mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-24 11:14:05 +08:00
Code Issues Packages Projects Releases Wiki Activity
21,985 Commits 38 Branches 307 Tags 75 MiB
04ff967451
Commit Graph

347 Commits

Author SHA1 Message Date
Howard Chu
2f2802342f Do a mkdir on /var/run/nslcd before trying to create the socket 2009-06-03 02:20:56 +00:00
Howard Chu
2d93461817 Add tty to authz params 2009-06-03 01:46:37 +00:00
Howard Chu
6cc1cf81c1 Added ruser and rhost to authz params 2009-06-03 01:40:03 +00:00
Howard Chu
9e82dee243 Fix typo 2009-05-20 06:38:43 +00:00
Howard Chu
8ff986b1bc Note that host SSD must be configured for hostservice option 2009-04-29 02:41:26 +00:00
Howard Chu
94ec116fca Rewritten 2009-04-29 02:31:20 +00:00
Howard Chu
16662542af Fix typos, use uid2dn by default 2009-04-29 02:27:39 +00:00
Howard Chu
8da06617a7 Add nssov-pam-session keyword to select which services will be recorded 
in session management
 2009-04-29 00:29:11 +00:00
Quanah Gibson-Mount
8f8128d727 Add missing CVS tag 2009-04-28 03:05:46 +00:00
Emmanuel Dreyfus
e240d55c07 Add libtoolized makefile 2009-04-25 18:19:24 +00:00
Gavin Henry
6981c8fd04 slapo-nssov.5 draft. Please use as starting point. 2009-04-23 11:29:36 +00:00
Howard Chu
21f5405978 Use nslcd-mapped PAM error codes instead of actual PAM error codes 2009-04-23 08:23:58 +00:00
Howard Chu
50283523bd More for sessions, working. TODO: configure list of sessions to record 2009-04-23 07:56:40 +00:00
Howard Chu
4a6d46dfa9 More for session management 2009-04-23 00:38:41 +00:00
Howard Chu
42a7e05809 Reformat requests, rough pwmod support 2009-04-20 10:25:24 +00:00
Howard Chu
9b67609efb More for prev commit 2009-04-20 10:24:42 +00:00
Howard Chu
d8778432cf Added uidnumber checks 2009-04-20 03:53:09 +00:00
Howard Chu
8619215354 Use local_ssf for our fake connections 2009-04-20 03:37:52 +00:00
Howard Chu
d17d30dc38 sanity check for host_ad and svc_ad 2009-04-20 03:18:34 +00:00
Howard Chu
8fd0d184a7 Flesh out config options, implement authorization checks 2009-04-20 02:42:40 +00:00
Howard Chu
655881d0c4 Start documenting PAM support 2009-04-19 01:56:24 +00:00
Howard Chu
825870a072 We need the authorizedService schema 2009-04-19 01:15:22 +00:00
Howard Chu
d7fa38c003 Move tmpluser to authz call; add ppolicy support to authc 2009-04-18 23:12:36 +00:00
Howard Chu
51b87202e0 In uid2dn, only return success if a unique DN was found 2009-04-18 23:11:33 +00:00
Howard Chu
408e751200 Move tmpluser to authz call; print authz messages regardless of success 
status
 2009-04-18 23:10:58 +00:00
Howard Chu
20657af2de In pwmod, ctx may be empty so always pass current username 2009-04-18 01:44:22 +00:00
Howard Chu
609efdc0b3 *** empty log message *** 2009-04-18 00:50:14 +00:00
Howard Chu
f735dcc712 Add pam support (work in progress) 2009-04-17 12:18:51 +00:00
Howard Chu
8b5489e681 Add pam support (work in progress) 2009-04-17 12:11:33 +00:00
Howard Chu
016500f41d Add missing newlines to debug msgs 2009-04-17 12:10:27 +00:00
Howard Chu
7ad72fca15 Fix prev commit - work-in-progress 2009-04-17 07:23:15 +00:00
Howard Chu
856a790a28 Add missing newlines to debug msgs 2009-04-17 07:19:48 +00:00
Howard Chu
060f193af7 Fix typo in debug 2009-04-17 03:41:54 +00:00
Emmanuel Dreyfus
b697550ddc If the change set becomes empty, prevent other overlays from executing and 
return a success.
 2009-03-16 22:05:47 +00:00
Pierangelo Masarati
161169aa11 free self in case anything goes wrong 2009-03-14 16:41:58 +00:00
Pierangelo Masarati
3f58df73a5 don't short circuit callback list 2009-03-14 16:27:59 +00:00
Emmanuel Dreyfus
58437e838a Remove two useless lines (a badly applied patch before the last commit?) 2009-02-11 05:03:25 +00:00
Emmanuel Dreyfus
b5baf7fd01 libtoolize autogroup 
add install rules for autogroup, nops and smbk5pwd
 2009-02-07 22:10:24 +00:00
Quanah Gibson-Mount
dab20397a7 Add CVS header 2009-02-02 23:48:07 +00:00
Emmanuel Dreyfus
f3254b319d Add makefile for slapo-cloak 2009-02-02 22:14:07 +00:00
Quanah Gibson-Mount
43a35baf98 Add CVS header 2009-02-02 19:32:35 +00:00
Emmanuel Dreyfus
56e651a041 Missing stuff for proper linking of the module (sorry for the double commit) 2009-01-31 19:23:04 +00:00
Emmanuel Dreyfus
4e08a2da1b libtoolize 2009-01-31 18:42:59 +00:00
Howard Chu
ba0863d500 ITS#5660 SHA2 password hashes 2009-01-26 04:08:34 +00:00
Howard Chu
4fe69b3fc5 ITS#5410 add support for gcrypt ( GnuTLS ) 2009-01-26 03:58:33 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Emmanuel Dreyfus
e281c948cb Move cloak config OID from overlay to contrib branch (ITS#5872) 2009-01-10 11:22:36 +00:00
Emmanuel Dreyfus
f1e2cc411f The cloak overlay hides some attributes unless explicitely requested (ITS #5872) 2009-01-09 05:26:28 +00:00
Pierangelo Masarati
920dca9762 improvements by David Hawes (ITS#5756) 2008-11-19 10:17:27 +00:00
Ralf Haferkamp
8e358f214c corrected filter and search limits in uid2dn function (ITS#5802) 2008-11-10 15:45:01 +00:00
Ralf Haferkamp
def11e2fce Fixed "nssov-map" handling when using slapd.conf (ITS#5801) 2008-11-10 14:48:06 +00:00
Ralf Haferkamp
1d468467e6 Don't crash on empty groups (ITS#5800) 2008-11-10 14:24:29 +00:00
Ralf Haferkamp
93f3ae50db Adapt to recent changes in filter_free_x() interface 2008-11-07 13:38:30 +00:00
Pierangelo Masarati
d641477db0 more about ITS#5732 2008-11-01 14:30:14 +00:00
Howard Chu
da347b78b9 ITS#5766 honor principal expiration 2008-10-30 15:56:48 +00:00
Howard Chu
bcbb456391 remove references to OpenLDAP 2.4.6 2008-09-04 02:15:21 +00:00
Howard Chu
e7383994fb ITS#5575, passwords now need to be NUL-terminated by us 2008-06-23 19:32:45 +00:00
Howard Chu
329f4e53c8 s/must/may/ - SSDs are available whether configured or not 2008-06-21 19:13:23 +00:00
Hallvard Furuseth
70a964e64d nitpicks 2008-06-16 12:57:26 +00:00
Gavin Henry
f2433f5b9f Read over, update using work from hallvard and spell check. 2008-06-16 11:20:25 +00:00
Hallvard Furuseth
64f2ea996f Initial revision 2008-06-14 18:18:08 +00:00
Howard Chu
c682cce27c nss-ldap overlay, built with nss-ldapd-0.6.2 2008-06-02 12:08:05 +00:00
Emmanuel Dreyfus
7baff7393c Use DES_* functions instead of deprecated des_* 2008-05-20 05:18:33 +00:00
Emmanuel Dreyfus
364b87f587 Here is slapo-nops, used to remove idempotent operations (i.e.: replacing 
an attribute values by the exact same values)
 2008-05-19 22:44:08 +00:00
Howard Chu
78a1714ad9 Fix bogus whitespace from 1.18 2008-04-03 09:48:39 +00:00
Howard Chu
ef852b01aa Cleanup 2008-03-04 01:11:19 +00:00
Hallvard Furuseth
cd63a0c43b Warning cleanup: function ptr <=> void* at ldap_pvt_thread_pool_<set/get>key() 2008-01-11 06:07:43 +00:00
Hallvard Furuseth
2ab2740cbb ldap_pvt_thread_pool_getkey() arg 'data' should point to a void* variable 2008-01-08 16:23:05 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
30f401c628 rename ldap_pvt_thread_pool_setkey_x() to ldap_pvt_thread_pool_setkey() (as part of ITS#5309) 2008-01-07 21:35:03 +00:00
Howard Chu
ea9863bf6c Assign contrib config OID 2007-12-28 07:51:00 +00:00
Pierangelo Masarati
20f2548c82 fix declarations of buffers for numeric strings; other related cleanup 2007-12-15 15:23:23 +00:00
Howard Chu
946e859108 ITS#5145 autogroups, with minor cleanup 2007-12-15 11:48:56 +00:00
Gavin Henry
da801e3db0 addpartial overlay update for 2.4.6 (ITS#3593) 2007-11-14 18:05:07 +00:00
Howard Chu
6db8d0d1b5 Init/destroy mutex 2007-09-27 19:20:04 +00:00
Howard Chu
e6d027ae8f Microsoft-style Update Sequence Numbers 2007-09-27 02:09:38 +00:00
Howard Chu
148afe6aa0 Add Modifications / sml_numvals 2007-09-23 00:22:47 +00:00
Howard Chu
75df004a04 Use OLcfgCt{Oc|At} arc for contrib modules 2007-09-22 23:58:54 +00:00
Ralf Haferkamp
1585022fde Adopted to latest API changes 2007-08-03 12:17:47 +00:00
Gavin Henry
780f25c512 New module. ITS#3593 2007-07-27 11:08:09 +00:00
Pierangelo Masarati
5616af14c3 needs portable.h 2007-06-02 11:31:17 +00:00
Pierangelo Masarati
bf144a4ec0 apply fixes in ITS#4951 (tested) 2007-05-13 23:14:55 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
0544badf19 move slapo-denyop to contrib/slapd-modules/debyop/ 2006-12-28 16:30:53 +00:00
Pierangelo Masarati
9fc7cd7267 move slapo-lastmod to contrib/slapd-modules/lastlog/ (ITS#4701) 2006-12-28 16:30:33 +00:00
Pierangelo Masarati
26c2c98196 move slapo-lastmod to contrib/slapd-modules/lastlog/ (ITS#4701) 2006-12-28 16:23:57 +00:00
Pierangelo Masarati
b11f35f104 fix typo 2006-12-17 22:34:35 +00:00
Howard Chu
e05fdb41fc Check for failure from k5adm init 2006-12-15 16:38:45 +00:00
Luca Scamoni
fbed376e2d add support for "sambaPwdCanChange" 2006-09-21 09:17:05 +00:00
Pierangelo Masarati
a9c4b54f1b really really minor cleanup 2006-09-08 21:19:05 +00:00
Pierangelo Masarati
864e276981 always try to open config; NULL means use default 2006-05-12 14:42:49 +00:00
Pierangelo Masarati
f35a55398a add (basic) support for {RADIUS} scheme; userPassword attributes prefixed with {RADIUS} are interpreted as RADIUS userids and authentication occurs contacting the configured RADIUS servers with that userid and the provided password (experimental; please report) 2006-05-12 12:03:05 +00:00
Howard Chu
b623699a44 Support for obsolete proxy authorization control 2006-03-30 08:22:39 +00:00
Pierangelo Masarati
4d9fc0e85d improve logging 2006-01-14 18:59:46 +00:00
Pierangelo Masarati
a76a78096d trace overlay: traces overlay execution 2006-01-14 18:44:55 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Pierangelo Masarati
bfdceee00f fix typo in last commit 2005-12-21 00:22:37 +00:00
Pierangelo Masarati
d34fffcaf9 use lutil_ato*() whenever appropriate 2005-11-24 01:10:05 +00:00
Pierangelo Masarati
754e59543d cleanup 2005-11-20 01:39:19 +00:00
Pierangelo Masarati
8f0d3530e2 fix previous commit; use table-driven attribute description lookup 2005-11-14 12:33:40 +00:00
Pierangelo Masarati
450e3aaaec refine previous commit 2005-11-14 11:23:03 +00:00
Pierangelo Masarati
8520a8dfd7 cleanup in case of failure 2005-11-12 16:24:12 +00:00
Pierangelo Masarati
29fab9cfd4 add support for "sambaPwdMustChange"; add support for back-config 2005-11-12 16:18:09 +00:00
Pierangelo Masarati
c2d9d642f9 cleanup 2005-10-13 22:28:30 +00:00
Pierangelo Masarati
c5e6f6db13 silence warnings for DO_SAMBA build 2005-10-13 22:23:02 +00:00
Pierangelo Masarati
c365b701cb reflect API changes 2005-08-22 16:31:23 +00:00
Pierangelo Masarati
3b4b9cbc33 check software version 2005-08-22 09:28:13 +00:00
Pierangelo Masarati
0b9988ab8d moved from servers/slapd/overlays 2005-08-22 09:14:12 +00:00
Pierangelo Masarati
35de807a93 add posixGroup access control via dynacl as an example of how dynacl work 2005-08-17 14:32:27 +00:00
Howard Chu
5944f306d7 ITS#3910 heimdal 0.7 compatibility, silence warnings 2005-08-11 21:05:19 +00:00
Pierangelo Masarati
3d69f55986 fix headers (ITS#3896) 2005-07-27 23:32:29 +00:00
Howard Chu
0bb80f0ccd Add note about shared library requirements 2005-07-02 10:21:03 +00:00
Howard Chu
18714cee18 Add SLAP_MOD_INTERNAL flag on mod ops if it's defined 2005-06-04 09:57:27 +00:00
Sang Seok Lim
62c62f039f Bug fix in Component Matching for CRL support 2005-05-09 01:06:06 +00:00
Howard Chu
7862d5d014 Partial revert, must use lower-case hex 2005-04-08 23:33:26 +00:00
Howard Chu
2ee11b3744 cleanup whitespace, use upper case hex for nt/lm 2005-04-07 02:26:14 +00:00
Howard Chu
6b784de0df ITS#3635 fix input to lmhash 2005-04-07 02:23:17 +00:00
Sang Seok Lim
7c91b8a327 Componant matching routines for CRL support 2005-03-29 00:10:16 +00:00
Sang Seok Lim
f13d97e09c Fix memory leak in a component encoder 2005-02-10 16:58:56 +00:00
Howard Chu
9a279634b0 Rename k5key symbols, add k5key_hash 2005-01-24 21:46:06 +00:00
Howard Chu
d74f40b650 Add description of {K5KEY} password mech 2005-01-13 19:07:23 +00:00
Howard Chu
5ebc834c7b Plug krb5 memleaks, add {K5KEY} passwd check mechanism 2005-01-13 09:56:52 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Kurt Zeilenga
dcb21284c6 Fix bad merge 2004-12-29 17:34:41 +00:00
Sang Seok Lim
7b1f2d85b0 Bug fix: invalid return value 2004-12-25 06:44:29 +00:00
Sang Seok Lim
27c817217b README updated 2004-12-23 20:25:12 +00:00
Sang Seok Lim
190c17b3c8 MACRO value adjustment for x509 Certificate 2004-12-21 05:58:25 +00:00
Sang Seok Lim
b07fc2e6be Enabling sharing component descriptions of primitive ASN.1 types 2004-12-21 04:44:19 +00:00
Sang Seok Lim
726e880993 invalid path 2004-12-20 16:53:41 +00:00
Sang Seok Lim
c863425358 fix snacc buffer memory leak 2004-12-20 16:53:05 +00:00
Sang Seok Lim
9eee2b8d91 code cleanup 2004-12-20 03:49:58 +00:00
Sang Seok Lim
28a967584d Component Indexing support for BDB 
- only for equality matching
- only components of ASN.1 types used in an X.509 certificate can be indexed
(composite types except for RDN and DN are not supported yet)
- how to use
index [attribute name].[component reference] eq
Ex)
index userCertificate eq
index userCertificate.toBeSigned.issuer.rdnSequence eq
index userCertificate.toBeSigned.serialNumber eq
index userCertificate.toBeSigned.version eq
 2004-12-20 03:31:44 +00:00
Sang Seok Lim
3492452a5b 1) <select> and <content> type component reference support 
2) attribute aliasing support
- x509CertificateIssuer
- x509CertificateSerial
- x509CertificateIssuerAndIssuer
3) AuthorityKeyIdentifier support(one of certificate extension)
4) Misc. improvement
- integrate OID and its decoder mapping table
- normalize and validate the values of both component asserions and
  extracted components
5) Misc. bug fix
 2004-12-13 16:26:58 +00:00
Sang Seok Lim
d6a3dd512c Bug fix 
GSER/BER decoders: return code and memory leackage
 2004-12-06 01:26:38 +00:00
Sang Seok Lim
98485f5247 1) existing matching rules support in component filter 
2) remove double buffering for decoded component values
3) caching decoded component assertion values
 2004-12-01 22:11:55 +00:00
Sang Seok Lim
5314ac0116 Component library for GSER encoders of primitive types 2004-11-29 23:11:21 +00:00
Sang Seok Lim
decfd7217f 1) <all> type component reference support 
2) nibble type memory support when decoding
3) description type object identifier support
4) OPTIONAL, DEFAULT support in certificate decoder/extractor/matching
5) Misc bug fix
 2004-11-29 20:21:38 +00:00
Sang Seok Lim
a90e63fde0 ComponentFilterMatch support for userCertificate 2004-11-14 20:11:38 +00:00
Jong Hyuk Choi
d16c45d147 Misc cleanup 2004-10-27 22:39:54 +00:00
Sang Seok Lim
71e78dd7f9 Component Matching module 
See "contrib/slapd-modules/comp_match/README" to understand
what's the purpose of  this patch is and how to use it.
 2004-10-27 19:37:02 +00:00
Howard Chu
41e53b5a25 Experimental Samba and Heimdal password synchronization overlay. 2004-04-02 13:06:38 +00:00
Howard Chu
6cb76b54e8 Use LUTIL_PASSWD_{ERR,OK} result codes 2004-03-17 21:36:39 +00:00
Luke Howard
bad4a24449 Use AC_MEMCPY rather than memcpy() - has overlapping regions 2004-02-28 02:59:58 +00:00
Howard Chu
9f3d15efb7 Copied unsupported password mechanisms to here. Move more as necessary. 2004-01-25 13:07:52 +00:00
Luke Howard
0354426a98 Update copyright notice 2004-01-10 05:05:56 +00:00
Luke Howard
895c0ec421 *** empty log message *** 2004-01-10 05:00:04 +00:00
Luke Howard
016f332624 Add some sample plugins 2004-01-10 04:54:24 +00:00