Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2011-12-19 | Deleted declaration of nss_get_dom() | Jan Zeleny | 1 | -4/+0 | |
This function has been renamed to responder_get_domain() but this declaration hasn't been deleted. | |||||
2011-12-19 | Pass client context to sss_dp_get_account_send | Jakub Hrozek | 1 | -1/+1 | |
2011-12-16 | DP: Remove processed callbacks | Jakub Hrozek | 1 | -3/+5 | |
2011-12-16 | SUDO Integration - responder - get sudo rules logic | Jakub Hrozek | 1 | -2/+444 | |
2011-12-16 | SUDO Integration - responder | Pavel Březina | 6 | -0/+1041 | |
2011-12-16 | Use the case sensitivity flag in responders | Jakub Hrozek | 6 | -46/+168 | |
2011-12-16 | Canonicalize username in PAM provider | Jakub Hrozek | 1 | -0/+27 | |
2011-12-16 | Responders: Split getting domain by name into separate function | Jakub Hrozek | 5 | -22/+21 | |
2011-12-08 | Ignore NULL-terminator when checking UTF8-validity for netgroups | Stephen Gallagher | 1 | -1/+1 | |
Glib fails if the NULL-terminator is included when a length is specified. | |||||
2011-12-07 | Pass the correct private data into Data Provider callback | Jakub Hrozek | 1 | -1/+1 | |
2011-12-05 | Ignore NULL-terminator when checking UTF8-validity | Stephen Gallagher | 2 | -4/+4 | |
Glib fails if the NULL-terminator is included when a length is specified. | |||||
2011-12-05 | Allow using Glib for UTF8 support | Stephen Gallagher | 1 | -9/+1 | |
2011-11-29 | RESPONDER: Refactor DP requests into tevent_req style | Stephen Gallagher | 6 | -427/+641 | |
2011-11-22 | Cleanup: Remove unused parameters | Jakub Hrozek | 1 | -2/+1 | |
2011-11-18 | RESPONDER: Ensure that all input strings are valid UTF-8 | Stephen Gallagher | 5 | -0/+44 | |
2011-11-02 | RESPONDER: Fix segfault in sss_packet_send() | Stephen Gallagher | 1 | -0/+5 | |
There are several places (all error-handling) where sss_cmd_done() is called with no response packet created. As a short-term solution, we need to check whether the packet is NULL and simply return EINVAL. client_send() (the consumer) will then forcibly disconnect the client (which will return PAM_SYSTEM_ERR to the client). | |||||
2011-10-14 | Fixed timeout handling in responders | Jan Zeleny | 1 | -72/+72 | |
2011-10-13 | Check if dp_requests hash table exists before using it | Jakub Hrozek | 1 | -0/+5 | |
2011-10-03 | Use explicit base 10 for converting strings to integers | Jakub Hrozek | 1 | -2/+2 | |
https://fedorahosted.org/sssd/ticket/1013 | |||||
2011-09-28 | Return users and groups based on alias | Jakub Hrozek | 1 | -2/+3 | |
https://fedorahosted.org/sssd/ticket/926 | |||||
2011-09-21 | Enable the midpoint cache update by default | Stephen Gallagher | 1 | -1/+1 | |
https://fedorahosted.org/sssd/ticket/918 | |||||
2011-08-25 | New DEBUG facility - SSSDBG_UNRESOLVED changed from -1 to 0 | Pavel Březina | 2 | -2/+8 | |
Removed: SSS_UNRESOLVED_DEBUG_LEVEL (completely replaced with SSSDBG_UNRESOLVED) Added new macro: CONVERT_AND_SET_DEBUG_LEVEL(new_value) Changes unresolved debug level value (SSSDBG_UNRESOLVED) from -1 to 0 so DEBUG macro could be reduced by one condition. Anyway, it has a minor effect, every time you want to load debug_level from command line parameters, you have to use following pattern: /* Set debug level to invalid value so we can deside if -d 0 was used. */ debug_level = SSSDBG_INVALID; pc = poptGetContext(argv[0], argc, argv, long_options, 0); while((opt = poptGetNextOpt(pc)) != -1) { ... } CONVERT_AND_SET_DEBUG_LEVEL(debug_level); | |||||
2011-08-25 | New DEBUG facility - conversion | Pavel Březina | 2 | -0/+4 | |
https://fedorahosted.org/sssd/ticket/925 Conversion of the old debug_level format to the new one. (only where it was necessary) Removed: SSS_DEFAULT_DEBUG_LEVEL (completely replaced with SSSDBG_DEFAULT) | |||||
2011-08-15 | Do not delete requests inside hash_iterate loop | Jakub Hrozek | 1 | -10/+12 | |
2011-08-15 | sysdb refactoring: memory context deleted | Jan Zeleny | 2 | -9/+5 | |
This patch deletes memory context parameter in those places in sysdb where it is not necessary. The code using modified functions has been updated. Tests updated as well. | |||||
2011-08-15 | sysdb refactoring: deleted domain variables in sysdb API | Jan Zeleny | 4 | -20/+13 | |
The patch also updates code using modified functions. Tests have also been adjusted. | |||||
2011-08-08 | Remove unused temporary context | Jakub Hrozek | 1 | -5/+0 | |
2011-08-08 | Prevent segfault if vetoed_shells are specified without allowed_shells | Jakub Hrozek | 1 | -16/+19 | |
https://fedorahosted.org/sssd/ticket/954 | |||||
2011-08-04 | Revert "Allow LDAP to decide when an expiration warning is warranted" | Stephen Gallagher | 1 | -4/+3 | |
This reverts commit b0b9c38dfce3e3ccbfaa4d00fdf2ea08a70d41a6. | |||||
2011-08-01 | Allow LDAP to decide when an expiration warning is warranted | Stephen Gallagher | 1 | -3/+4 | |
Previously, we were only displaying expiration warnings if the password was going to expire within a day. We'll allow LDAP to make this decision (by whether it passes us the expiration time). In the future, we can add an option to clamp this down to a shorter period if the local admin prefers it. | |||||
2011-07-29 | Converge accept_fd_handler and accept_priv_fd_handler | Stephen Gallagher | 1 | -85/+50 | |
These two functions were almost identical. Better to maintain them as a single function. | |||||
2011-07-29 | Add vetoed_shells option | John Hodrien | 3 | -1/+17 | |
There may be users in LDAP that have a valid but unwelcome shell set in their account. This adds a blacklist of shells that should always be replaced by the fallback_shell. Signed-off-by: Stephen Gallagher <sgallagh@redhat.com> | |||||
2011-07-21 | Fix indexing of skipped groups | Jakub Hrozek | 1 | -2/+4 | |
https://fedorahosted.org/sssd/ticket/928 | |||||
2011-06-27 | fix typos | Simo Sorce | 1 | -5/+5 | |
2011-06-02 | Non-posix group processing - ldap provider and nss responder | Jan Zeleny | 1 | -3/+11 | |
2011-05-31 | Fix typo in initgroups negative cache check | Stephen Gallagher | 1 | -1/+1 | |
2011-05-23 | Set _GNU_SOURCE globally | Sumit Bose | 1 | -3/+1 | |
2011-05-20 | Add new options to override shell value | Jakub Hrozek | 3 | -1/+123 | |
https://fedorahosted.org/sssd/ticket/742 | |||||
2011-05-20 | Add a new option to override home directory value | Jakub Hrozek | 3 | -1/+140 | |
https://fedorahosted.org/sssd/ticket/551 | |||||
2011-05-20 | Add a new option to override primary GID number | Jakub Hrozek | 2 | -2/+10 | |
https://fedorahosted.org/sssd/ticket/742 | |||||
2011-05-06 | Allow changing the log level without restart | Stephen Gallagher | 4 | -2/+17 | |
We will now re-read the confdb debug_level value when processing the monitor_common_logrotate() function, which occurs when the monitor receives a SIGHUP. | |||||
2011-05-06 | Create common sss_monitor_init() | Stephen Gallagher | 1 | -34/+3 | |
This was implemented almost identically for both the responders and the providers. It is easier to maintain as a single routine. This patch also adds the ability to provide a private context to attach to the sbus_connection for later use. | |||||
2011-05-06 | Do not leak netgroups hash table | Jakub Hrozek | 1 | -0/+12 | |
2011-04-25 | Don't use negative cache in netgroup lookup | Jan Zeleny | 2 | -20/+20 | |
In responder a negative cache is used to indicate that the record has not been found by previous lookup. This approach is however not applicable for netgroup lookup because the design of their lookup is a little different. This patch removes some pieces of code working with negative cache, because they didn't fuction well. Instead a new flag has been added to the positive cache. This flag indicates if the record in the cache is a record of existing netgroup or it's just a placeholder. https://fedorahosted.org/sssd/ticket/820 | |||||
2011-04-15 | Fix regression where nonexistent entries were never added to the negative cache | Stephen Gallagher | 1 | -21/+21 | |
2011-04-15 | Fix a regression with the negative cache in multi-domain configurations | Stephen Gallagher | 1 | -3/+18 | |
2011-04-15 | Add debug logging to the negative cache | Stephen Gallagher | 1 | -0/+5 | |
2011-04-08 | Fix unchecked return values of pam_add_response | Jakub Hrozek | 1 | -4/+12 | |
https://fedorahosted.org/sssd/ticket/798 | |||||
2011-03-09 | Change state of hash entry if netgroup cannot be parsed | Sumit Bose | 1 | -0/+2 | |
2011-03-07 | Refactor set_netgroup_entry() | Sumit Bose | 1 | -4/+7 | |
To avoid wrong or missing netgroup names in the getent_ctx destructor set_netgroup_entry() now takes the name out of the getent_ctx struct instead of using a separate argument. |