Kurt Zeilenga
eb581e43e7
Fix for:
...
SASL regex segmentation faults with group based acls (ITS#1978)
based, in part, by patch submitted by Simon Wilkinson <simon@sxw.org.uk>.
2002-07-28 07:27:55 +00:00
Kurt Zeilenga
8a3d02bf6b
misc cleanup
2002-07-23 18:35:12 +00:00
Howard Chu
a073e28510
Fix setting c_authz_backend for SASL binds:
...
in slap_sasl2dn, make sure it's set for base DN searches as well.
in do_bind, don't zero it during multi-stage binds.
2002-07-13 00:11:03 +00:00
Julius Enarusai
6107ba67d2
Coverted LDAP_LOG macro to use subsystem ID int values instead of string values
2002-07-11 20:33:24 +00:00
Kurt Zeilenga
cbba11d7cd
saslAuthzTo/From LDUP URLs should have hostnames
2002-06-14 22:03:52 +00:00
Howard Chu
07a34489c6
Added saslAuthzTo and saslAuthzFrom to system schema.
...
Added sasl-authz-policy config keyword to control proxy authorization.
Moved sasl-related config processing to sasl.c:slap_sasl_config().
Moved other global defs used only in saslauthz.c into saslauthz.c.
2002-06-14 08:10:14 +00:00
Kurt Zeilenga
d6e7f0f630
Rework c_authzid_backend in preparation for sasl_setpass() support
2002-06-11 22:56:47 +00:00
Howard Chu
6f47e13147
Cyrus 2 support now requires Cyrus 2.1.3. Adds support for in-directory
...
SASL secrets. (Only works with plaintext userpassword tho.)
2002-05-07 23:08:23 +00:00
Howard Chu
a067d64c3a
Fixes for slap_sasl_regexp parsing and normalization
2002-05-07 18:46:32 +00:00
Howard Chu
56f1355968
Added comment for future reference re: in-directory secrets
2002-05-07 02:17:34 +00:00
Howard Chu
1dea5905c6
More SASL DN simplification. No more "dn:" prefix used anywhere internally.
2002-04-17 07:56:46 +00:00
Kurt Zeilenga
02e8527248
Patch: Escape character troubles (ITS#1753)
...
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
================
maildap could address buf[-1] if len was < 2.
REWRITE_SUBMATCH_ESCAPE is '%', not '\'.
librewrite and saslautz could walk past the end of a string which
ended with an escape character.
Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
2002-04-15 18:29:39 +00:00
Howard Chu
efecf4e121
ITS#1733 eliminate o_abandonmutex
2002-04-11 08:03:40 +00:00
Howard Chu
f516e34918
ITS#1681 - detect bad filter in slap_parseURI() - from Hallvard Furuseth
2002-04-09 10:41:15 +00:00
Howard Chu
1353ded30c
Change slap_parseURI to use ldap_parse_url. Other struct berval changes.
2002-04-05 05:37:01 +00:00
Kurt Zeilenga
3d89f398a9
Fix callback initializer.
2002-03-04 21:28:46 +00:00
Kurt Zeilenga
d23c559646
Don't use 'shtool mkln' as ln(1) replacement.
...
Allow both <sasl/sasl.h> and <sasl.h>
2002-02-11 08:28:51 +00:00
Kurt Zeilenga
b315d8af34
Update Cyrus SASL detection to always look for <sasl.h> regardless
...
of version and then try -lsasl2 and -lsasl. Make SASL code
conditional on SASL_VERSION_MAJOR, not HAVE_CYRUS_SASL.
2002-02-10 17:51:19 +00:00
Howard Chu
8a4e92b259
Support for Cyrus SASLv2. Untested.
2002-02-10 14:27:23 +00:00
Kurt Zeilenga
0a31400d63
Some misc cleanup
2002-01-29 06:06:20 +00:00
Howard Chu
d937237987
Eliminated dn_normalize. No more migration.
2002-01-26 14:51:45 +00:00
Howard Chu
4191f39037
Changed slap_authz_info.sai_mech to struct berval.
...
Changed sasl_* to use struct bervals.
2002-01-26 13:57:41 +00:00
Howard Chu
eab49fe5da
Cleanup lint
2002-01-19 04:50:26 +00:00
Howard Chu
ac1332cdb8
Renamed BVarray to BerVarray. Moved slapd:bvarray_{add,free} to
...
liblber:ber_bvarray_{add,free}.
2002-01-14 01:43:17 +00:00
Howard Chu
d0724c769e
Fix mutex leak in previous commit
2002-01-13 17:17:29 +00:00
Howard Chu
f20991dea7
Changed to use search callbacks instead of connection_internal_open
2002-01-13 17:12:43 +00:00
Howard Chu
029306a5be
Use ldap_queue.h instead of <ac/queue.h>
2002-01-03 00:12:46 +00:00
Kurt Zeilenga
c603bc3946
use sizeof instead of strlen/hardcoded-consts
2002-01-02 17:04:09 +00:00
Howard Chu
f52cc9bab5
Change struct berval ** to BVarray
2002-01-02 11:00:36 +00:00
Howard Chu
10961151ef
Use queue-compat for Connection->c_ops,c_pending_ops
2001-12-31 04:08:29 +00:00
Howard Chu
975a5e9a24
Added dnPretty2/dnNormalize2 using preallocated destination berval
2001-12-29 04:48:00 +00:00
Kurt Zeilenga
cddf7e0e00
More struct berval DN changes
...
decrease dependency on dn_validate/dn_normalize
2001-12-27 07:13:13 +00:00
Kurt Zeilenga
e0b83b3096
Fix syntax errors caused by struct berval changes...
2001-12-26 21:25:04 +00:00
Howard Chu
dae9473e08
Minor struct berval tweaks
2001-12-26 15:29:17 +00:00
Howard Chu
b96645af7d
More struct berval changes, dnNormalize migration...
2001-12-26 04:17:49 +00:00
Kurt Zeilenga
3336619c80
More "char *" to struct berval DN changes
2001-12-25 02:30:01 +00:00
Howard Chu
70194f9ad6
Changed suffix_alias() to use struct berval * in-place.
2001-12-24 16:29:18 +00:00
Howard Chu
ef0b308bea
Changed backglue configuration. Added noSubordinates arg to select_backend
...
to deal with glued subordinates.
2001-12-10 12:09:40 +00:00
Kurt Zeilenga
abd9be4def
Remove lint and misc MSVC updates
2001-12-09 02:34:45 +00:00
Howard Chu
0e16f6acf9
Moved AttributeDescription caching into main code:
...
Changed AttributeDescription.{ad_cname,ad_lang} to struct berval everywhere
Deleted ad_free() everywhere
Added ad_mutex to init.c
The AttributeDescriptions are in a linked list hanging off of the
corresponding AttributeType.
2001-10-22 13:23:05 +00:00
Kurt Zeilenga
61de99937f
ldif.h include cleanup
2001-09-25 00:03:24 +00:00
Gary Williams
cabeec26d4
fix debug line (ITS 1145)
2001-05-11 20:19:16 +00:00
Gary Williams
e565505f21
fix logging macros (thanks Mei)
2001-02-02 13:49:26 +00:00
Mark Adamson
6b4ec38178
Change the SASL DN's from cn=authzid to cn=auth
2001-01-18 20:05:15 +00:00
Gary Williams
f49fd8a98e
fix format
2001-01-17 16:35:53 +00:00
Gary Williams
ffcdc6d11d
More new logging (Behind NEW_LOGGING)
2001-01-15 19:17:29 +00:00
Mark Adamson
2231d5e64e
Make SASL authorization work for NULL, "u:", and "dn:" authz strings.
2000-11-30 22:00:15 +00:00
Kurt Zeilenga
dbdba34972
First-cut at manageDSAit-aware backend selection.
2000-10-21 03:29:02 +00:00
Kurt Zeilenga
a912e6eea0
Make sure authzid form produces a valid subject DN. Support
...
both u: and dn: forms.
Rework sasl-regex DN be of the form
uid=user,cn=realm,cn=mech,cn=authz
Fix up slapd.conf(5)
2000-10-06 23:50:38 +00:00
Kurt Zeilenga
2b82d4f486
remove lint
...
update bdb codes
2000-09-22 01:40:57 +00:00
Kurt Zeilenga
cf17c168c5
Fix portability issue.
...
Move prototypes to proto-slap.h
2000-09-21 19:12:41 +00:00
Mark Adamson
bf1ee530ea
Implementation of SASL authorization.
2000-09-21 17:32:54 +00:00