Commit Graph

2291 Commits

Author SHA1 Message Date
Kurt Zeilenga
549c89f817 Regarding previous commit:
Fix broken ACL macros.
	Fix o_dn/o_ndn == NULL vs "".
1999-07-04 19:53:00 +00:00
Kurt Zeilenga
49f39bc4cf o_dn/o_ndn must not be NULL. Set to "" upon receiving bind request. 1999-07-04 19:37:25 +00:00
Kurt Zeilenga
106eef41d8 HEADS UP: connections are forced to "anonymous" status upon receiving
of a bind request and, upon failure, are left "anonymous."

Rework ACL code to hide access testing within macros to facilate additions
and eventual redesign.

Addition of #ifdef SLAPD_ACLAUTH to conditional include EXPERIMENTAL
"auth" access controls.  Adds ACL_AUTH "auth" access level (above none,
below "compare").  bind requires anonymous access at this level or above access
to "entry"/"userPassword"/"krbName".  This allows administrators to restrict
which entries can be bound to.  (This will likely become default behavior
after testing has completed).
1999-07-04 18:46:24 +00:00
Kurt Zeilenga
daf40a51c1 Abandon all operations upon receiving a BindRequest. 1999-07-02 21:42:53 +00:00
Kurt Zeilenga
b7bbc7504d More bind changes to support SASL/DIGEST.
Added configuration support for "digest-realm <realm>" configure directive.
Added connection state and bind_in_progress fields to cn=monitor connection
attribute.
1999-07-02 19:48:07 +00:00
Julio Sánchez Fernández
c8e37af0ca Removed numerous memory leaks detected by Mark Meredith.
Make sure the token_val argument to get_token is always initialized
to something, either newly allocated memory or NULL.
1999-07-02 11:57:07 +00:00
Kurt Zeilenga
175ace59c8 Send LDAP_SASL_BIND_IN_PROGRESS if o_bind_in_progress is true. 1999-07-02 00:46:28 +00:00
Kurt Zeilenga
6f8fad20f2 Add conn/op bind_in_progress flags such that operations can detect
if multiple step SASL binds are in progress.
1999-07-02 00:04:47 +00:00
Kurt Zeilenga
a1665712f2 Fix LDAP_RANGE typo 1999-07-01 21:56:53 +00:00
Kurt Zeilenga
97bc107537 Add macros to support testing of error categories to ldap.h
Modify ldap_result to assert returned error is not an one reserved
for API use.
Modify frontend LDAP operation routines to return an error code.
The returned value will be used to determine if an unsolicited notification
should be sent to the client.
Need to review returned error codes.  Namely some LDAP_PROTOCOL_ERROR
will like need to be changed (as they will cause unsolicited notifications).
1999-07-01 21:20:45 +00:00
Kurt Zeilenga
d7b311c6e1 s/LDAP_NOT_SUPPORTED/LDAP_UNWILLING_TO_PERFORM/ 1999-07-01 04:43:48 +00:00
Kurt Zeilenga
ddd0559284 Fairly complete slapd SASL bind parsing... and centralized cleanup code.
Update error strings and cldap misuse of server error.
1999-07-01 04:42:01 +00:00
Kurt Zeilenga
341e3681d6 s/NULL/'\0'/ where appropriate 1999-07-01 04:39:42 +00:00
Kurt Zeilenga
159067cc83 swap LDAP_STRONG_AUTH_NOT_SUPPORTED & LDAP_AUTH_METHOD_NOT_SUPPORTED 1999-07-01 04:37:46 +00:00
Kurt Zeilenga
8871b527d2 Add LDAP_CLIENT_ERROR macro. 1999-07-01 04:25:16 +00:00
Kurt Zeilenga
6f4d23667e Add LDAP_TAG_LDAPCRED macro. 1999-07-01 04:21:53 +00:00
Kurt Zeilenga
129ee42f37 NO-OP SASL parsing... DIGEST-MD5 coming soon. 1999-07-01 03:18:00 +00:00
Kurt Zeilenga
f9db1ea889 Rework BER decoding with lieu of LDAPv3 controls (coming soon).
Add place holder for handling LDAPv3 extended operations (coming soon).
1999-06-30 22:43:27 +00:00
Julio Sánchez Fernández
42d53c49f0 Initial version of new mail500. 1999-06-30 13:54:32 +00:00
Kurt Zeilenga
14820afdd9 Reimplement connection counters. Format of "connection" attribute
changed significantly.
1999-06-30 02:50:40 +00:00
Kurt Zeilenga
9225707a06 Modify lutil_passwd to accept a third argument char** methods to
specific which methods may be used.  This will facilate development
of a slapd config directive "passwordMethod ..." to specify which
methods should be allowed.
1999-06-29 22:24:53 +00:00
Kurt Zeilenga
757631d205 Attempt to whip user password from command line. 1999-06-29 18:59:11 +00:00
Kurt Zeilenga
fe00263875 expose oc_check_operational from schema.c
Use everywhere.
Apply search ACLs to operational attributes.
Only provide operational attributes when explicitly requested.
1999-06-29 04:52:55 +00:00
Kurt Zeilenga
a7dfc2aada Add sasl "mech" argument to backend bind routines. 1999-06-29 03:29:26 +00:00
Kurt Zeilenga
1ee85df297 Add framework for sasl and controls. 1999-06-29 03:17:22 +00:00
Kurt Zeilenga
c0af81253a remove obsolete file. 1999-06-29 03:01:02 +00:00
Kurt Zeilenga
f49cee0571 Add prototypes for strerror/strerror_r. 1999-06-29 02:58:14 +00:00
Kurt Zeilenga
bf8eaf1f1e ldapmodify/add: Fix -P option
tests: use "ldapadd" instead of "ldapmodify -a"
1999-06-29 01:17:58 +00:00
Kurt Zeilenga
dcc5bdfe7e Log out to stderr, add LDAP_VERSION3 support to bind.c and modrdn.c 1999-06-29 01:02:48 +00:00
Kurt Zeilenga
2660d0b42f Remove old U-Mich v3.0 and OLD_LDAP_* crud.
Leave only LDAPv2+ and LDAPv3.
1999-06-29 00:03:34 +00:00
Kurt Zeilenga
33dd61f035 Add support for "env LDAP_PROTO=n make ldbm" where n is 2 or 3.
3 doesn't work YET.
1999-06-28 23:46:16 +00:00
Kurt Zeilenga
f4ff5a9299 EXPERIMENTAL: Use sasl bind for simple bind.
Add sasl.c to libldap_r.dsp.
1999-06-28 23:24:16 +00:00
Kurt Zeilenga
64d5725662 Allow ctrls argument to be NULL. 1999-06-28 22:47:20 +00:00
Kurt Zeilenga
5045f15b23 EXPERIMENTAL ldap_parse_result() 1999-06-28 22:33:03 +00:00
Kurt Zeilenga
8482d2b488 Provide build support for sasl.c. 1999-06-28 22:30:56 +00:00
Kurt Zeilenga
1fd3c797a8 Validate outvalue after session param. 1999-06-28 22:22:27 +00:00
Kurt Zeilenga
37fceeb662 Minor cleanup of ldap_result(). 1999-06-28 22:20:04 +00:00
Kurt Zeilenga
80e5e3fead First cut at SASL routines. 1999-06-28 22:19:21 +00:00
Kurt Zeilenga
613bf0b077 Return LDAP_BAD_PARAM if res is not EXOP result.
Skip over referrals that might exist in EXOP result.
1999-06-28 22:17:38 +00:00
Kurt Zeilenga
09a007c031 Fix up minor errors in prototypes to bring them in line with LDAP C API draft. 1999-06-28 22:13:56 +00:00
Kurt Zeilenga
1fe082d16c Support both vsnprintf and vsprintf 1999-06-28 22:04:31 +00:00
Kurt Zeilenga
048547a652 modify ber_put_berval to put NULL ostring when bv == NULL or bv->bv_len == 0. 1999-06-28 20:12:30 +00:00
Kurt Zeilenga
5f28509311 detect write() and use HAVE_WRITE instead of
!defined( DOS ) && !defined( MACOS )
Add detection for read & recv/send for later use.
1999-06-28 04:11:41 +00:00
Kurt Zeilenga
dcf9209ae3 *** empty log message *** 1999-06-28 04:05:53 +00:00
Kurt Zeilenga
30d3d76758 Need to remove ldapadd$(EXEEXT). 1999-06-27 04:02:07 +00:00
Kurt Zeilenga
cf89dd83cd don't set unsigned variables to -1 and expect them to be negative.
verify uid/gid are positive, not non-negative.
1999-06-27 03:58:06 +00:00
Kurt Zeilenga
2e7600588b s/gecos/passwd/ in comment. 1999-06-26 20:53:25 +00:00
Kurt Zeilenga
ab10099fc1 Added support for "userPassword: {UNIX}uid". getpwnam("uid") is
used to fetch the pw_passwd which is than passwd to crypt().
getspnam() is used instead of getpwnam() when available.
Added configration detection of pw_passwd, shadow.h, getpwnam()
and getspnam().
1999-06-26 20:52:59 +00:00
Kurt Zeilenga
fcaddb60b4 Install lber_types.h 1999-06-25 14:41:10 +00:00
Kurt Zeilenga
cabe7726e1 Update BerkeleyDB prereq to 2.7.5. 1999-06-25 00:33:26 +00:00