summaryrefslogtreecommitdiff
path: root/src/providers/ldap/ldap_id_cleanup.c
AgeCommit message (Collapse)AuthorFilesLines
2011-06-02Non-posix group processing - ldap provider and nss responderJan Zeleny1-12/+12
2011-02-11Fix cleanup transactionStephen Gallagher1-0/+1
Without setting in_transaction=true, if the sysdb operations threw an error, we wouldn't cancel the transaction.
2011-02-03Wrap cleanup task in a sysdb transactionStephen Gallagher1-0/+20
2010-11-04Don't clean up groups for which a user has it as primary GIDStephen Gallagher1-2/+15
We were cleaning up all groups that were expired and for which there existed no user with memberOf: <thegroup> as an attribute. This patch modifies the search to also check for cached users with this group's GID as their primary GID. Fixes https://fedorahosted.org/sssd/ticket/624
2010-10-15sysdb interface for adding fake usersJakub Hrozek1-3/+4
2010-06-10Properly check that the timeout event was created for cleanup/enumStephen Gallagher1-1/+23
We need to make sure that if we didn't create the timeout, that we cancel the request so there's no chance of ending up with two enumerations/cleanups running simultaneously. We'll attempt to reschedule later, if possible. https://fedorahosted.org/sssd/ticket/524
2010-04-12sysdb: convert sysdb_search_groupsSimo Sorce1-133/+57
2010-04-12sysdb: delete sysdb_delete_groupSimo Sorce1-92/+45
2010-04-12sysdb: convert sysdb_delete_userSimo Sorce1-162/+60
2010-04-12sysdb: convert sysdb_search_usersSimo Sorce1-67/+37
2010-02-25Remove a check that was left behindJakub Hrozek1-7/+1
When refactoring talloc_asprintf calls a check was left behind that cased the backend to go offline immediately.
2010-02-23Better cleanup task handlingJakub Hrozek1-36/+192
Implements a different mechanism for cleanup task. Instead of just deleting expired entries, this patch adds a new option account_cache_expiration for domains. If an entry is expired and the last login was more days in the past that account_cache_expiration, the entry is deleted. Groups are deleted if they are expired and and no user references them (no user has memberof: attribute pointing at that group). The parameter account_cache_expiration is not LDAP-specific, so that other future backends might use the same timeout setting. Fixes: #391
2010-02-23Do not check entries during cleanup taskJakub Hrozek1-79/+57
Do not attempt to validate expired entries in cache, just delete them. Also increase the cache timeouts. Fixes: #331
2010-02-23Do not schedule enumeration after a cleanupJakub Hrozek1-2/+2
2010-02-18Rename server/ directory to src/Stephen Gallagher1-0/+555
Also update BUILD.txt