summaryrefslogtreecommitdiff
path: root/src/responder
AgeCommit message (Collapse)AuthorFilesLines
2012-05-31Ghost members - various small changesJan Zeleny1-1/+1
2012-05-31Ghost members - NSS responder changesJan Zeleny1-89/+147
Since there are two attributes storing information about user memberships of the group we have to include both of them in results. This will apply only for objects that have ghost members (i.e. they contain the SYSDB_GHOST attribute). If an object has this attribute, values of this attribute are not projected to the memberuid attribute.
2012-05-25NSS: Restore original protocol for getservbyportStephen Gallagher1-1/+1
When fixing an endianness bug, we changed the protocol unnecessarily.
2012-05-25Send 16bit protocol numbers from the sss_clientJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/1348
2012-05-24NSS: Fix segfault when mmap cache cannot be initializedStephen Gallagher1-2/+2
2012-05-16NSS: Expire in-memory netgroup cache before the nowait timeoutStephen Gallagher1-1/+9
The fact that we were keeping it in memory for the full duration of the cache timeout meant that we would never reap the benefits of the midpoint cache refresh. https://fedorahosted.org/sssd/ticket/1340
2012-05-15Use sized_string correctly in FQDN domainsJakub Hrozek1-2/+2
2012-05-15NSS: keep a pointer to body after body is reallocatedJakub Hrozek1-0/+3
2012-05-10Send the correct enumeration requestJakub Hrozek1-1/+1
https://fedorahosted.org/sssd/ticket/1329
2012-05-09NSS: Add default_shell optionStephen Gallagher3-1/+15
This option will allow administrators to set a default shell to be used if a user does not have one set in the identity provider. https://fedorahosted.org/sssd/ticket/1289
2012-05-09NSS: Add fallback_homedir optionStephen Gallagher3-2/+27
This option is similar to override_homedir, except that it will take effect only for users that do not have an explicit home directory specified in LDAP. https://fedorahosted.org/sssd/ticket/1250
2012-05-04Modify behavior of pam_pwd_expiration_warningJan Zeleny1-35/+0
New option pwd_expiration_warning is introduced which can be set per domain and can override the value specified by the original pam_pwd_expiration_warning. If the value of expiration warning is set to zero, the filter isn't apllied at all - if backend server returns the warning, it will be automatically displayed. Default value for Kerberos: 7 days Default value for LDAP: don't apply the filter Technical note: default value when creating the domain is -1. This is important so we can distinguish between "no value set" and 0. Without this possibility it would be impossible to set different values for LDAP and Kerberos provider.
2012-05-03SSH: Add dp_get_host_send to common responder codeJakub Hrozek5-22/+186
Instead of using account_info request, creates a new ssh specific request. This improves code readability and will make the code more flexible in the future. https://fedorahosted.org/sssd/ticket/1176
2012-05-03AUTOFS: remove unused assignmentsJakub Hrozek1-4/+9
Also changes setautomntent_send so that is only return NULL in case the tevent_req creation fails.
2012-05-02NSS: fix returning group from cacheJakub Hrozek1-1/+1
2012-05-02NSS: Check return code of sss_mmap_cache_gr_storeJakub Hrozek1-0/+5
2012-05-02RESPONDER: check return value from confdb_get_intJakub Hrozek1-0/+7
sss_process_init forgot to check return value of confdb_get_int
2012-05-02SSH: return NULL on error in ssh_host_pubkeys_format_known_host_plainJakub Hrozek1-1/+2
The 'result' pointer must be initialized tin order to always return a defined value.
2012-04-24NSS: Only return data from initgroups onceJakub Hrozek1-3/+10
Do not let nss_cmd_initgroups_search() return data itself, but let the caller return data. This is more intuitive and more consistent with the rest of the nss_cmd_*_search() functions. Also fixes a typo - nss_cmd_initgroups_cb used to call getpw_send_reply instead of initgr_send_reply.
2012-04-24Lowercase group members in case-insensitive domainsJakub Hrozek1-1/+7
https://fedorahosted.org/sssd/ticket/1312
2012-04-24Two fixes in responder subdomain codeJan Zeleny1-0/+6
2012-04-24SSH: Add support for hashed known_hostsJan Cholasta3-36/+171
https://fedorahosted.org/sssd/ticket/1203
2012-04-24Send PAM requests for subdomains to the right providerJan Zeleny1-3/+41
2012-04-24Moved expand_homedir_template() from NSS responder to utility codeJan Zeleny1-108/+1
2012-04-24Add domain name to get_account_info requestSumit Bose1-0/+1
2012-04-24Check sub-domains in nss_cmd_get{pwuid|grgid}_search()Sumit Bose1-4/+26
2012-04-24Ask for subdomains in responder in the first request after startupJan Zeleny1-0/+30
2012-04-24Retrieve subdomains if there is a request for fully qualified userJan Zeleny3-31/+192
2012-04-24Modified responder_get_domain()Jan Zeleny13-22/+51
Now it checks for subdomains as well as for the domain itself
2012-04-24Responder part of the subdomain retrieval workJan Zeleny3-0/+359
2012-04-24Add conn_name to allow different names for domains and connectionsJan Zeleny2-2/+2
2012-04-20Convert read and write operations to sss_atomic_readJakub Hrozek2-11/+11
https://fedorahosted.org/sssd/ticket/1209
2012-04-18Prevent printing NULL from DEBUG messagesJakub Hrozek3-5/+10
2012-03-21NSS: Look for services with correct case when cache is updatedJakub Hrozek1-7/+7
https://fedorahosted.org/sssd/ticket/1259
2012-03-21Save alias of the primary name, tooJakub Hrozek1-8/+14
2012-03-20NSS: Fix debug messageStephen Gallagher1-0/+2
2012-03-19nsssrv: add handling of memory cache group mapSimo Sorce5-4/+98
2012-03-19nsssrv: add handling of memory cache passwd mapSimo Sorce3-3/+101
2012-03-19nsssrv: Add memory cache record handling utilsSimo Sorce1-0/+279
2012-03-19nsssrv: shared memory cache server initializationSimo Sorce4-0/+350
2012-03-16Free entry found in negative cacheJakub Hrozek1-0/+3
2012-03-15SSH: Allow clients to explicitly specify host aliasJan Cholasta3-67/+38
This change removes the need to canonicalize host names on the responder side - the relevant code was removed.
2012-03-09SSH: Fix missing semicolonStephen Gallagher1-1/+1
2012-03-09Add umask before mkstemp() call in SSH responderJan Zeleny1-0/+3
2012-03-09Potential NULL-dereference in sudosrv_cmd_get_sudorulesPavel Březina1-14/+12
https://fedorahosted.org/sssd/ticket/1236
2012-03-09Use of unininitialized value in sudosrv_cache_set_entry and ↵Pavel Březina1-0/+2
sudosrv_cache_lookup_internal https://fedorahosted.org/sssd/ticket/1232
2012-03-08Handle errors from lookup_netgr_step gracefullyJakub Hrozek1-3/+10
2012-03-08Save original name into the in-memory cacheJakub Hrozek1-1/+1
2012-03-08Use the correct hash table for pending requestsSimo Sorce7-10/+14
The function that handled pending requests on reconnect was checking an orphaned global variable that was never used, redenring the whole function uselsess. This fixes a very nasty bug that was causing requests for which we never received an answer for (for example because the backend failed and was restarted) to be never removed and therefore causing a black hole effect for any other request of the same type. Fixes: https://fedorahosted.org/sssd/ticket/1229
2012-02-29Remove sysdb_get_ctx_from_list()Sumit Bose8-58/+53