summaryrefslogtreecommitdiff
path: root/src/responder/pam
AgeCommit message (Expand)AuthorFilesLines
2012-11-19Refactor the way subdomain accounts are savedSimo Sorce1-1/+4
2012-11-12Do not always return PAM_SYSTEM_ERR when offline krb5 authentication failsJakub Hrozek1-17/+12
2012-11-02PAM: Do not leak fd after SELinux context file is writtenJakub Hrozek1-0/+1
2012-10-29Include talloc log in our debug facilityMichal Zidek1-1/+1
2012-10-01Add new option default_domain_suffixSumit Bose1-10/+21
2012-09-13SELinux: Always use the default if it exists on the serverJakub Hrozek1-22/+21
2012-09-04Check if the SELinux login directory existsJakub Hrozek1-3/+3
2012-08-16Only create the SELinux login file if there are mappings on the serverJakub Hrozek1-45/+77
2012-08-16Do not try to remove the temp login file if already renamedJakub Hrozek1-2/+3
2012-08-16Build SELinux code in responder conditionallyJakub Hrozek1-0/+7
2012-08-01Fix bad checkJakub Hrozek1-1/+1
2012-07-27Write SELinux config files in responder instead of PAM moduleJan Zeleny1-5/+95
2012-07-27Move SELinux processing from session to account PAM stackJan Zeleny1-1/+2
2012-07-18PAM: Fix off-by-one-error in the SELinux session codeJakub Hrozek1-1/+1
2012-07-18Fix uninitialized valuesNick Guay1-1/+1
2012-06-25SELinux user maps: pick just one mapJan Zeleny1-12/+11
2012-06-21Fix re_expression matching with subdomainsJan Zeleny1-33/+55
2012-06-12Make re_expression and full_name_format per domain optionsStef Walter2-12/+11
2012-06-10PAM: Better pam_reply messageStephen Gallagher1-1/+2
2012-05-04Modify behavior of pam_pwd_expiration_warningJan Zeleny1-35/+0
2012-04-24Send PAM requests for subdomains to the right providerJan Zeleny1-3/+41
2012-04-24Modified responder_get_domain()Jan Zeleny2-2/+2
2012-04-24Add conn_name to allow different names for domains and connectionsJan Zeleny1-1/+1
2012-04-18Prevent printing NULL from DEBUG messagesJakub Hrozek1-1/+2
2012-02-29Remove sysdb_get_ctx_from_list()Sumit Bose2-16/+15
2012-02-21Don't give memory context in confdb where not neededJan Zeleny2-6/+6
2012-02-17RESPONDERS: Make the fd_limit setting configurableStephen Gallagher1-1/+12
2012-02-17RESPONDERS: Allow increasing the file-descriptor limitStephen Gallagher1-0/+5
2012-02-10Only fetch SELinux string if the user is foundJakub Hrozek1-1/+2
2012-02-06SELinux support in PAM responderJan Zeleny1-0/+163
2012-01-26PAM: Do not overwrite retJakub Hrozek1-3/+1
2012-01-23DP: Fix bugs in sss_dp_get_account_intStephen Gallagher1-0/+1
2012-01-21RESPONDER: Extend sss_dp_account_send() to include extra dataStephen Gallagher1-1/+1
2012-01-18PAM: Fix reversed logicJakub Hrozek1-1/+1
2011-12-21sss_get_cased_name utility functionJakub Hrozek1-2/+2
2011-12-20PAM: make initgroups timeout work across multiple clientsStephen Gallagher5-4/+241
2011-12-16Use the case sensitivity flag in respondersJakub Hrozek1-2/+6
2011-12-16Canonicalize username in PAM providerJakub Hrozek1-0/+27
2011-12-16Responders: Split getting domain by name into separate functionJakub Hrozek1-5/+2
2011-12-05Ignore NULL-terminator when checking UTF8-validityStephen Gallagher1-1/+1
2011-11-29RESPONDER: Refactor DP requests into tevent_req styleStephen Gallagher1-11/+48
2011-11-18RESPONDER: Ensure that all input strings are valid UTF-8Stephen Gallagher1-0/+5
2011-09-28Return users and groups based on aliasJakub Hrozek1-2/+3
2011-08-25New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0Pavel Březina1-1/+4
2011-08-25New DEBUG facility - conversionPavel Březina1-0/+2
2011-08-15sysdb refactoring: memory context deletedJan Zeleny2-9/+5
2011-08-15sysdb refactoring: deleted domain variables in sysdb APIJan Zeleny2-11/+5
2011-08-04Revert "Allow LDAP to decide when an expiration warning is warranted"Stephen Gallagher1-4/+3
2011-08-01Allow LDAP to decide when an expiration warning is warrantedStephen Gallagher1-3/+4
2011-05-06Allow changing the log level without restartStephen Gallagher1-1/+1