summaryrefslogtreecommitdiff
path: root/src/providers/ldap
AgeCommit message (Collapse)AuthorFilesLines
2012-01-27SUDO Integration - prepare data provider for new responder commandsPavel Březina3-134/+189
https://fedorahosted.org/sssd/ticket/1143
2012-01-23LDAP: Improve debugging for sdap_parse_derefStephen Gallagher1-4/+7
Move the debug statement identifying the DN to an earlier line, so if we get a reply with no attributes, we know which entry is at fault.
2012-01-18LDAP: Add option to disable paging controlStephen Gallagher3-3/+9
Fixes https://fedorahosted.org/sssd/ticket/967
2012-01-18Do not use sudo symbols in LDAP provider unconditionallyJakub Hrozek1-0/+2
2012-01-17SUDO Integration - periodical update of rules in data providerPavel Březina6-0/+345
https://fedorahosted.org/sssd/ticket/1110 Adds new configuration options: - ldap_sudo_refresh_enabled - enable/disable periodical updates - ldap_sudo_refresh_timeout - rules timeout (refresh period)
2012-01-17SUDO Integration - wrap data provider with tevent_reqPavel Březina2-43/+138
https://fedorahosted.org/sssd/ticket/1110
2012-01-17SUDO Integration review issuesPavel Březina2-3/+2
2012-01-14LDAP: Copy URI instead of pointing at failover service recordStephen Gallagher1-2/+8
In a heavy load environment, sometimes the failover service record would be updated and free the URI value. We need to guarantee that this URI string remains valid throughout the entire request. https://fedorahosted.org/sssd/ticket/1139
2012-01-14Log fixes for sdap_call_conn_cbStephen Gallagher1-1/+2
2011-12-22Add compatibility layer for Heimdal Kerberos implementationStephen Gallagher1-0/+5
2011-12-20Save original memberof, not memberofJakub Hrozek1-4/+16
2011-12-20SUDO Integration - fixed memory leak in sdap_sudo_handler()Pavel Březina1-0/+1
2011-12-20SUDO Integration - be_sudo_req removed from sudo_ctxPavel Březina2-2/+0
2011-12-19Pass sdap_id_ctx to online check from IPA providerJakub Hrozek2-17/+42
2011-12-19Move child_common routines to utilStephen Gallagher3-3/+3
2011-12-16Logically dead code in sdap_nested_group_lookup_groupPavel Březina1-1/+1
https://fedorahosted.org/sssd/ticket/1113
2011-12-16SUDO integration - LDAP providerPavel Březina4-0/+657
2011-12-16SUDO Integration - LDAP provider - save sudo rules functionsJakub Hrozek2-0/+125
2011-12-16SUDO Integration - LDAP configuration optionsPavel Březina4-2/+110
2011-12-16Export the function to convert ldb_result to sysdb_attrsJakub Hrozek1-29/+0
It will be reused later in the sudo responder
2011-12-16Use the case sensitivity flag in the LDAP providerJakub Hrozek6-11/+31
2011-12-16Refactor saving sdap entitiesJakub Hrozek5-179/+146
There was too much code duplication between sdap_save_{user,group,netgroup}. This patch removes the most egregious ones.
2011-12-14Support search bases in netgroup members translationPavel Březina1-1/+11
2011-12-14Support search bases in RFC2307bis enumerationPavel Březina1-10/+145
https://fedorahosted.org/sssd/ticket/960
2011-12-12Add sdap_connection_expire_timeout optionStephen Gallagher3-1/+15
https://fedorahosted.org/sssd/ticket/1036
2011-12-08LDAP: Fix missing break statements in force_tlsStephen Gallagher1-6/+12
Also add a default case to protect against bad input
2011-12-08LDAP provider: Error while setting the nocanon option should not be fatalJakub Hrozek1-3/+9
https://fedorahosted.org/sssd/ticket/1100
2011-12-08Add ldap_sasl_minssf optionJan Zeleny3-0/+19
https://fedorahosted.org/sssd/ticket/1075
2011-11-30Use dereference during IPA provider initgroupsJakub Hrozek1-40/+149
https://fedorahosted.org/sssd/ticket/1099
2011-11-29Fix two small bugs in group dereferencingJakub Hrozek1-2/+5
2011-11-29Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connectionsJakub Hrozek4-10/+42
2011-11-29LDAP: Try next failover server on any errorStephen Gallagher1-9/+5
2011-11-25Fix sdap_id_ctx/ipa_id_ctx mismatch in IPA providerJakub Hrozek2-2/+14
This was causing a segfault during HBAC processing and any ID lookups except for netgroups
2011-11-23Modified sdap_parse_search_base()Jan Zeleny3-12/+10
2011-11-23Renamed some LDAP routinesJan Zeleny6-41/+49
These were renamed just ot make sure they are not mistook for IPA netgroup functions.
2011-11-22Cleanup: Remove unused parametersJakub Hrozek10-67/+27
2011-11-18Prevent printing NULL in several places of LDAP providerJakub Hrozek2-5/+9
2011-11-11Use one transaction instead of two during RFC2307bis group processingJakub Hrozek1-31/+55
https://fedorahosted.org/sssd/ticket/1054
2011-11-11Squash transactions in sdap_initgr_common_storeJakub Hrozek1-6/+25
https://fedorahosted.org/sssd/ticket/1053
2011-11-08LDAP: Remove redundant groups from the lookup listStephen Gallagher1-23/+0
2011-11-07Use correct state struct in sdap_initgr_rfc2307bis_next_baseJakub Hrozek1-2/+3
2011-11-07Fix segfault in sdap_get_initgr_userJakub Hrozek1-1/+2
2011-11-02Support to request canonicalization in LDAP/IPA providerJan Zeleny5-0/+26
https://fedorahosted.org/sssd/ticket/957
2011-11-02LDAP: Add support for multiple search bases for group enumerationStephen Gallagher4-24/+101
2011-11-02LDAP: Add support for multiple search bases for user enumerationStephen Gallagher4-8/+49
2011-11-02LDAP: Convert ldap_*_search_filterStephen Gallagher3-59/+23
Instead of making this a global option for all user lookups, make it only used if the search base is passed without an explicit filter.
2011-11-02LDAP: Add multiple search bases for initgroups (RFC2307bis groups)Stephen Gallagher1-77/+225
2011-11-02LDAP: Add multiple search bases for initgroups (RFC2307 groups)Stephen Gallagher1-17/+99
2011-11-02LDAP: Add multiple search bases for initgroups (users)Stephen Gallagher1-30/+72
2011-11-02LDAP: Support multiple group search bases (non-enumeration, RFC2307)Stephen Gallagher4-16/+74
generated by cgit (git 2.34.1) at 2024-06-29 12:31:32 +0000