mirror/openldap
2
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-01-12 10:54:48 +08:00
Code Issues Packages Projects Releases Wiki Activity
21,629 Commits 38 Branches 307 Tags 75 MiB
9232232397
Commit Graph

308 Commits

Author SHA1 Message Date
Kurt Zeilenga
a5abeb92ec Update contrib notices to reflect that they are distributed as part of 
OpenLDAP Software (though they may not necessarily be supported by the
OpenLDAP Project).  Assistance in updating ACKNOWLEDGEMENTS welcomed.
 2009-08-16 22:55:23 +00:00
Howard Chu
6b07fdbb22 Revert prev commit, agi_mutex is needed sometimes. Need to eliminate the 
unnecessary cases still.
 2009-07-24 07:12:02 +00:00
Howard Chu
70981a30d9 Delete unnecessary agi_mutex 2009-07-24 06:59:40 +00:00
Howard Chu
c02131a8b8 Fix db_open, delete unused variables. More cleanup is needed. 2009-07-24 06:47:05 +00:00
Howard Chu
8fb96225a3 ITS#5535 replace private _kadm5_*_key functions with public hdb funcs 2009-06-26 04:08:47 +00:00
Howard Chu
973c1698cb Note that pam-session logging requires a rootdn 2009-06-04 12:26:29 +00:00
Howard Chu
a440584dfd Align SSD names with nsswitch.conf names 2009-06-04 12:21:16 +00:00
Howard Chu
ec11a76a62 Accept spaces in group names unless -DSTRICT_GROUPS 2009-06-03 02:58:16 +00:00
Howard Chu
8252b67ead Use rootdn for session updates 2009-06-03 02:51:40 +00:00
Howard Chu
72690a01e0 Fix whitespace 2009-06-03 02:36:21 +00:00
Howard Chu
ed90646556 Add tty arg to authz 2009-06-03 02:28:22 +00:00
Howard Chu
2f2802342f Do a mkdir on /var/run/nslcd before trying to create the socket 2009-06-03 02:20:56 +00:00
Howard Chu
2d93461817 Add tty to authz params 2009-06-03 01:46:37 +00:00
Howard Chu
6cc1cf81c1 Added ruser and rhost to authz params 2009-06-03 01:40:03 +00:00
Howard Chu
9e82dee243 Fix typo 2009-05-20 06:38:43 +00:00
Howard Chu
8ff986b1bc Note that host SSD must be configured for hostservice option 2009-04-29 02:41:26 +00:00
Howard Chu
94ec116fca Rewritten 2009-04-29 02:31:20 +00:00
Howard Chu
16662542af Fix typos, use uid2dn by default 2009-04-29 02:27:39 +00:00
Howard Chu
8da06617a7 Add nssov-pam-session keyword to select which services will be recorded 
in session management
 2009-04-29 00:29:11 +00:00
Quanah Gibson-Mount
8f8128d727 Add missing CVS tag 2009-04-28 03:05:46 +00:00
Emmanuel Dreyfus
e240d55c07 Add libtoolized makefile 2009-04-25 18:19:24 +00:00
Gavin Henry
6981c8fd04 slapo-nssov.5 draft. Please use as starting point. 2009-04-23 11:29:36 +00:00
Howard Chu
21f5405978 Use nslcd-mapped PAM error codes instead of actual PAM error codes 2009-04-23 08:23:58 +00:00
Howard Chu
50283523bd More for sessions, working. TODO: configure list of sessions to record 2009-04-23 07:56:40 +00:00
Howard Chu
4a6d46dfa9 More for session management 2009-04-23 00:38:41 +00:00
Howard Chu
42a7e05809 Reformat requests, rough pwmod support 2009-04-20 10:25:24 +00:00
Howard Chu
9b67609efb More for prev commit 2009-04-20 10:24:42 +00:00
Howard Chu
d8778432cf Added uidnumber checks 2009-04-20 03:53:09 +00:00
Howard Chu
8619215354 Use local_ssf for our fake connections 2009-04-20 03:37:52 +00:00
Howard Chu
d17d30dc38 sanity check for host_ad and svc_ad 2009-04-20 03:18:34 +00:00
Howard Chu
8fd0d184a7 Flesh out config options, implement authorization checks 2009-04-20 02:42:40 +00:00
Howard Chu
655881d0c4 Start documenting PAM support 2009-04-19 01:56:24 +00:00
Howard Chu
825870a072 We need the authorizedService schema 2009-04-19 01:15:22 +00:00
Howard Chu
d7fa38c003 Move tmpluser to authz call; add ppolicy support to authc 2009-04-18 23:12:36 +00:00
Howard Chu
51b87202e0 In uid2dn, only return success if a unique DN was found 2009-04-18 23:11:33 +00:00
Howard Chu
408e751200 Move tmpluser to authz call; print authz messages regardless of success 
status
 2009-04-18 23:10:58 +00:00
Howard Chu
20657af2de In pwmod, ctx may be empty so always pass current username 2009-04-18 01:44:22 +00:00
Howard Chu
609efdc0b3 *** empty log message *** 2009-04-18 00:50:14 +00:00
Howard Chu
f735dcc712 Add pam support (work in progress) 2009-04-17 12:18:51 +00:00
Howard Chu
8b5489e681 Add pam support (work in progress) 2009-04-17 12:11:33 +00:00
Howard Chu
016500f41d Add missing newlines to debug msgs 2009-04-17 12:10:27 +00:00
Howard Chu
7ad72fca15 Fix prev commit - work-in-progress 2009-04-17 07:23:15 +00:00
Howard Chu
856a790a28 Add missing newlines to debug msgs 2009-04-17 07:19:48 +00:00
Howard Chu
060f193af7 Fix typo in debug 2009-04-17 03:41:54 +00:00
Emmanuel Dreyfus
b697550ddc If the change set becomes empty, prevent other overlays from executing and 
return a success.
 2009-03-16 22:05:47 +00:00
Pierangelo Masarati
161169aa11 free self in case anything goes wrong 2009-03-14 16:41:58 +00:00
Pierangelo Masarati
3f58df73a5 don't short circuit callback list 2009-03-14 16:27:59 +00:00
Emmanuel Dreyfus
58437e838a Remove two useless lines (a badly applied patch before the last commit?) 2009-02-11 05:03:25 +00:00
Emmanuel Dreyfus
b5baf7fd01 libtoolize autogroup 
add install rules for autogroup, nops and smbk5pwd
 2009-02-07 22:10:24 +00:00
Quanah Gibson-Mount
dab20397a7 Add CVS header 2009-02-02 23:48:07 +00:00
Emmanuel Dreyfus
f3254b319d Add makefile for slapo-cloak 2009-02-02 22:14:07 +00:00
Quanah Gibson-Mount
43a35baf98 Add CVS header 2009-02-02 19:32:35 +00:00
Emmanuel Dreyfus
56e651a041 Missing stuff for proper linking of the module (sorry for the double commit) 2009-01-31 19:23:04 +00:00
Emmanuel Dreyfus
4e08a2da1b libtoolize 2009-01-31 18:42:59 +00:00
Howard Chu
ba0863d500 ITS#5660 SHA2 password hashes 2009-01-26 04:08:34 +00:00
Howard Chu
4fe69b3fc5 ITS#5410 add support for gcrypt ( GnuTLS ) 2009-01-26 03:58:33 +00:00
Kurt Zeilenga
4af9eb9715 Update copyright notices 2009-01-22 00:40:04 +00:00
Emmanuel Dreyfus
e281c948cb Move cloak config OID from overlay to contrib branch (ITS#5872) 2009-01-10 11:22:36 +00:00
Emmanuel Dreyfus
f1e2cc411f The cloak overlay hides some attributes unless explicitely requested (ITS #5872) 2009-01-09 05:26:28 +00:00
Pierangelo Masarati
920dca9762 improvements by David Hawes (ITS#5756) 2008-11-19 10:17:27 +00:00
Ralf Haferkamp
8e358f214c corrected filter and search limits in uid2dn function (ITS#5802) 2008-11-10 15:45:01 +00:00
Ralf Haferkamp
def11e2fce Fixed "nssov-map" handling when using slapd.conf (ITS#5801) 2008-11-10 14:48:06 +00:00
Ralf Haferkamp
1d468467e6 Don't crash on empty groups (ITS#5800) 2008-11-10 14:24:29 +00:00
Ralf Haferkamp
93f3ae50db Adapt to recent changes in filter_free_x() interface 2008-11-07 13:38:30 +00:00
Pierangelo Masarati
d641477db0 more about ITS#5732 2008-11-01 14:30:14 +00:00
Howard Chu
da347b78b9 ITS#5766 honor principal expiration 2008-10-30 15:56:48 +00:00
Howard Chu
bcbb456391 remove references to OpenLDAP 2.4.6 2008-09-04 02:15:21 +00:00
Howard Chu
e7383994fb ITS#5575, passwords now need to be NUL-terminated by us 2008-06-23 19:32:45 +00:00
Howard Chu
329f4e53c8 s/must/may/ - SSDs are available whether configured or not 2008-06-21 19:13:23 +00:00
Hallvard Furuseth
70a964e64d nitpicks 2008-06-16 12:57:26 +00:00
Gavin Henry
f2433f5b9f Read over, update using work from hallvard and spell check. 2008-06-16 11:20:25 +00:00
Hallvard Furuseth
64f2ea996f Initial revision 2008-06-14 18:18:08 +00:00
Howard Chu
c682cce27c nss-ldap overlay, built with nss-ldapd-0.6.2 2008-06-02 12:08:05 +00:00
Emmanuel Dreyfus
7baff7393c Use DES_* functions instead of deprecated des_* 2008-05-20 05:18:33 +00:00
Emmanuel Dreyfus
364b87f587 Here is slapo-nops, used to remove idempotent operations (i.e.: replacing 
an attribute values by the exact same values)
 2008-05-19 22:44:08 +00:00
Howard Chu
78a1714ad9 Fix bogus whitespace from 1.18 2008-04-03 09:48:39 +00:00
Howard Chu
ef852b01aa Cleanup 2008-03-04 01:11:19 +00:00
Hallvard Furuseth
cd63a0c43b Warning cleanup: function ptr <=> void* at ldap_pvt_thread_pool_<set/get>key() 2008-01-11 06:07:43 +00:00
Hallvard Furuseth
2ab2740cbb ldap_pvt_thread_pool_getkey() arg 'data' should point to a void* variable 2008-01-08 16:23:05 +00:00
Kurt Zeilenga
c890c96d13 Happy New Year (belated) 2008-01-08 00:19:56 +00:00
Pierangelo Masarati
30f401c628 rename ldap_pvt_thread_pool_setkey_x() to ldap_pvt_thread_pool_setkey() (as part of ITS#5309) 2008-01-07 21:35:03 +00:00
Howard Chu
ea9863bf6c Assign contrib config OID 2007-12-28 07:51:00 +00:00
Pierangelo Masarati
20f2548c82 fix declarations of buffers for numeric strings; other related cleanup 2007-12-15 15:23:23 +00:00
Howard Chu
946e859108 ITS#5145 autogroups, with minor cleanup 2007-12-15 11:48:56 +00:00
Gavin Henry
da801e3db0 addpartial overlay update for 2.4.6 (ITS#3593) 2007-11-14 18:05:07 +00:00
Howard Chu
6db8d0d1b5 Init/destroy mutex 2007-09-27 19:20:04 +00:00
Howard Chu
e6d027ae8f Microsoft-style Update Sequence Numbers 2007-09-27 02:09:38 +00:00
Howard Chu
148afe6aa0 Add Modifications / sml_numvals 2007-09-23 00:22:47 +00:00
Howard Chu
75df004a04 Use OLcfgCt{Oc|At} arc for contrib modules 2007-09-22 23:58:54 +00:00
Ralf Haferkamp
1585022fde Adopted to latest API changes 2007-08-03 12:17:47 +00:00
Gavin Henry
780f25c512 New module. ITS#3593 2007-07-27 11:08:09 +00:00
Pierangelo Masarati
5616af14c3 needs portable.h 2007-06-02 11:31:17 +00:00
Pierangelo Masarati
bf144a4ec0 apply fixes in ITS#4951 (tested) 2007-05-13 23:14:55 +00:00
Kurt Zeilenga
da6d9eb046 happy new year 2007-01-02 20:00:42 +00:00
Pierangelo Masarati
0544badf19 move slapo-denyop to contrib/slapd-modules/debyop/ 2006-12-28 16:30:53 +00:00
Pierangelo Masarati
9fc7cd7267 move slapo-lastmod to contrib/slapd-modules/lastlog/ (ITS#4701) 2006-12-28 16:30:33 +00:00
Pierangelo Masarati
26c2c98196 move slapo-lastmod to contrib/slapd-modules/lastlog/ (ITS#4701) 2006-12-28 16:23:57 +00:00
Pierangelo Masarati
b11f35f104 fix typo 2006-12-17 22:34:35 +00:00
Howard Chu
e05fdb41fc Check for failure from k5adm init 2006-12-15 16:38:45 +00:00
Luca Scamoni
fbed376e2d add support for "sambaPwdCanChange" 2006-09-21 09:17:05 +00:00
Pierangelo Masarati
a9c4b54f1b really really minor cleanup 2006-09-08 21:19:05 +00:00
Pierangelo Masarati
864e276981 always try to open config; NULL means use default 2006-05-12 14:42:49 +00:00
Pierangelo Masarati
f35a55398a add (basic) support for {RADIUS} scheme; userPassword attributes prefixed with {RADIUS} are interpreted as RADIUS userids and authentication occurs contacting the configured RADIUS servers with that userid and the provided password (experimental; please report) 2006-05-12 12:03:05 +00:00
Howard Chu
b623699a44 Support for obsolete proxy authorization control 2006-03-30 08:22:39 +00:00
Pierangelo Masarati
4d9fc0e85d improve logging 2006-01-14 18:59:46 +00:00
Pierangelo Masarati
a76a78096d trace overlay: traces overlay execution 2006-01-14 18:44:55 +00:00
Kurt Zeilenga
acbb5cf689 Happy new year! 2006-01-03 23:11:52 +00:00
Pierangelo Masarati
bfdceee00f fix typo in last commit 2005-12-21 00:22:37 +00:00
Pierangelo Masarati
d34fffcaf9 use lutil_ato*() whenever appropriate 2005-11-24 01:10:05 +00:00
Pierangelo Masarati
754e59543d cleanup 2005-11-20 01:39:19 +00:00
Pierangelo Masarati
8f0d3530e2 fix previous commit; use table-driven attribute description lookup 2005-11-14 12:33:40 +00:00
Pierangelo Masarati
450e3aaaec refine previous commit 2005-11-14 11:23:03 +00:00
Pierangelo Masarati
8520a8dfd7 cleanup in case of failure 2005-11-12 16:24:12 +00:00
Pierangelo Masarati
29fab9cfd4 add support for "sambaPwdMustChange"; add support for back-config 2005-11-12 16:18:09 +00:00
Pierangelo Masarati
c2d9d642f9 cleanup 2005-10-13 22:28:30 +00:00
Pierangelo Masarati
c5e6f6db13 silence warnings for DO_SAMBA build 2005-10-13 22:23:02 +00:00
Pierangelo Masarati
c365b701cb reflect API changes 2005-08-22 16:31:23 +00:00
Pierangelo Masarati
3b4b9cbc33 check software version 2005-08-22 09:28:13 +00:00
Pierangelo Masarati
0b9988ab8d moved from servers/slapd/overlays 2005-08-22 09:14:12 +00:00
Pierangelo Masarati
35de807a93 add posixGroup access control via dynacl as an example of how dynacl work 2005-08-17 14:32:27 +00:00
Howard Chu
5944f306d7 ITS#3910 heimdal 0.7 compatibility, silence warnings 2005-08-11 21:05:19 +00:00
Pierangelo Masarati
3d69f55986 fix headers (ITS#3896) 2005-07-27 23:32:29 +00:00
Howard Chu
0bb80f0ccd Add note about shared library requirements 2005-07-02 10:21:03 +00:00
Howard Chu
18714cee18 Add SLAP_MOD_INTERNAL flag on mod ops if it's defined 2005-06-04 09:57:27 +00:00
Sang Seok Lim
62c62f039f Bug fix in Component Matching for CRL support 2005-05-09 01:06:06 +00:00
Howard Chu
7862d5d014 Partial revert, must use lower-case hex 2005-04-08 23:33:26 +00:00
Howard Chu
2ee11b3744 cleanup whitespace, use upper case hex for nt/lm 2005-04-07 02:26:14 +00:00
Howard Chu
6b784de0df ITS#3635 fix input to lmhash 2005-04-07 02:23:17 +00:00
Sang Seok Lim
7c91b8a327 Componant matching routines for CRL support 2005-03-29 00:10:16 +00:00
Sang Seok Lim
f13d97e09c Fix memory leak in a component encoder 2005-02-10 16:58:56 +00:00
Howard Chu
9a279634b0 Rename k5key symbols, add k5key_hash 2005-01-24 21:46:06 +00:00
Howard Chu
d74f40b650 Add description of {K5KEY} password mech 2005-01-13 19:07:23 +00:00
Howard Chu
5ebc834c7b Plug krb5 memleaks, add {K5KEY} passwd check mechanism 2005-01-13 09:56:52 +00:00
Kurt Zeilenga
dc0eacd40b Happy New Year! 2005-01-01 20:49:32 +00:00
Kurt Zeilenga
dcb21284c6 Fix bad merge 2004-12-29 17:34:41 +00:00
Sang Seok Lim
7b1f2d85b0 Bug fix: invalid return value 2004-12-25 06:44:29 +00:00
Sang Seok Lim
27c817217b README updated 2004-12-23 20:25:12 +00:00
Sang Seok Lim
190c17b3c8 MACRO value adjustment for x509 Certificate 2004-12-21 05:58:25 +00:00
Sang Seok Lim
b07fc2e6be Enabling sharing component descriptions of primitive ASN.1 types 2004-12-21 04:44:19 +00:00
Sang Seok Lim
726e880993 invalid path 2004-12-20 16:53:41 +00:00
Sang Seok Lim
c863425358 fix snacc buffer memory leak 2004-12-20 16:53:05 +00:00
Sang Seok Lim
9eee2b8d91 code cleanup 2004-12-20 03:49:58 +00:00
Sang Seok Lim
28a967584d Component Indexing support for BDB 
- only for equality matching
- only components of ASN.1 types used in an X.509 certificate can be indexed
(composite types except for RDN and DN are not supported yet)
- how to use
index [attribute name].[component reference] eq
Ex)
index userCertificate eq
index userCertificate.toBeSigned.issuer.rdnSequence eq
index userCertificate.toBeSigned.serialNumber eq
index userCertificate.toBeSigned.version eq
 2004-12-20 03:31:44 +00:00
Sang Seok Lim
3492452a5b 1) <select> and <content> type component reference support 
2) attribute aliasing support
- x509CertificateIssuer
- x509CertificateSerial
- x509CertificateIssuerAndIssuer
3) AuthorityKeyIdentifier support(one of certificate extension)
4) Misc. improvement
- integrate OID and its decoder mapping table
- normalize and validate the values of both component asserions and
  extracted components
5) Misc. bug fix
 2004-12-13 16:26:58 +00:00
Sang Seok Lim
d6a3dd512c Bug fix 
GSER/BER decoders: return code and memory leackage
 2004-12-06 01:26:38 +00:00
Sang Seok Lim
98485f5247 1) existing matching rules support in component filter 
2) remove double buffering for decoded component values
3) caching decoded component assertion values
 2004-12-01 22:11:55 +00:00
Sang Seok Lim
5314ac0116 Component library for GSER encoders of primitive types 2004-11-29 23:11:21 +00:00
Sang Seok Lim
decfd7217f 1) <all> type component reference support 
2) nibble type memory support when decoding
3) description type object identifier support
4) OPTIONAL, DEFAULT support in certificate decoder/extractor/matching
5) Misc bug fix
 2004-11-29 20:21:38 +00:00
Sang Seok Lim
a90e63fde0 ComponentFilterMatch support for userCertificate 2004-11-14 20:11:38 +00:00
Jong Hyuk Choi
d16c45d147 Misc cleanup 2004-10-27 22:39:54 +00:00
Sang Seok Lim
71e78dd7f9 Component Matching module 
See "contrib/slapd-modules/comp_match/README" to understand
what's the purpose of  this patch is and how to use it.
 2004-10-27 19:37:02 +00:00
Howard Chu
41e53b5a25 Experimental Samba and Heimdal password synchronization overlay. 2004-04-02 13:06:38 +00:00
Howard Chu
6cb76b54e8 Use LUTIL_PASSWD_{ERR,OK} result codes 2004-03-17 21:36:39 +00:00
Luke Howard
bad4a24449 Use AC_MEMCPY rather than memcpy() - has overlapping regions 2004-02-28 02:59:58 +00:00
Howard Chu
9f3d15efb7 Copied unsupported password mechanisms to here. Move more as necessary. 2004-01-25 13:07:52 +00:00
Luke Howard
0354426a98 Update copyright notice 2004-01-10 05:05:56 +00:00
Luke Howard
895c0ec421 *** empty log message *** 2004-01-10 05:00:04 +00:00
Luke Howard
016f332624 Add some sample plugins 2004-01-10 04:54:24 +00:00