mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2024-12-27 03:20:22 +08:00
Code Issues Packages Projects Releases Wiki Activity
18,262 Commits 38 Branches 307 Tags 74 MiB
25441e5f7f
Commit Graph

301 Commits

Author SHA1 Message Date
Hallvard Furuseth
135672c910 Manpage typos 2005-07-04 06:57:10 +00:00
Kurt Zeilenga
2e39dd74b8 Undocument LDAPv2 Kerberos options 2005-05-04 21:35:35 +00:00
Pierangelo Masarati
3fbc65082e remove slapd-tcl(5) 2005-04-08 19:00:58 +00:00
Kurt Zeilenga
228e28c266 Remove redundant note indication. 2005-04-04 19:56:43 +00:00
Howard Chu
bb9fe5d7ac Cleanup prev commit 2005-01-19 09:55:03 +00:00
Howard Chu
c804bb3728 ITS#3293 add description of syncrepl starttls keyword 2005-01-19 09:47:46 +00:00
Howard Chu
bf27ba977b Deleted syncrepl updatedn 2005-01-13 18:51:29 +00:00
Howard Chu
18b5f637de ITS#3478 the rootdn is always needed when using syncrepl 2005-01-12 03:37:58 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Pierangelo Masarati
a9ed17a458 fix ITS#3441 2004-12-29 14:03:38 +00:00
Howard Chu
2f48a47194 Deleted "subordinate" keyword, added slapo-glue doc 2004-12-04 20:07:06 +00:00
Pierangelo Masarati
184fc4878a more on ITS#3396: note that the filter is mandatory, and that the protocol must be ldap:// 2004-11-16 18:57:40 +00:00
Ralf Haferkamp
5704a2ef6e CRL checking options for ldap.conf and slapd.conf 2004-10-28 18:50:38 +00:00
Pierangelo Masarati
a9f2f12b93 clearly indicate what the default rules are 2004-10-28 17:53:46 +00:00
Jong Hyuk Choi
c7aa0bca3f syncrepl retry feature 2004-10-27 19:43:45 +00:00
Pierangelo Masarati
df745fc44f clarify that the names of the configure statements are case-insensitive, despite style considerations lead to use uppercase for some and lowercase for others 2004-10-27 11:26:27 +00:00
Kurt Zeilenga
3819290f69 NEW_LOGGING 2004-10-19 03:18:03 +00:00
Kurt Zeilenga
54f6cf0b2c Clarify which kinds of regexs are used. 2004-10-17 19:32:13 +00:00
Howard Chu
36b0611404 ITS#2588, ITS#2661 docs. 2004-09-28 09:02:31 +00:00
Kurt Zeilenga
424d673a6c Update SSF comments 2004-09-13 20:43:33 +00:00
Kurt Zeilenga
441ff00a06 Add default note 2004-09-10 22:55:59 +00:00
Kurt Zeilenga
3869e3b84d Add localSSF slapd.conf(5) directive to set SSF associated 
with ldapi:// sessions.
 2004-09-10 22:35:24 +00:00
Pierangelo Masarati
f64de49b9f update and cleanup 2004-08-21 12:28:54 +00:00
Pierangelo Masarati
7b4a51cc28 further improve loglevel selection 2004-07-29 12:39:51 +00:00
Pierangelo Masarati
f33b51832a allow to use names to set loglevel 2004-07-29 00:10:03 +00:00
Pierangelo Masarati
d8eff4d1b5 use hard limit instead of returning adminLimitExceeded when requested limit exceeds hard; improve (and document) syntax; modify test025 accordingly 2004-06-22 09:43:41 +00:00
Pierangelo Masarati
ca33242924 manual cleanup 2004-06-20 22:39:43 +00:00
Pierangelo Masarati
b1a1f0b8b6 cleanup limits 2004-06-19 10:01:47 +00:00
Pierangelo Masarati
a0dfadceef mention new tools 2004-06-15 22:40:53 +00:00
Howard Chu
725ca08f8d Add note about syncrepl Persist retries 2004-05-21 23:58:26 +00:00
Pierangelo Masarati
03c64541d4 add granular op restriction 2004-05-01 17:53:37 +00:00
Pierangelo Masarati
ff0df4b6aa add group authz 2004-04-25 23:59:06 +00:00
Pierangelo Masarati
05a84fb025 typo 2004-04-19 00:08:32 +00:00
Kurt Zeilenga
349c7834ce Rename config options and attribute names (for 2.3). 2004-04-16 02:29:55 +00:00
Pierangelo Masarati
6624f68725 fix braindead config option (mostly harmless) 2004-04-15 20:27:43 +00:00
Pierangelo Masarati
8ea2f6e157 further clarify size limits 2004-04-15 01:16:53 +00:00
Pierangelo Masarati
25c672a844 document search disable feature (spin-off of limit on unchecked entries) 2004-04-09 17:57:48 +00:00
Pierangelo Masarati
2e13fbeea1 completion of limits w/ paged results control 2004-04-09 15:54:46 +00:00
Hallvard Furuseth
6b45e32da3 Add NEW_LOGGING note for the commented-out "debug" and "logfile" options. 2004-04-09 05:27:04 +00:00
Kurt Zeilenga
bd7cd42669 clarify updatedn (again) 2004-04-07 03:32:55 +00:00
Kurt Zeilenga
bd765b849d ITS#2768: configuring slurpd's interval between replog checks 
based upon a patch submitted by Jason Townsend (Apple).
 2004-03-23 01:12:11 +00:00
Howard Chu
e5ec72c2b9 Add note about overlay directive 2004-03-16 22:25:08 +00:00
Pierangelo Masarati
4645eeb5ec cleanup DN style in limits 2004-03-08 13:13:30 +00:00
Pierangelo Masarati
5716b7f1b2 document saslAuthzTo/saslAuthzFrom new syntax; add onelevel style to DN type 2004-03-06 11:00:49 +00:00
Howard Chu
5f9a87c041 password-hash now takes a list of mechanisms 2004-03-02 22:17:20 +00:00
Kurt Zeilenga
b927f86e3f Clarify updatedn 2004-02-25 17:37:59 +00:00
Pierangelo Masarati
4e57108991 allow search limits based on groups (ITS#2967) 2004-02-18 16:40:36 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Pierangelo Masarati
113727ba53 allow 'all' vs. 'any' sasl-authz-policy 2003-12-18 18:28:43 +00:00
Kurt Zeilenga
eec0f83fd7 Fix typos 2003-12-14 21:00:52 +00:00
Kurt Zeilenga
17939ccdca Clarify that the updatedn should not be same as the rootdn. 2003-12-02 21:18:19 +00:00
Jong Hyuk Choi
4ae382fd79 misc updates 
- syncrepl : id -> rid
 - man page update
 2003-11-26 21:37:44 +00:00
Jong Hyuk Choi
1fdda703e6 Support multiple sync replication at the consumer : 
1) simultaneous operation of multiple active sync replication threads
2) cookie management for individual sync replication thread
   (include rid=%3d to the slapd cookie command line option (-c))
 2003-11-26 19:49:47 +00:00
Jong Hyuk Choi
c204f4061f keeps syncrepl manpage sections current 2003-11-24 23:16:45 +00:00
Kurt Zeilenga
d0c05e814d Add a basic DIT content rule test. 
Fix DIT rules to allow extensibleObject in AUX
unifdef -DSLAP_EXTENDED_SCHEMA
 2003-10-24 04:40:32 +00:00
Kurt Zeilenga
d03c83f077 ITS#2621, reference slapd.plugin 2003-10-12 04:22:26 +00:00
Kurt Zeilenga
fd445970fb document ditcontentrule directive 2003-10-12 04:20:20 +00:00
Jong Hyuk Choi
7f882daf15 Schema checking option for LDAP Sync replication 2003-09-03 21:42:52 +00:00
Jong Hyuk Choi
8dc1ac85dd manual update for proxy cache (apurva) 2003-09-03 16:26:17 +00:00
Jong Hyuk Choi
372cb876a0 slapd.conf man page update (LDAP Sync replication configuration) 2003-08-28 22:29:55 +00:00
Kurt Zeilenga
9b0de44b91 Add clarification about authzDN which don't exist in the DIT 2003-08-14 18:38:20 +00:00
Kurt Zeilenga
443d4c8999 sasl-regexp clarifications 2003-07-29 15:28:52 +00:00
Kurt Zeilenga
0a1be4b126 ITS#2622: ucdata is in DATADIR 2003-06-30 18:39:17 +00:00
Hallvard Furuseth
d0582fb4c2 Replace some tabs with spaces. 
Split some too long preformatted lines.
 2003-06-29 15:34:32 +00:00
Hallvard Furuseth
c20dbfb4f6 Remove SEE ALSO locale(5); the locale option has been gone for ages. 2003-06-27 17:30:13 +00:00
Hallvard Furuseth
e613b1a353 Add BACKENDS section in slapd.conf(5). 
Briefly compare back-bdb and back-ldbm.
Remove mention of MDBM and NDBM.  Rename GNU DBM to GDBM.
Fix spacing typos.  Prefix an octal file mode with 0.
Mention "notags" (new name for "nolang" from the attribute options patch).
Add SEE ALSO slapd-monitor(5) to slapd.conf(5).
 2003-06-27 12:22:27 +00:00
Howard Chu
44e32b3f7f ITS#2594 add URI support for replica config 2003-06-14 00:06:36 +00:00
Kurt Zeilenga
256732f2ce s/tls/starttls/ 2003-06-10 18:32:36 +00:00
Kurt Zeilenga
d6bfa4ab8f remove documentation for bind_simple_unprotected 
(which was axed log ago)
 2003-05-24 01:26:38 +00:00
Kurt Zeilenga
099c2426b8 clarify that updatedn permits replica updating subject to access controls. 2003-04-21 02:29:46 +00:00
Pierangelo Masarati
9a39dcb7d4 add slurpd pid/args files 2003-04-15 21:56:21 +00:00
Kurt Zeilenga
06da0f5e6f Clarify "users" terminology 2003-04-15 02:20:01 +00:00
Howard Chu
2c2bf67cea ITS#2389, describe conn_max_pending/auth keywords 2003-03-27 04:18:16 +00:00
Kurt Zeilenga
f4bb9a5d64 Fix typo (ITS#2379) 2003-03-15 23:36:23 +00:00
Kurt Zeilenga
472a79f211 LDAPv2 is Historic 2003-03-10 15:34:14 +00:00
Kurt Zeilenga
6fb4582d5c suffixalias is no longer supported 2003-03-07 18:57:30 +00:00
Kurt Zeilenga
f620aa08f9 Max workers was lowered to 16. 2003-02-21 07:18:43 +00:00
Kurt Zeilenga
698d73d5f3 Disable reverse lookups by default for security 
(and performance) reasons.
 2003-02-08 07:40:19 +00:00
Kurt Zeilenga
6939c53170 Happy new year 2003-01-03 20:20:47 +00:00
Hallvard Furuseth
5ca8773a8b Fix typos. 2002-12-16 07:31:13 +00:00
Hallvard Furuseth
54728f367e Implement user-defined tagging attribute options and ranges 2002-12-12 13:56:05 +00:00
Pierangelo Masarati
8473f6e778 set keyword to noEstimate and document it 2002-11-21 20:57:00 +00:00
Pierangelo Masarati
59aea47963 improve limits handling and consistency; return "Admin limit exceeded" instead of "Unwilling to perform" 2002-11-21 12:58:59 +00:00
Pierangelo Masarati
b9e442d7de clarify how to specify no limits 2002-10-31 11:26:19 +00:00
Pierangelo Masarati
53e1930fd0 use keyword "unlimited" instead of -1 for no limits 2002-10-31 09:57:24 +00:00
Kurt Zeilenga
c14cbc1fb7 Update anon 2002-10-26 02:53:36 +00:00
Kurt Zeilenga
023d0e2a5c Rework unprotected simple bind checks 2002-10-08 19:03:18 +00:00
Kurt Zeilenga
36fca96695 if "disallow bind_simple_unprotected", require at least SSF of 2 2002-10-08 01:06:49 +00:00
Kurt Zeilenga
90e320398a Clarify that "security ssf=n" applies to "disallow bind_simple_unprotected". 2002-10-08 00:51:19 +00:00
Kurt Zeilenga
68aebc05c9 Clean up hash password scheme stuff 2002-09-20 17:27:08 +00:00
Kurt Zeilenga
11a07153d6 Add some clarification as to what hash algorithms are used 
with each password-hash scheme.
 2002-09-20 17:12:58 +00:00
Howard Chu
33d5c0abd7 Fix errors in replica directive 2002-08-22 20:32:09 +00:00
Howard Chu
1be4ab9d07 ITS#1893 Add (terse) schemadn description 2002-08-10 04:09:28 +00:00
Kurt Zeilenga
b839e6fc8b Remove misleading (untrue) text about known syntax OID macros. 2002-06-27 16:27:07 +00:00
Kurt Zeilenga
9a38d98d37 Add option to disallow unprotected simple authentication. 
Add protected simple authentication as a "strong" mechanism.
 2002-06-17 22:18:27 +00:00
Howard Chu
7b9d3b4a26 Added sasl-authz-policy 2002-06-14 11:02:57 +00:00
Kurt Zeilenga
b43ad1dd0e Generate man page date from version.sh 2002-06-13 03:59:10 +00:00
Kurt Zeilenga
faf91f1f1f Update to the 'gentle SIGHUP' patch. (ITS#1679) 
- Let write operations return unwilling-to-perform after
  'gentle shutdown' has been initiated.
- Change -1 to 2 in slapd_gentle_shutdown and slapd_shutdown, since
  sig_atomic_t can be unsigned (ITS#1736).  The 'gentle SIGHUP' patch
  is older than ITS#1736 but was applied later, so it reintroduced
  the problem.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, June 2002.
 2002-06-12 15:43:19 +00:00
Kurt Zeilenga
dfeac21baa Add {CLEARTEXT} to password-hash possibilities 2002-06-12 00:50:28 +00:00
Kurt Zeilenga
133a4ebbc4 Note that rootpw can only be set if rootdn is under suffix. 2002-06-08 18:40:36 +00:00
Kurt Zeilenga
19eca33ca3 Gentile HUP shutdown from Hallvard 2002-06-03 16:47:43 +00:00
Kurt Zeilenga
2ab8810555 Documentation patch #4 (ITS#1749) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Small changes:
- Fix typo slapd_meta -> slapd-meta in slapd-meta(5).
- Add slapd-dnssrv(5) to SEE ALSO in slapd.conf(5).
- Add descriptions of the files in FILES sections.
- Add $HOME/.udrc to FILES in ud(1) and ud.conf(5).
- Add ldaprc (without ".") and ENVIRONMENT VARIABLES in ldap.conf(5).
- Change manpage references to proper ".BR name (section)".

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, May 2002.
 2002-05-09 02:07:41 +00:00
Pierangelo Masarati
4f24ebbb8d 3rd step at updating docs by hallvard Furuseth (with minor changes in slapd-meta.5) 2002-05-02 16:35:16 +00:00
Pierangelo Masarati
1aa96af216 second round at ITS#1749 2002-05-01 16:38:30 +00:00
Pierangelo Masarati
d019bff7b8 First commit of Hallvard's backend documentation effort 
Backend documentation patch, version 1

================
Most of this text is taken from OpenLDAP.  The work of rewriting it
to manual pages is done by by Hallvard B. Furuseth and placed into
the public domain.  This software is not subject to any license of
the University of Oslo.
================

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
 2002-04-29 20:24:29 +00:00
Howard Chu
5de276fa25 ITS#1749 added maxderefdepth, suffiaxalias, TLSCACertificatePath, 
ucdata-path, moduleload, modulepath. sasl-external-x509dn-convert has
been deleted from the code.
 2002-04-20 10:06:23 +00:00
Howard Chu
e265b47181 Comment out "logfile", its code is behind #ifdef NEW_LOGGING in config.c. 2002-04-20 09:23:19 +00:00
Howard Chu
5770a81595 ITS#1749 added "debug" description, commented out because it has no effect 
without NEW_LOGGING. Added logfile.
 2002-04-20 09:07:24 +00:00
Howard Chu
510f57c8dd ITS#1749 added BDB options 2002-04-20 08:12:03 +00:00
Howard Chu
491c0f22e0 ITS#1735 fix typos 2002-04-11 07:39:51 +00:00
Pierangelo Masarati
4a8ab5dbf2 Mostly based on patches provided by Hallvard B. Furuseth 
ITS#1677 - cast away const warnings
ITS#1678 - unsigned char args to ctype funcs
ITS#1682 - don't redefine ldap_debug
ITS#1683 - uninitialized vars
ITS#1703 - ldo_debug initialization
ITS#1705 - unsigned testing
ITS#1706 - socklen_t args
ITS#1719 - back-tcl update (other cleanups/fixes/improvements; yet untested)
ITS#1724 - integerNormalize/integerFilter/integerIndexer bugs
ITS#1725 - libdes not required

Implement back-null (/dev/null style backend)
Cleanup some misc warnings ("%lu" format, unused/uninitialized vars,
        ambiguous operator precedence)

Kurt, please regenerate configure
 2002-04-08 09:43:22 +00:00
Pierangelo Masarati
704ed641eb allow attribute exclusion list in selective replica 2002-03-30 08:57:41 +00:00
Pierangelo Masarati
53e28a63a9 fix typo 2002-03-30 08:46:35 +00:00
Kurt Zeilenga
95691dc8b4 ITS#1680: Fix idle timeout typo 2002-03-25 17:26:07 +00:00
Kurt Zeilenga
409398ea2d s/rootDSEfile/rootDSE/ 2002-02-07 18:17:24 +00:00
Kurt Zeilenga
400af27afa Add clarification to password-hash directive 2002-01-30 00:41:36 +00:00
Howard Chu
7f68a95bac Added TLSVerifyClient configuration notes 2002-01-27 04:49:32 +00:00
Kurt Zeilenga
7ac207dc05 rm noautosubtypes 2002-01-15 02:47:06 +00:00
Kurt Zeilenga
0e2af54a3f Update copyright statements 2002-01-04 21:17:25 +00:00
Kurt Zeilenga
f021404b41 disallow bind_v2 is now default 2001-12-21 04:45:04 +00:00
Kurt Zeilenga
7caa803b59 Undocument 'schemacheck off' 2001-12-19 21:28:34 +00:00
Kurt Zeilenga
ff723903c5 Some index clarifications 2001-12-18 02:24:09 +00:00
Howard Chu
dfd26b8d95 Added description of "subordinate" keyword. 2001-12-15 07:15:32 +00:00
Kurt Zeilenga
493b415255 Rework indexing code, removing "autolang" and making 
"subtypes" and "lang" default behavior.
 2001-12-05 00:06:03 +00:00
Pierangelo Masarati
ae74c1c97c small adjustment 2001-12-04 17:13:25 +00:00
Pierangelo Masarati
6d3df52af9 update limits stuff 2001-12-04 17:10:17 +00:00
Mark Adamson
bd091ce276 Allow size and time limits in slapd.conf for anonymous bound search operations 2001-11-21 20:28:15 +00:00
Pierangelo Masarati
cf13ded4fe access control man page 2001-11-03 18:03:10 +00:00
Kurt Zeilenga
fcd1ce0e28 Use defined Root DSE attributes. 
Developed by Julius Enarusai/IBM
Copyright IBM Corp. 2001

Use of this source code is subject to the terms of The OpenLDAP
Public License Version 2.7, 7 September 2001.  No trademarks of the
IBM Corporation are to be used to identify, endorse or promote any
products derived from this code without the prior written consent
of IBM.
 2001-10-23 23:29:41 +00:00
Kurt Zeilenga
f7690b1194 Password-hash doesn't support UNIX, KERBEROS, SASL schemes. 2001-08-29 19:37:32 +00:00
Kurt Zeilenga
a9a5a3997d Add dnnolocking warning 2001-08-29 17:08:01 +00:00
Pierangelo Masarati
6a5b253bc6 allow multiple limits setting on one global/per backend config line 2001-08-04 11:09:25 +00:00
Pierangelo Masarati
4919363fa0 more intuitive special limits configuration 2001-08-03 17:25:39 +00:00
Pierangelo Masarati
f35545b058 fix a couple of typos; schemacheck was duplicated 2001-08-01 10:47:44 +00:00
Pierangelo Masarati
8471ef7ed0 add global, per backend and per op_ndn time/size soft, hard and to-be-checked limits (exploited by back-ldbm); see slapd.conf(5) for details 2001-08-01 10:09:04 +00:00
Pierangelo Masarati
2e79b7616b regex-based per op_ndn time/size limits 2001-07-28 12:07:40 +00:00
Pierangelo Masarati
d9889c28ef suffix option; allows partial replication of a database 2001-07-24 13:39:43 +00:00
Randy Kunkee
0ef87764d7 Move backend_syncfreq code down into back-ldbm. Creates new configuration 
for LDBM backends called "dbsync", which takes minimum of one argument up
to 3 args which are sync frequency, # of delays, and delay periods.  See
man page update for "dbsync" configuration for more details.
 2001-06-28 09:20:33 +00:00
Kurt Zeilenga
1229cfcc3f Backout directory config option 2001-06-22 21:00:24 +00:00
Kurt Zeilenga
ff993c7ddb Misc updates to password codes / docs 2001-06-13 05:40:24 +00:00
Kurt Zeilenga
cc6fab319e Add support for separate max incoming for anonymous and authenticated 
sessions (defaults: 256K and 16M respectively).
 2001-05-29 20:00:55 +00:00
Kurt Zeilenga
49a4319b07 document sockbuf_max_incoming 2001-05-29 16:10:08 +00:00
Kurt Zeilenga
351e436dcf Add an LDBM backend "directory" directive (in addition to 
the existing database "directory" directive) to allow setting
of a DB_ENV directory.  Should likely be database specific.
 2001-05-29 01:51:37 +00:00
Kurt Zeilenga
990ab4b119 Randfile 2001-05-02 19:52:58 +00:00
Kurt Zeilenga
26e3fc4625 Document the "threads" directive 2000-10-18 00:22:30 +00:00
Kurt Zeilenga
9520b708eb Fix typo in concurrency description 2000-10-18 00:15:32 +00:00
Kurt Zeilenga
282b192474 Note that the directory containing the replogfile as well as 
the slurpd temporary directory should have limited read/write/execute
access.
 2000-10-16 22:19:29 +00:00
Kurt Zeilenga
df47e87ec3 Zap defaultaccess option 2000-10-13 04:46:50 +00:00
Kurt Zeilenga
bbe9651ca9 fix maxbufsize=factor typo 2000-10-07 02:07:39 +00:00
Kurt Zeilenga
a912e6eea0 Make sure authzid form produces a valid subject DN. Support 
both u: and dn: forms.
Rework sasl-regex DN be of the form
	uid=user,cn=realm,cn=mech,cn=authz
Fix up slapd.conf(5)
 2000-10-06 23:50:38 +00:00