summaryrefslogtreecommitdiff
path: root/src/providers/ldap
AgeCommit message (Expand)AuthorFilesLines
2013-08-26sudo: do not strdup usn on ENOENTPavel Březina1-1/+1
2013-08-26sudo: do not fail to store the rule if we can't read usnPavel Březina1-3/+4
2013-08-19sysdb_add_incomplete_group: store SID string is availableSumit Bose2-9/+18
2013-08-19save_rfc2307bis_user_memberships: use fq names for subdomainsSumit Bose1-0/+16
2013-08-19sdap_add_incomplete_groups: use fully qualified name if neededSumit Bose1-4/+14
2013-08-19sudo: continue if we are unable to resolve fqdnPavel Březina1-1/+0
2013-08-19sdap_save_user: save original primary GID of subdomain usersSumit Bose1-11/+22
2013-08-19sdap_get_initgr_done: use the right SID to get a GIDSumit Bose1-1/+2
2013-08-11ldap, krb5: More descriptive msg on chpass failure.Michal Zidek1-0/+15
2013-08-08Enable removing nonexisting dn in sdap_handle_account_infoLukas Slebodnik1-1/+1
2013-08-08Fix memory context for hash entriesSumit Bose1-2/+4
2013-08-07Fix memory context for a state memberSumit Bose1-1/+1
2013-08-05sudo: print better debug message when a rule has multiple cn valuesPavel Březina1-1/+5
2013-08-05sudo: skip rule on error instead of failing completelyPavel Březina1-1/+3
2013-07-25Prevent using uninitialized "group_name" in done section.Lukas Slebodnik1-1/+1
2013-07-24LDAP: Use domain-specific name where appropriateJakub Hrozek5-112/+159
2013-07-17SIGCHLD handler: do not call callback when pvt data where freedPavel Březina1-1/+1
2013-07-17print hint about password complexity when new password is rejectedPavel Březina1-0/+8
2013-07-17LDAP: When resolving a SID, search for groups first, then usersJakub Hrozek1-19/+18
2013-07-01ldap: only update shadowLastChange when password change is successfulJim Collins1-1/+2
2013-06-28AD: Move storing sdap_domain for subdomain to generic LDAP codeJakub Hrozek2-0/+77
2013-06-28LDAP: Add utility function sdap_copy_mapJakub Hrozek2-0/+45
2013-06-28Replace new_subdomain() with find_subdomain_by_name()Sumit Bose1-3/+2
2013-06-28Replace SDAP_ID_MAPPING checks with sdap_idmap_domain_has_algorithmic_mappingSumit Bose5-14/+38
2013-06-28Add sdap_idmap_domain_has_algorithmic_mapping()Sumit Bose2-0/+62
2013-06-28Allow different methods to find new domains for idmappingSumit Bose2-3/+24
2013-06-28SDAP IDMAP: Add configured domain to idmap contextSumit Bose1-0/+70
2013-06-28Add now options ldap_min_id and ldap_max_idSumit Bose2-0/+4
2013-06-24LDAP: Retry SID search based on result of LDAP search, not the return codeJakub Hrozek1-2/+13
2013-06-18nested groups: do not expect any particular number of groupsPavel Březina1-19/+10
2013-06-18nested groups: do not return ENOMEM if num_groups is 0Pavel Březina1-6/+10
2013-06-17handle ERR_ACCOUNT_EXPIRED properlyPavel Březina1-1/+5
2013-06-17nested groups: allocate more space if deref returns more membersPavel Březina1-0/+21
2013-06-10A new option krb5_use_kdcinfoJakub Hrozek3-2/+8
2013-06-10providers: refresh expired netgroupsPavel Březina3-0/+183
2013-06-07LDAP: Do not store separate GID for subdomain usersJakub Hrozek1-10/+18
2013-06-07Split generating primary GID for ID mapped users into a separate functionJakub Hrozek1-41/+70
2013-06-07LDAP: store FQDNs for trusted users and groupsJakub Hrozek5-12/+36
2013-06-07LDAP: split a function to create search basesJakub Hrozek2-29/+73
2013-06-07LDAP: return sdap search return code to IDJakub Hrozek5-50/+126
2013-06-07LDAP: new SDAP domain structureJakub Hrozek21-127/+281
2013-06-07LDAP: Pass in a connection to ID functionsJakub Hrozek6-29/+62
2013-06-07LDAP: Refactor account info handler into a tevent requestJakub Hrozek2-163/+210
2013-06-07LDAP: sdap_id_ctx might contain several connectionsJakub Hrozek13-73/+142
2013-06-07Do not obfuscate calls with booleansJakub Hrozek1-10/+29
2013-06-06Intermittent fix for get_user_and_group_users_doneSumit Bose1-3/+0
2013-05-30Prevent segfault while processing ASQ requestLukas Slebodnik1-0/+6
2013-05-28Remove unneeded commentJakub Hrozek1-1/+0
2013-05-27Fail with misconfigured id-mapping rangesOndrej Kos1-1/+2
2013-05-27Add SID related requests to the LDAP providerSumit Bose1-5/+230