Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2011-11-29 | IPA migration fixes | Jakub Hrozek | 3 | -97/+141 | |
* use the id connection for looking up the migration flag * force TLS on the password based authentication connection https://fedorahosted.org/sssd/ticket/924 | |||||
2011-11-29 | Provide means of forcing TLS and GSSAPI enabled/disabled for sdap connections | Jakub Hrozek | 5 | -11/+43 | |
2011-11-29 | LDAP: Try next failover server on any error | Stephen Gallagher | 1 | -9/+5 | |
2011-11-28 | Fixed logically dead code in netgroup processing | Jan Zeleny | 1 | -1/+1 | |
2011-11-28 | Fixed uninitialized pointer read in netgroups processing | Jan Zeleny | 1 | -0/+6 | |
2011-11-25 | Fix sdap_id_ctx/ipa_id_ctx mismatch in IPA provider | Jakub Hrozek | 4 | -4/+18 | |
This was causing a segfault during HBAC processing and any ID lookups except for netgroups | |||||
2011-11-23 | Added IPA account info handler | Jan Zeleny | 3 | -1/+373 | |
Currently it is only handling netgroups by itself, other requests are forwarded to LDAP provider. | |||||
2011-11-23 | Added support for fetching netgroups in IPA provider | Jan Zeleny | 1 | -0/+992 | |
2011-11-23 | New IPA ID context | Jan Zeleny | 3 | -22/+37 | |
2011-11-23 | Added and modified options for IPA netgroups | Jan Zeleny | 2 | -24/+69 | |
2011-11-23 | Modified sdap_parse_search_base() | Jan Zeleny | 4 | -16/+14 | |
2011-11-23 | Renamed some LDAP routines | Jan Zeleny | 6 | -41/+49 | |
These were renamed just ot make sure they are not mistook for IPA netgroup functions. | |||||
2011-11-22 | Set more strict permissions on keyring | Simo Sorce | 1 | -1/+1 | |
We want to confine access to the keyring to the current process and not let root easily peek into the keyring contents. | |||||
2011-11-22 | Fixed unchecked value of setenv() in check_and_export_options() | Jan Zeleny | 1 | -2/+5 | |
https://fedorahosted.org/sssd/ticket/1080 | |||||
2011-11-22 | Cleanup: Remove unused parameters | Jakub Hrozek | 25 | -119/+38 | |
2011-11-18 | Prevent printing NULL in several places of LDAP provider | Jakub Hrozek | 2 | -5/+9 | |
2011-11-11 | Use one transaction instead of two during RFC2307bis group processing | Jakub Hrozek | 1 | -31/+55 | |
https://fedorahosted.org/sssd/ticket/1054 | |||||
2011-11-11 | Squash transactions in sdap_initgr_common_store | Jakub Hrozek | 1 | -6/+25 | |
https://fedorahosted.org/sssd/ticket/1053 | |||||
2011-11-08 | LDAP: Remove redundant groups from the lookup list | Stephen Gallagher | 1 | -23/+0 | |
2011-11-07 | Fixed empty loginShell in proxy provider | Jan Zeleny | 1 | -4/+32 | |
https://fedorahosted.org/sssd/ticket/892 | |||||
2011-11-07 | Use correct state struct in sdap_initgr_rfc2307bis_next_base | Jakub Hrozek | 1 | -2/+3 | |
2011-11-07 | Fix segfault in sdap_get_initgr_user | Jakub Hrozek | 1 | -1/+2 | |
2011-11-02 | Support to request canonicalization in LDAP/IPA provider | Jan Zeleny | 7 | -1/+28 | |
https://fedorahosted.org/sssd/ticket/957 | |||||
2011-11-02 | Add support to request canonicalization on krb AS requests | Jan Zeleny | 5 | -3/+28 | |
https://fedorahosted.org/sssd/ticket/957 | |||||
2011-11-02 | LDAP: Add support for multiple search bases for group enumeration | Stephen Gallagher | 4 | -24/+101 | |
2011-11-02 | LDAP: Add support for multiple search bases for user enumeration | Stephen Gallagher | 4 | -8/+49 | |
2011-11-02 | LDAP: Convert ldap_*_search_filter | Stephen Gallagher | 3 | -59/+23 | |
Instead of making this a global option for all user lookups, make it only used if the search base is passed without an explicit filter. | |||||
2011-11-02 | LDAP: Add multiple search bases for initgroups (RFC2307bis groups) | Stephen Gallagher | 1 | -77/+225 | |
2011-11-02 | LDAP: Add multiple search bases for initgroups (RFC2307 groups) | Stephen Gallagher | 1 | -17/+99 | |
2011-11-02 | LDAP: Add multiple search bases for initgroups (users) | Stephen Gallagher | 1 | -30/+72 | |
2011-11-02 | LDAP: Support multiple group search bases (non-enumeration, RFC2307) | Stephen Gallagher | 4 | -16/+74 | |
2011-11-02 | LDAP: Support multiple netgroup search bases | Stephen Gallagher | 3 | -14/+65 | |
2011-11-02 | LDAP: Support multiple user search bases (non-enumeration) | Stephen Gallagher | 4 | -14/+70 | |
2011-11-02 | LDAP: Add parser for multiple search bases | Stephen Gallagher | 5 | -26/+380 | |
2011-11-02 | Make sdap_get_id_specific_filter() more strict | Stephen Gallagher | 2 | -4/+4 | |
2011-11-02 | Fix size return for split_on_separator() | Stephen Gallagher | 1 | -5/+5 | |
It was returning the size of the array, rather than the number of elements. (The array was NULL-terminated). This argument was only used in one place that was actually working around this odd return value. | |||||
2011-11-02 | Remove unused sdap_options attributes | Stephen Gallagher | 1 | -3/+0 | |
These DNs were never assigned or referenced anywhere. | |||||
2011-11-02 | Cleanup of unused function in ldap access provider | Jan Zeleny | 1 | -2/+0 | |
2011-11-02 | Remove confusing do-while loop | Jakub Hrozek | 1 | -35/+36 | |
The deref processing would return a single control back. The do-while loop was harmless but confusing. | |||||
2011-11-02 | Use LDAPDerefSpec properly | Jakub Hrozek | 1 | -4/+6 | |
ldap_create_deref_control_value expects an array of LDAPDerefSpec structures with LDAPDerefSpec.derefAttr == NULL as a sentinel. We were passing a single instance of a LDAPDerefSpec structure. https://fedorahosted.org/sssd/ticket/1050 | |||||
2011-10-31 | Steal result onto mem_ctx in sdap_initgr_nested_get_direct_parents | Jakub Hrozek | 1 | -2/+1 | |
2011-10-31 | RFC2307bis initgroups: fix nested groups processing | Jakub Hrozek | 1 | -20/+33 | |
Due to incorrectly written loop, SSSD would go into infitite loop if it processed the same group on two different levels of membership. | |||||
2011-10-31 | Do not leak hash table iterator during proxy auth | Jakub Hrozek | 1 | -0/+1 | |
2011-10-25 | Plug memory leaks in LDAP provider | Jakub Hrozek | 1 | -0/+3 | |
2011-10-17 | Cancel transactions correctly during initgroups | Jakub Hrozek | 1 | -13/+31 | |
2011-10-17 | Use fewer transactions during IPA initgroups | Jakub Hrozek | 1 | -171/+273 | |
2011-10-17 | Use fewer transactions during RFC2307bis initgroups | Jakub Hrozek | 1 | -346/+366 | |
2011-10-17 | Utility functions for LDAP nested schema initgroups | Jakub Hrozek | 1 | -0/+119 | |
2011-10-17 | Add a missing break | Jakub Hrozek | 1 | -0/+1 | |
2011-10-14 | HBAC: Use originalMember for identifying hostgroups | Stephen Gallagher | 3 | -45/+165 | |