mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-02-05 13:40:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
14,120 Commits 38 Branches 307 Tags 75 MiB
906acc2b30
Commit Graph

474 Commits

Author SHA1 Message Date
Pierangelo Masarati
1b9c9577c2 invalidate cached connections if URI changed 2005-05-25 11:54:19 +00:00
Pierangelo Masarati
672c39024e further fixing of back-ldap config; added enum_to_verb call to ease mapping enumerations to strings... 2005-05-23 14:14:34 +00:00
Pierangelo Masarati
a7f44159c1 complete back-config support, including chain overlay; passes all tests; HEADS-UP: few syntax changes (essentially backwards compatible) 2005-05-23 07:25:00 +00:00
Pierangelo Masarati
da2a26d19f first round of back-config support; need to #define LDAP_BACK_BCONFIG; no support for rewrite and so, still stuff to fix. Doesn't pass most of the tests 2005-05-21 19:07:14 +00:00
Pierangelo Masarati
be53e82650 fix entry DN free 2005-05-21 14:53:05 +00:00
Pierangelo Masarati
96773427db don't bother about slap_dummy_bv 2005-05-13 09:06:28 +00:00
Pierangelo Masarati
1001d062d3 consistently rename function 2005-05-05 18:11:35 +00:00
Pierangelo Masarati
8ad34dc76b fix previous commit: don't loop on undefined; return success with no data in case of undefined filter 2005-05-05 12:01:12 +00:00
Pierangelo Masarati
7f61a2739a fix support for absoluteFilters 2005-05-05 11:19:11 +00:00
Pierangelo Masarati
d30933af36 fix previous commit 2005-05-05 00:31:11 +00:00
Pierangelo Masarati
f0122ce3fc move discover function to frontend 2005-05-05 00:22:43 +00:00
Pierangelo Masarati
c80eb34888 honor T-F filters (ITS#3706) and some cleanup 2005-05-05 00:07:17 +00:00
Pierangelo Masarati
4199f4577a if for any reason ldap_search_ext() fails (e.g. ITS#3706) don't wait for results 2005-05-04 23:16:56 +00:00
Pierangelo Masarati
471f4772a0 cleanup connection locking 2005-04-21 00:49:35 +00:00
Pierangelo Masarati
a141e3badf enable use of asynchronous call to StartTLS 2005-04-16 02:56:46 +00:00
Pierangelo Masarati
5affbfa428 add SASL bind for acl-authc; use slap_bindconf 2005-04-10 23:44:06 +00:00
Howard Chu
38cf26c95a Fix typo 2005-03-14 19:23:42 +00:00
Howard Chu
4e2dccf147 Fix prev commit, make sure to only send result once 2005-03-04 06:25:10 +00:00
Howard Chu
379a620217 Fix ITS#3537 (need to repeat this fix for the other operations too.) 2005-03-04 06:20:37 +00:00
Pierangelo Masarati
edfbbeb653 clarify comment 2005-02-19 16:55:14 +00:00
Pierangelo Masarati
f8b463d0bc use asynchronous StartTLS 2005-02-19 16:14:22 +00:00
Howard Chu
beaeb5ed5c Fix if HAVE_TLS is missing 2005-02-18 04:20:56 +00:00
Howard Chu
ee42df4cea Always return SLAPD_ABANDON in response to op->o_abandon being set. 2005-02-18 00:37:40 +00:00
Pierangelo Masarati
b43fb2bdfc allow stacking of a default chaining control when chasing further referrals; fix referral return memory allocation on direct search 2005-02-06 22:12:02 +00:00
Pierangelo Masarati
046b40cbe3 provisions for configuring a desired chaining policy via the chaining behavior control 2005-02-05 18:21:14 +00:00
Pierangelo Masarati
e50092878d temporarily revert to synchronous start tls 2005-02-05 17:33:22 +00:00
Pierangelo Masarati
43138aa500 use asynchronous Start TLS exop; allow propagating TLS if used in the original connection; minor cleanup 2005-02-05 15:55:02 +00:00
Howard Chu
122cdf4549 In ldap_back_bind, don't send success result, frontend does it 2005-02-01 00:19:45 +00:00
Pierangelo Masarati
cfc77f0a0a make referrals chasing optional (default is to chase them) 2005-01-30 22:56:59 +00:00
Pierangelo Masarati
8cc2aa9372 implement hook; cleanup 2005-01-30 22:05:46 +00:00
Pierangelo Masarati
4304dfc9a2 allow referrals in result (may happen); propagate chaining errors 2005-01-28 01:43:49 +00:00
Kurt Zeilenga
e826914a88 Less kludgy willing-to-perform check for recognized and appropriate 
global controls
 2005-01-27 06:45:20 +00:00
Pierangelo Masarati
3dd2f4150b allow proxyAuthz of users authenticated via SASL 2005-01-26 20:01:02 +00:00
Pierangelo Masarati
e047657f06 remove overoptimistic assertion 2005-01-26 10:27:38 +00:00
Pierangelo Masarati
e2fe9e394a fix controls run-time registered by global overlays (kludge non longer required?) 2005-01-26 08:04:19 +00:00
Pierangelo Masarati
5b193c218f fix dynamically registered controls check; NOTE: controls registered by global overlays don't work yet; better leave Kurt's kludge in place right now 2005-01-25 19:39:56 +00:00
Pierangelo Masarati
6239b70081 cleanup previous commit 2005-01-25 17:14:19 +00:00
Pierangelo Masarati
c6a1f24186 add support for Chaining Behavior control (<draft-sermersheim-ldap-chaining>, a work in progress) 2005-01-25 16:11:26 +00:00
Pierangelo Masarati
c6b6d2a5ec StartTLS (ITS#3507) + chain overlay fixes and improvements 2005-01-24 09:38:11 +00:00
Pierangelo Masarati
ae0f47b063 improve parsing of acl-authcDN/acl-passwd 2005-01-22 18:48:03 +00:00
Pierangelo Masarati
1d919d35a5 remove #ifdef's for identity assertion 2005-01-20 09:04:37 +00:00
Pierangelo Masarati
90cc75f1a1 cleanup; add proxyAuthz capability 2005-01-19 22:59:25 +00:00
Pierangelo Masarati
5f178fd3d1 use idassert for proxyAuthz with the chain overlay 2005-01-19 19:11:35 +00:00
Pierangelo Masarati
7348603a53 fix ITS#3484 2005-01-12 23:22:56 +00:00
Pierangelo Masarati
4e6fd44213 the fixes to ITS#3475 make the referrals callback no longer required 2005-01-12 21:02:23 +00:00
Pierangelo Masarati
83d1e22b8c don't malloc if proxyAuthz is the only control 2005-01-11 00:37:22 +00:00
Pierangelo Masarati
41d7c03e8b clear out the error 2005-01-09 23:30:19 +00:00
Pierangelo Masarati
154ae48d69 put back chain overlay into back-ldap 2005-01-09 21:26:32 +00:00
Pierangelo Masarati
cd2e651c26 ITS#3469: C99 compliance 2005-01-08 11:25:11 +00:00
Pierangelo Masarati
4d8267595f retry on ldap_result() with a timeout 2005-01-08 09:19:51 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Pierangelo Masarati
8ec78171d3 trim comment 2005-01-01 16:14:40 +00:00
Pierangelo Masarati
5a920206dd more cleanup 2004-12-11 18:36:31 +00:00
Pierangelo Masarati
fefa59059d minor cleanup 2004-12-08 19:11:27 +00:00
Pierangelo Masarati
6e12819387 allow undefined schema items to be returned by back-ldap and remapped by the rwm overlay 2004-12-01 21:47:13 +00:00
Pierangelo Masarati
6b1c641bc1 warn users of the need to use the rwm overlay 2004-11-29 12:40:36 +00:00
Pierangelo Masarati
6eec000889 improve diagnostics 2004-11-17 17:55:44 +00:00
Pierangelo Masarati
b29bf83e7e remove back-*/external.h 2004-11-15 19:45:49 +00:00
Pierangelo Masarati
2d5ec082dd cleanup 2004-11-15 14:17:08 +00:00
Pierangelo Masarati
ee4c10d5d0 allow backends to automatically install overlays; issue warnings in case of duplicates (fixes ITS#3395 for cases (1.a), (1.b) and (2) simultaneously) 2004-11-15 10:28:33 +00:00
Pierangelo Masarati
9c550e7235 first step towards removing back-*/external.h 2004-11-13 18:52:44 +00:00
Pierangelo Masarati
cd35386935 fix ITS#3391 2004-11-13 18:40:16 +00:00
Pierangelo Masarati
db4f223c66 improve overlay helpers 2004-11-13 17:20:24 +00:00
Pierangelo Masarati
363fdcd951 no longer required (moved to rwm overlay) 2004-11-13 14:50:34 +00:00
Pierangelo Masarati
f176935a58 remove rewrite stuff -- now delegted to rwm overlay 2004-11-13 14:43:30 +00:00
Pierangelo Masarati
dd367a2b78 make sure we're comparing the same database 2004-11-11 13:12:34 +00:00
Pierangelo Masarati
79f744f30b rework static backend initialization 2004-11-11 00:39:19 +00:00
Pierangelo Masarati
f06f2a6aec fix ITS#3350 (rewrite/remap will be replaced by the rwm overlay) 2004-11-10 09:56:55 +00:00
Pierangelo Masarati
b349604352 fix ITS#3387 2004-11-10 09:45:02 +00:00
Howard Chu
374cd32eb6 Add a retry for entry_get too. (oops) 2004-10-07 02:55:51 +00:00
Howard Chu
7e87f54716 Revert ITS#3353 patch, it needs to be reworked. 2004-10-06 05:51:38 +00:00
Howard Chu
bbe986b94e Add a retry for failed connections 2004-10-01 12:00:41 +00:00
Howard Chu
55f12a7eee Add a retry for failed connections 2004-10-01 11:16:38 +00:00
Howard Chu
fda3d6260e ITS#3353 consolidate slapd globals into a single struct 2004-10-01 07:33:16 +00:00
Kurt Zeilenga
d611a4b49a unifdef -UNEW_LOGGING 2004-09-04 04:54:28 +00:00
Pierangelo Masarati
809e623cd9 add paged results support to back-ldap 2004-08-24 09:19:33 +00:00
Howard Chu
f2ee179c3f ITS#3291 delay use of slap_known_controls until all configuration is done 2004-08-19 12:10:22 +00:00
Pierangelo Masarati
cc60b5ce76 cleanup previous fix; maybe the advanced url parsing funcs should go in some ldap_pvt.h header? 2004-07-26 08:31:01 +00:00
Pierangelo Masarati
9f6f5491fe slightly rework user/operational attributes handling (including fixing a bug in the logic of the previous change to backend_operational()); cleanup; more improvements to slapo-rwm and back-relay 2004-07-25 23:16:40 +00:00
Pierangelo Masarati
cd7540feee cleanup URI parsing/checking (fixes ITS#3253) 2004-07-24 11:17:03 +00:00
Pierangelo Masarati
a7b55f4f44 assert administrative identity instead of the required one if doing auth check in non-caching mode 2004-07-23 00:11:05 +00:00
Pierangelo Masarati
07f010a01f fix previous fix 2004-07-22 23:03:04 +00:00
Pierangelo Masarati
b94d5e17e2 rework op/rs structures to deal with opeartional attributes 2004-07-18 21:44:29 +00:00
Hallvard Furuseth
af5ab4f196 Add missing format argument for 'unhandled idassert-method' error message. 2004-07-18 07:16:34 +00:00
Pierangelo Masarati
81d89ddd63 validate/pretty before normalizing... (ITS#3218) 2004-07-06 22:02:52 +00:00
Pierangelo Masarati
277d921945 clear shared connections when ldap_result fails with -1 (typically, remote server is down); fixes ITS#3217 2004-07-04 23:35:18 +00:00
Pierangelo Masarati
1f70ad82f2 clean up unnecessary checks; don't use SASL native authz if authz ID is not static, because back-ldap pools connections... 2004-06-21 00:57:12 +00:00
Pierangelo Masarati
eca48b6f20 not sure that cyrus-sasl doesn't honor empty authz; need to check 2004-06-20 23:21:40 +00:00
Pierangelo Masarati
5bfb9fd590 make authz mode selection fully manual, plus more cleanup 2004-06-20 22:42:36 +00:00
Pierangelo Masarati
176e5542bb fix erroneous logging 2004-06-20 22:42:04 +00:00
Pierangelo Masarati
5d843b2b13 detect mechs that are known to perform native authz 2004-06-19 18:32:55 +00:00
Pierangelo Masarati
f34b11760a allow a hidden parameter to instruct the proxy that the SASL mech can do native authz; will disappear as soon as I can detect it automnatically 2004-06-19 18:18:26 +00:00
Pierangelo Masarati
e6065fb20d li->be didn't work; since it seems to be unnecessary, it's been removed; please check 2004-06-19 15:16:51 +00:00
Pierangelo Masarati
d1b692ceb4 clarify no limits in (internal) searches 2004-06-12 11:33:21 +00:00
Jong Hyuk Choi
f60f2d5048 Fix typo 2004-06-08 02:52:59 +00:00
Howard Chu
7488f557cd Fix entry_get, only check mapped attr if attr was provided 2004-05-25 04:54:32 +00:00
Pierangelo Masarati
a18e199e0d more on identity assertion 2004-05-22 17:26:02 +00:00
Howard Chu
a11553c212 Always normalize entries (ITS#3152, ITS#3144) 2004-05-19 23:19:24 +00:00
Pierangelo Masarati
cdebc4d376 more on idassert: SASL bind/authz 2004-05-15 10:11:10 +00:00
Pierangelo Masarati
8b954144d6 reflect Kurt's comments on ID assertion 2004-05-14 10:01:22 +00:00
Pierangelo Masarati
3b38676dd3 complete idassert options 2004-05-13 22:12:46 +00:00
Pierangelo Masarati
66ddf62922 add idassert code (undocumented yet) 2004-05-13 20:25:53 +00:00
Pierangelo Masarati
d40e5a365a fix DN_SEPARATOR() and clarify its use 2004-05-07 09:03:05 +00:00
Pierangelo Masarati
b34cf02488 more on fixing escaped semicolon in normalized DN 2004-05-07 02:18:08 +00:00
Luke Howard
22f425c1f3 Fix warning in assignment 2004-04-15 02:37:40 +00:00
Luke Howard
12949734bd Fix warning in assignment 2004-04-15 02:36:23 +00:00
Pierangelo Masarati
c0c24cfec5 first round of SHADOW flags/isupdate test unification 2004-04-10 10:00:58 +00:00
Kurt Zeilenga
c7f0438044 bvalue cleanup 2004-04-08 06:49:17 +00:00
Howard Chu
8c6fe48806 More dynamic/static cleanup 2004-04-08 05:58:54 +00:00
Howard Chu
f2e1df3ef7 Consolidated static/dynamic backend switches 2004-04-08 05:56:23 +00:00
Jong Hyuk Choi
1c1b2bb6ee updatedn fix for syncrepl 2004-04-07 17:32:37 +00:00
Kurt Zeilenga
44725e7303 use BER_BVNULL 2004-04-07 04:11:43 +00:00
Pierangelo Masarati
a11dc61e05 rework be_isupdate accordingly to be_isroot 2004-04-06 09:42:40 +00:00
Pierangelo Masarati
e17be551a4 fix previous commit 2004-04-06 08:47:59 +00:00
Pierangelo Masarati
0f867b9577 revert erroneous commit; cure the test the right way 2004-04-05 23:47:17 +00:00
Kurt Zeilenga
9a64fdb991 use SLAP_DBFLAGS instead of be->be_flags 2004-04-05 23:42:59 +00:00
Pierangelo Masarati
6a1dd9a1cd exploit new frontend API 2 protocol error mapping; use urldesc... 2004-04-05 17:36:53 +00:00
Pierangelo Masarati
fa3baaeae9 overlays reworking 2004-03-18 18:59:46 +00:00
Pierangelo Masarati
66ee9b2d73 carefully check the URI 2004-03-17 22:36:47 +00:00
Pierangelo Masarati
ec6a663820 reset SlapReply flags 2004-03-17 11:50:15 +00:00
Pierangelo Masarati
246fa41c96 "searchFilter" by default must be empty 2004-03-10 21:53:39 +00:00
Pierangelo Masarati
65b49dd312 add "searchFilterAttrDN" rewrite context, and allow filterstring rewrite 2004-03-10 21:11:14 +00:00
Pierangelo Masarati
091246c6fd move limits evaluation to frontend 2004-03-08 18:12:45 +00:00
Pierangelo Masarati
5c6ec10f48 massage normalized DN when either is fine 2004-03-06 16:49:08 +00:00
Pierangelo Masarati
2b393962fc fix continuation of ITS#2999 2004-03-06 09:33:24 +00:00
Howard Chu
b480d7c9ff Added pwdexop request structure to avoid redundant parsing 2004-02-29 19:04:34 +00:00
Pierangelo Masarati
d015b9583c handle filter computed in a more granular way (ITS#2977) 2004-02-28 16:05:59 +00:00
Pierangelo Masarati
4e57108991 allow search limits based on groups (ITS#2967) 2004-02-18 16:40:36 +00:00
Pierangelo Masarati
1ac20b1f02 improve previous commit 2004-02-17 13:34:51 +00:00
Pierangelo Masarati
cb3d538ea3 allow no-user-modification propagations if back-ldap is used for replication (i.e. updatedn is defined) 2004-02-17 12:39:42 +00:00
Howard Chu
8a55795fbe ITS#2888 fix back-ldap to check result of send_search_entry. 
Make sure sizelimit errors are propagated.
 2004-02-13 02:44:13 +00:00
Pierangelo Masarati
d65f402058 improve fix to ITS#2923; note that suffix massaging is inherently flawed, because comperisons should always occur on Normalized DN, while massaging can also occur on Pretty DN, but there is no guarantee they have the same length or any length-based comparison can work; so in any case, we should pass the Normalized DN and, if the Pretty DN is present, massage it as well accordingly 2004-01-17 12:25:46 +00:00
Pierangelo Masarati
2c049ebb42 fix ITS#2923 2004-01-17 11:48:14 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Pierangelo Masarati
529a03df53 use dedicated admin identity to proxyAuthz 2003-12-13 10:57:42 +00:00
Howard Chu
b011c51390 Clean up entry initialization 2003-12-13 02:00:07 +00:00
Kurt Zeilenga
fbba83b20f notices and acknowledgements 2003-12-08 17:41:40 +00:00
Howard Chu
0690f79a5a Cleanup unknown config directive handling. 2003-12-07 07:07:00 +00:00
Howard Chu
c59e89de2f Clear ocflags 2003-12-06 14:39:07 +00:00
Howard Chu
2d07fc4f3b ITS#2740 - link librewrite statically into back-ldap when it's built 
as a module. Since back-meta also depends on back-ldap, this fixes
both at once.
 2003-12-04 10:50:36 +00:00
Kurt Zeilenga
ed369e02af Don't search for proxy authz control unnecessarily. 
Add note regarding control use with the Bind operation.
 2003-12-01 21:49:52 +00:00
Pierangelo Masarati
cdb11fc5eb add administrative bind and proxyAuthz control to enable bound operations in distributed directories (need to manually #define LDAP_BACK_PROXY_AUTHZ and patches from ITS#2851 and ITS#2852) 2003-12-01 08:04:51 +00:00
Pierangelo Masarati
2c68cb41f6 this memory will be freed by free() 2003-12-01 08:01:31 +00:00
Hallvard Furuseth
51f1b8ccd7 Avoid /* inside comments. 2003-11-29 17:29:44 +00:00
Kurt Zeilenga
a3d8cda201 notices and acknowledges 2003-11-27 06:35:14 +00:00
Kurt Zeilenga
e3a4c4ec9c Notice/Acknowledge updates 2003-11-26 02:58:56 +00:00
Pierangelo Masarati
a3deda8026 fix a number of mem leaks; add destroy code; HEADS-UP: API change in rewrite_info_delete() 2003-11-14 18:39:18 +00:00
Howard Chu
20902a2be3 Fix segfault if entry_get is called with NULL attribute 2003-09-20 07:48:57 +00:00
Howard Chu
aa3b69eb32 ITS#2440 unmunge init_module names 2003-06-12 22:25:20 +00:00
Howard Chu
9c47359912 Bind fixes for chaining 2003-06-11 22:35:31 +00:00