Commit Graph

206 Commits

Author SHA1 Message Date
Pierangelo Masarati
a317f01dc1 improve pagedResults ignoring (hopefully) 2004-06-16 15:26:21 +00:00
Kurt Zeilenga
0ae37bd468 Add SLAP_BFLAG_NOLASTMODCMD backend flag. When set, use of
the lastmod command will fail.  To be set by backends
(e.g., back-ldap) which force the value of SLAP_DBFLAG_NOLASTMOD
database flag.
2004-06-16 04:47:21 +00:00
Pierangelo Masarati
c0490482d6 ignore the control if page is larger than requested sizelimit (as per RFC) 2004-06-12 17:37:37 +00:00
Kurt Zeilenga
5a7f9858fe cleanup 2004-05-24 23:23:50 +00:00
Kurt Zeilenga
13c70ed410 fix up error handling, including disallowing sync+pagedResults combinations. 2004-05-15 19:26:48 +00:00
Pierangelo Masarati
2e09e645ba promoted proxyAuthz to STATS log level 2004-05-13 22:47:24 +00:00
Pierangelo Masarati
08a8e7b8c3 empty ID should be fine according to draft-weltman-ldapv3-proxy 2004-05-13 20:18:37 +00:00
Pierangelo Masarati
7be90a7ddf remove unused structure member ps_id 2004-04-17 15:01:13 +00:00
Pierangelo Masarati
c846d75b8b lots of cleanup 2004-04-13 16:47:23 +00:00
Pierangelo Masarati
fadf3398d4 honor size limits when using paged results 2004-04-09 11:44:28 +00:00
Kurt Zeilenga
44725e7303 use BER_BVNULL 2004-04-07 04:11:43 +00:00
Kurt Zeilenga
a2b2dfd461 Hide noop control until published and code is updated. 2004-03-18 04:06:20 +00:00
Luke Howard
d249714033 s/SERVER_SEARCH_FLAG/SEARCH_FLAG 2004-03-09 14:12:34 +00:00
Luke Howard
87a02dbb14 Support server search flag control as alias for permissive modify
Recognise tree delete control - needs backend support
2004-03-09 14:05:01 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Howard Chu
8aaaad0dd7 Revert to simple authzID behavior 2003-12-23 14:27:54 +00:00
Kurt Zeilenga
3eb5337020 Make modify/increment conditional 2003-12-17 21:42:48 +00:00
Pierangelo Masarati
f2a9089e4d cleanup most of the -pedantic warnings (ITS#2884) and other small fixes 2003-12-17 20:55:46 +00:00
Pierangelo Masarati
ee34f3fb64 add to 'val[.<style>=<value>' ACLs special match styles for DN-valued attributes; add negated objectClass to attribute name lists for ACLs and partial replication 2003-12-16 00:49:10 +00:00
Pierangelo Masarati
bc972e0656 allow 'AUTHZ' mech in proxyAuthz control to allow also the <mech> part of the 'u:' user 2003-12-15 18:19:14 +00:00
Pierangelo Masarati
4602c935f7 saslAuthzTo/From stuff
when comparing IDs to saslAuthzTo/From values, the saslAuthzTo
saslAuthzFrom values can take different forms:

dn[.<style>]:<pattern>

<style> ::= 	exact		; exact match
		children	; children of <pattern> match
		subtree		; <pattern> or children of <pattern> match
		regex		; <pattern> is regcomp() & regexec()
if no <style>, then exact is assumed

u[.<mech>][/<realm>]:<user>

when parsing a proxyAuthz value, only exact DN is allowed,
and no <mech> can be specified.  <user> cannot contain ':'
and <mech> cannot contain '/'.
2003-12-13 23:02:59 +00:00
Kurt Zeilenga
38ccdaf7a3 unifdef -DLDAP_CONTROL_PAGEDRESULTS (as it is always defined) 2003-12-08 18:16:07 +00:00
Kurt Zeilenga
4e15a84452 Updated notices 2003-11-27 01:17:14 +00:00
Kurt Zeilenga
21796e671a Don't assume offsetof(foo,firstelement) is zero 2003-11-19 18:04:49 +00:00
Jong Hyuk Choi
f3586499d0 update ldapsync/syncrepl code according to the new version of
the protocol (draft-zeilenga-ldup-sync-04)
2003-11-11 20:25:19 +00:00
Jong Hyuk Choi
279760a467 1. Session history support
- memory based session history to minimize sync traffic
	- when client is covered by a session history, then
      [add+delete] mode is used
	- when client cookie is not covered by the history because
      the cookie is too outdated and/or the history is truncated,
	  [add+present] mode is used
2. Sync cookie syntax : comma separated name=value pairs
	- csn=yyyymmddhh:mm:ssZ#0xSSSS#r#ssssr,sid=nnn
2003-11-10 02:44:25 +00:00
Kurt Zeilenga
a9a28794bd Hide experimental controls 2003-09-19 18:38:35 +00:00
Kurt Zeilenga
99f968b597 Initial support for pre/post read controls.
TODO:
	Fix transactional consistency
	Add client response control handling
2003-09-16 18:56:04 +00:00
Jong Hyuk Choi
090ac0a772 unifdef LDAP_SYNC and LDAP_SYNCREPL 2003-08-27 22:16:04 +00:00
Kurt Zeilenga
b54780f940 Add initial support for modify/increment. No over/under flow detection.
Currently discovered via a "feature", but should use a control.
Start of a control made, but needs to be better integrated (with
auto use in ldapmodify(1)).
2003-08-07 16:42:40 +00:00
Jong Hyuk Choi
262f8bf11f LCUP primitive routines removed 2003-06-27 17:39:48 +00:00
Hallvard Furuseth
6b37465d94 Fix printf format in debug output. 2003-06-11 15:50:25 +00:00
Kurt Zeilenga
3ca2a91ae1 Assertion control with no backend support (yet) 2003-06-10 02:19:30 +00:00
Kurt Zeilenga
16af7fdd4c Hide experimental controls and extended operations 2003-05-31 20:19:02 +00:00
Howard Chu
9dace23dec Change slap_sasl_authorized to take an Operation instead of a Connection,
for compatibility with proxyAuthz control
2003-05-24 02:44:46 +00:00
Howard Chu
f897519d11 Minor cleanups 2003-04-09 23:37:00 +00:00
Howard Chu
813d5c8ed8 First cut at thread-local malloc. Only used by search() for now...
Needs work in normalizers, etc.
2003-04-09 16:52:03 +00:00
Kurt Zeilenga
c75be97ae9 #ifdef -DSLAP_NVALUES 2003-04-05 03:35:16 +00:00
Howard Chu
fa9bf23501 Minor cleanup 2003-03-31 07:49:34 +00:00
Howard Chu
e8c58b4e7f Major API change - (SLAP_OP_BLOCKS) All request parameters are
consolidated into the Operation structure. All reply parameters
are consolidated into the new SlapReply structure. Most operations
now have identical call signatures... Changes are not #ifdef'd,
revert to -r NO_SLAP_OP_BLOCKS if necessary to back out.
2003-03-30 09:03:54 +00:00
Howard Chu
55fea9715e Plug leaks in controls_destroy() 2003-03-14 09:42:18 +00:00
Kurt Zeilenga
2d942d7035 Use renamed initializers 2003-03-02 03:15:16 +00:00
Pierangelo Masarati
46a841870f add 'next[/prev]' initializer 2003-03-01 12:28:07 +00:00
Luke Howard
cc39f75261 Support for dynamic registration of controls, both through native and
SLAPI plugins.
2003-02-28 12:34:35 +00:00
Howard Chu
979e5073cf Revert previous kludge in controls.c, use ldap_pvt_thread_pool_context
instead if c_sasl_bindop is NULL.
2003-02-16 19:34:29 +00:00
Howard Chu
09585ad3d0 Kludge - set conn->c_sasl_bindop before calling slap_sasl_getdn, otherwise
op->o_threadctx is inaccessible.
2003-02-16 12:23:00 +00:00
Kurt Zeilenga
737f4b0d34 Misc LCUP cleanup 2003-02-09 08:43:20 +00:00
Kurt Zeilenga
c04e9ac993 rename "permit modify" control to "permissive modify"
rename "no referrals" controls to "domain scope"
misc cleanup
2003-02-09 05:39:21 +00:00
Kurt Zeilenga
48d47954a6 Rework #ifdef'ing of expermental controls to ease release engineering
using LDAP_DEVEL (to indicate experimental) to enable experimental features
(true for HEAD unless LDAP_REL_ENG is defined)
2003-02-08 21:53:05 +00:00
Pierangelo Masarati
982969a4ce cleanup 2003-02-07 15:18:43 +00:00
Jong Hyuk Choi
85b1783d5c LDAP Sync Operation (draft-zeilenga-ldup-sync) as a groundwork for an LDAP replication design 2003-02-05 07:37:02 +00:00
Luke Howard
7759f75d76 Test PermitModify and NoReferrals controls (note that PermitModify is
ignored for the moment - will be fixed shortly)
2003-01-23 15:22:20 +00:00
Hallvard Furuseth
3bd76701d1 Fix printf format errors. 2003-01-19 14:07:02 +00:00
Hallvard Furuseth
265b7e22c6 Insert missing initializers, to silence gcc warnings. 2003-01-19 13:38:44 +00:00
Kurt Zeilenga
6939c53170 Happy new year 2003-01-03 20:20:47 +00:00
Kurt Zeilenga
e9ab2f8d06 Catch NULL control OID up front. 2002-12-07 18:35:22 +00:00
Pierangelo Masarati
1b70e16448 SLAPI - Netscape plugin API for slapd - based on patch contributed by Steve Omrani <somrani@us.ibm.com> as ITS#2073 2002-12-07 17:19:29 +00:00
Kurt Zeilenga
db98e44d6a Finish proxy authzid control 2002-12-05 18:14:02 +00:00
Julius Enarusai
9b5ec8f43b Fixed minor compile errors in LDAP_LOG debug statements. 2002-12-03 17:06:58 +00:00
Kurt Zeilenga
da76c1951e First-cut proxy authorization support. 2002-12-03 06:11:32 +00:00
Kurt Zeilenga
8754c8f2a3 #unifdef paged results, remove lint 2002-11-28 04:38:41 +00:00
Pierangelo Masarati
9ccf63f327 remove paged results cruft 2002-11-21 22:37:06 +00:00
Pierangelo Masarati
b26ecba01a - allow interactive pagedResults size change
- implement pagedResults abandon by setting size=0
- misc code cleanup
2002-11-21 03:36:37 +00:00
Pierangelo Masarati
c354bb23bf Support for RFC 2696:
LDAP Control Extension for Simple Paged Results Manipulation

contributed by Lynn Moss <lynnmoss@us.ibm.com> (ITS#2189)

applied with changes.
2002-11-21 02:16:53 +00:00
Jong Hyuk Choi
8074294f1d LCUP persistent search code drop 2002-10-25 17:51:30 +00:00
Kurt Zeilenga
1d0e916c6f Misc CLIENT_UPDATE cleanups 2002-09-15 22:22:51 +00:00
Jong Hyuk Choi
1509e321de LCUP Response Control Code 2002-09-14 00:29:06 +00:00
Kurt Zeilenga
37d9880495 Some LCUP clean up 2002-09-06 00:29:20 +00:00
Jong Hyuk Choi
4b48c05a8e LDAP Client Update Protocol - non-persistent update (TODO: response control ...) 2002-09-04 02:00:42 +00:00
Kurt Zeilenga
132506e13c Add NOOP search support. 2002-09-02 17:38:17 +00:00
Kurt Zeilenga
c5b6a86502 Fix IRIX sc_mask conflict 2002-08-13 02:32:57 +00:00
Julius Enarusai
6107ba67d2 Coverted LDAP_LOG macro to use subsystem ID int values instead of string values 2002-07-11 20:33:24 +00:00
Kurt Zeilenga
8c152396b9 Matched Values implementation (ITS#1776) based upon submission
form Mikhail Sahalaev <M.Sahalayev@pgr.salford.ac.uk>.
Further work needed:
	add testxxx-matchedvalues
	rework ldapsearch(1) portion of patch to generalize use of options
---
Copyright 2001, Mikhail Sahalaev, All rights reserved.
This software is not subject to any license of University Of
Salford.

Redistribution and use in source and binary forms are permitted
without restriction or fee of any kind as long as this notice
is preserved.
2002-05-02 18:56:56 +00:00
Kurt Zeilenga
0be4d842bc Update control framework
Misc cleanup
NT updates
2002-03-24 02:17:21 +00:00
Pierangelo Masarati
49f324a1fa fix ITS#1671 and more 2002-03-23 16:53:44 +00:00
Kurt Zeilenga
348e489b35 #ifdef experimental controls 2002-02-18 19:48:27 +00:00
Kurt Zeilenga
fcf835558e improve log message 2002-02-12 22:55:36 +00:00
Kurt Zeilenga
2f6e801ab1 Fix overly complex control management 2002-02-12 18:47:48 +00:00
Howard Chu
010e94d4de Fix ITS#1573 spelling errors 2002-01-31 14:12:06 +00:00
Kurt Zeilenga
14662be692 Add whoami extended operation.
Add no-op control (needs backend implementation)
Updated modify password extended option API
Kludged control infrastructure to support frontend only controls
2002-01-28 20:25:30 +00:00
Kurt Zeilenga
d2f5d75885 Remove unused deprecated DN routines.
Only dn_validate, dn_normalize, and dn_parent remain (for now).
2002-01-16 00:16:51 +00:00
Kurt Zeilenga
39c02506de Fix problems caused by lint removal 2002-01-09 18:18:36 +00:00
Kurt Zeilenga
bc1cd95149 Rework control infrastructure a bit. Add subentries visibility control. 2002-01-09 06:29:54 +00:00
Kurt Zeilenga
2958cb4dd0 A subentries control framework 2002-01-09 00:05:49 +00:00
Kurt Zeilenga
eaf3264184 Add some critical control checks. 2002-01-06 00:36:55 +00:00
Kurt Zeilenga
0e2af54a3f Update copyright statements 2002-01-04 21:17:25 +00:00
Kurt Zeilenga
30831a4012 misc cleanup 2001-12-09 18:57:46 +00:00
Kurt Zeilenga
ab6f9bd352 Remove lint 2001-12-09 03:19:23 +00:00
Kurt Zeilenga
60c5e77cd6 Fix disconnect bug 2001-05-06 20:01:18 +00:00
Gary Williams
80ab3d6a6e fix logging line 2001-03-02 14:17:01 +00:00
Gary Williams
f49fd8a98e fix format 2001-01-17 16:35:53 +00:00
Gary Williams
d531a20f52 more new logging (finally), behind NEW_LOGGING 2001-01-11 17:11:23 +00:00
Kurt Zeilenga
43f3e1e9b2 Remove not to be implemented control. 2000-06-06 04:50:24 +00:00
Kurt Zeilenga
4bc786f34b Y2k copyright update 2000-05-13 02:47:56 +00:00
Kurt Zeilenga
ac7f6c2e37 Replace do_*() return -1 with return SLAPD_DISCONNECT.
Only return SLAPD_DISCONNECT with a send_ldap_disconnect()
was called.
Add initial code for support predetermined filter results
when filter is undefined (or known to be true or false).
2000-02-29 23:48:01 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
1999-12-08 04:37:59 +00:00
Howard Chu
ed05ed8025 Fix memory losses, ITS#379 1999-12-03 00:21:32 +00:00
Kurt Zeilenga
3d0dd02b17 Advertise LDAP_CONTROL_X_CHANGE_PASSWD.
Implementation coming soon.
1999-11-17 23:43:25 +00:00
Kurt Zeilenga
403f4479bc Add OpenLDAP RCSid to *.[ch] in clients, libraries, and servers.
Replace old Id as needed (back-tcl).
Leave updating of contribWare to contributors (for now).
1999-09-08 19:06:24 +00:00
Hallvard Furuseth
aad3c488da Add <ac/string.h> 1999-08-17 21:21:43 +00:00
Kurt Zeilenga
3f91cffa15 Fix unknown critical extensions. 1999-07-22 05:06:41 +00:00
Kurt Zeilenga
42304b7ada Fix control parsing and controls free routine. 1999-07-22 04:47:58 +00:00
Kurt Zeilenga
73276e84ae Import experimental referral implementation from OPENLDAP_DEVEL_REFERRALS.
Includes support for update referral for each replicated backend.
	Reworked replication test to use update referral.
Includes major rewrite of response encoding codes (result.c).
Includes reworked alias support and eliminates old suffix alias codes
(can be emulated using named alias).
Includes (untested) support for the Manage DSA IT control.
Works in LDAPv2 world.  Still testing in LDAPv3 world.
Added default referral (test009) test.
1999-07-16 02:45:46 +00:00
Kurt Zeilenga
e9c2895472 Add support for unsolicited notifications. 1999-07-07 18:51:39 +00:00
Kurt Zeilenga
7541ccbe10 Fix CRITICIAL typo. 1999-07-07 18:32:41 +00:00
Kurt Zeilenga
32cefa43a0 Add controls.c: initial version of get_ctrls() 1999-07-05 23:04:35 +00:00