summaryrefslogtreecommitdiff
path: root/src/providers/ldap/sdap_async_users.c
AgeCommit message (Collapse)AuthorFilesLines
2012-11-28idmap: Silence DEBUG messages when dealing with built-in SIDs.Michal Zidek1-44/+51
When converting built-in SID to unix GID/UID a confusing debug message about the failed conversion was printed. This patch special cases these built-in objects. https://fedorahosted.org/sssd/ticket/1593
2012-11-23LDAP: fix uninitialized variableOndrej Kos1-1/+1
initialized variable, was causing build warning
2012-11-20LDAP: Only convert direct parents' ghost attribute to memberJakub Hrozek1-5/+17
https://fedorahosted.org/sssd/ticket/1612 This patch changes the handling of ghost attributes when saving the actual user entry. Instead of always linking all groups that contained the ghost attribute with the new user entry, the original member attributes are now saved in the group object and the user entry is only linked with its direct parents. As the member attribute is compared against the originalDN of the user, if either the originalDN or the originalMember attributes are missing, the user object is linked with all the groups as a fallback. The original member attributes are only saved if the LDAP schema supports nesting.
2012-11-08do not default fullname to gecos when schema = adPavel Březina1-0/+14
https://fedorahosted.org/sssd/ticket/1482 When we add fullname to user_attrs, then sysdb_add_basic_user() will set fullname to gecos when it initially creates the user object in the cache, but it will be overwritten in the same transaction when sysdb_store_user() adds all the user_attrs.
2012-08-23Unify usage of sysdb transactionsMichal Zidek1-1/+12
Removing bad examples of usage of sysdb_transaction_start/commit/end functions and making it more consistent (all files except of src/db/sysdb_*.c).
2012-05-31Ghost members - removed sdap_check_aliases()Jan Zeleny1-6/+0
This function is no longer necessary because we don't have fake user entries any more. The original purpose of this function was to check if there are fake user entries for particular user and, if yes, to update its membership.
2012-05-03LDAP: Add helper function to map IDsStephen Gallagher1-57/+6
This function will also auto-create a new ID map if the domain has not been seen previously.
2012-05-03LDAP: Do not remove uidNumber and gidNumber attributes when saving id-mapped ↵Stephen Gallagher1-0/+11
entries
2012-05-03LDAP: Add helper routine to convert LDAP blob to SID stringStephen Gallagher1-20/+4
2012-05-03LDAP: Map the user's primaryGroupIDStephen Gallagher1-12/+64
2012-05-03LDAP: Allow automatically-provisioning a domain and rangeStephen Gallagher1-3/+43
If we get a user who is a member of a domain we haven't seen before, add a domain entry (auto-assigning its slice). Since we don't know the domain's real name, we'll just save the domain SID string as the name as well.
2012-05-03LDAP: Enable looking up ID-mapped users by nameStephen Gallagher1-9/+54
2012-02-24Modifications to simplify list_missing_attrsJan Zeleny1-11/+2
2012-02-24LDAP: Only use paging control on requests for multiple entriesStephen Gallagher1-1/+2
The paging control can cause issues on servers that put limits on how many paging controls can be active at one time (on some servers, it is limited to one per connection). We need to reduce our usage so that we only activate the paging control when making a request that may return an arbitrary number of results. https://fedorahosted.org/sssd/ticket/1202 phase one
2012-02-14Fix memory hierarchy when processing nested group membershipsJakub Hrozek1-1/+2
https://fedorahosted.org/sssd/ticket/1186
2012-02-04NSS: Add individual timeouts for entry typesStephen Gallagher1-1/+1
https://fedorahosted.org/sssd/ticket/1016
2012-02-04LDAP: Do not fail if RootDSE check cannot determine search basesStephen Gallagher1-0/+9
https://fedorahosted.org/sssd/ticket/1152
2011-12-20Save original memberof, not memberofJakub Hrozek1-4/+16
2011-12-16Use the case sensitivity flag in the LDAP providerJakub Hrozek1-1/+1
2011-12-16Refactor saving sdap entitiesJakub Hrozek1-78/+20
There was too much code duplication between sdap_save_{user,group,netgroup}. This patch removes the most egregious ones.
2011-11-02LDAP: Add support for multiple search bases for user enumerationStephen Gallagher1-5/+43
2011-11-02LDAP: Support multiple user search bases (non-enumeration)Stephen Gallagher1-13/+62
2011-10-13SysDB commands that save lastUpdate allows this value to be passed inPavel Březina1-3/+6
https://fedorahosted.org/sssd/ticket/836
2011-09-28Store name aliases for users, groupsJakub Hrozek1-0/+21
Also checks fake users for aliases when storing a real users so that getgrnam for a RFC2307 group that references a user by his secondary name followed by getpwnam for this user by his primary name works
2011-08-15sdap_async_accounts.c splitJan Zeleny1-0/+513
The file has been split in three: sdap_async_users.c sdap_async_groups.c sdap_async_initgroups.c https://fedorahosted.org/sssd/ticket/864
generated by cgit (git 2.34.1) at 2024-11-16 07:59:26 +0000