individual timeouts for entry typesStephen Gallagher1-1/+0
https://fedorahosted.org/sssd/ticket/1016
2012-02-04LDAP: Do not fail if RootDSE check cannot determine search basesStephen Gallagher1-3/+2
https://fedorahosted.org/sssd/ticket/1152
2012-01-31LDAP: Add support for service lookups (non-enum)Stephen Gallagher1-0/+33
2012-01-18LDAP: Add option to disable paging controlStephen Gallagher1-1/+2
Fixes https://fedorahosted.org/sssd/ticket/967
2012-01-18Do not use sudo symbols in LDAP provider unconditionallyJakub Hrozek1-0/+2
2012-01-17SUDO Integration - periodical update of rules in data providerPavel Březina1-0/+60
https://fedorahosted.org/sssd/ticket/1110 Adds new configuration options: - ldap_sudo_refresh_enabled - enable/disable periodical updates - ldap_sudo_refresh_timeout - rules timeout (refresh period)
2012-01-17SUDO Integration review issuesPavel Březina1-1/+1
2011-12-16SUDO Integration - LDAP configuration optionsPavel Březina1-1/+72
2011-12-16Export the function to convert ldb_result to sysdb_attrsJakub Hrozek1-29/+0
It will be reused later in the sudo responder
2011-12-12Add sdap_connection_expire_timeout optionStephen Gallagher1-1/+2
https://fedorahosted.org/sssd/ticket/1036
2011-12-08Add ldap_sasl_minssf optionJan Zeleny1-0/+1
https://fedorahosted.org/sssd/ticket/1075
2011-11-23Modified sdap_parse_search_base()Jan Zeleny1-9/+8
2011-11-02Support to request canonicalization in LDAP/IPA providerJan Zeleny1-0/+1
https://fedorahosted.org/sssd/ticket/957
2011-11-02LDAP: Convert ldap_*_search_filterStephen Gallagher1-1/+5
Instead of making this a global option for all user lookups, make it only used if the search base is passed without an explicit filter.
2011-11-02LDAP: Add parser for multiple search basesStephen Gallagher1-0/+261
2011-11-02Make sdap_get_id_specific_filter() more strictStephen Gallagher1-2/+2
2011-09-20Fix uninitialized pointer read in sdap_gssapi_get_default_realm()Jakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/1003
2011-08-26Use the default Kerberos realm for LDAP with GSSAPI authJakub Hrozek1-3/+55
https://fedorahosted.org/sssd/ticket/970
2011-08-26Add LDAP provider option to set LDAP_OPT_X_SASL_NOCANONJakub Hrozek1-1/+2
https://fedorahosted.org/sssd/ticket/978
2011-08-15sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny1-3/+1
The patch also updates code using modified functions. Tests have also been adjusted.
2011-07-21fo_get_server_name() getter for a server nameJakub Hrozek1-1/+10
Allows to be more concise in tests and more defensive in resolve callbacks
2011-07-21Rename fo_get_server_name to fo_get_server_str_nameJakub Hrozek1-2/+2
2011-07-21Do not add a NULL host parsed from LDAP URIJakub Hrozek1-1/+8
https://fedorahosted.org/sssd/ticket/911
2011-07-08Add LDAP access control based on NDS attributesSumit Bose1-2/+8
2011-07-08Add helper function msgs2attrs_arrayStephen Gallagher1-0/+29
This function converts a list of ldb_messages into a list of sysdb_attrs.
2011-06-30Use name based URI instead of IP address based URIsSumit Bose1-37/+2
2011-06-30Add sockaddr_storage to sdap_serviceSumit Bose1-0/+11
generated by cgit (git 2.34.1) at 2024-11-15 23:46:51 +0000