Pierangelo Masarati
a453d7eacf
dn_validate/dn_normalize has been rewritten by
...
David A. Cooper <david.cooper@nist.gov> (ITS#1232)
according to draft-ietf-ldapbis-dn-05.txt
A copyright statement follows:
The functions normalize_unicode(), get_hexpair(), write_hex_pair(),
get_next_byte(), get_next_char(), get_ber_length(),
ber_parse_primitive_string(), ber_parse_string(), String_normalize(),
DirectoryString_normalize(), PrintableString_normalize(),
IA5String_normalize(), ber_parse_primitive_bitstring(),
ber_parse_bitstring(), getNext8bits(), bitString_normalize(), match_oid(),
match_key(), get_validated_av_in_dn(), get_validated_rdn_in_dn(),
and get_validated_dn() in this file were developed at the National Institute
of Standards and Technology by employees of the Federal Government in the
course of their official duties. Pursuant to title 17 Section 105 of the
United States Code the code in these functions is not subject to copyright
protection and is in the public domain. The copyright for all other code in
this file is as specified below.
2001-07-13 08:21:14 +00:00
Pierangelo Masarati
bff5608926
protos and declarations for charray and rdn stuff
2001-07-06 12:23:22 +00:00
Randy Kunkee
a9097044ea
Remove global_backendsyncfreq code (code has been pushed down into back-ldbm).
2001-06-28 18:02:46 +00:00
Randy Kunkee
d492880870
Add sync_daemon to daemon.c, enabled by global configuration
...
backendsyncfreq <seconds>. Setting this automatically enables
dbnosync (because the synchronizer takes care of it).
2001-06-22 08:38:58 +00:00
Kurt Zeilenga
67cf14466e
Check schema NAMEs
2001-06-07 22:47:02 +00:00
Kurt Zeilenga
cc6fab319e
Add support for separate max incoming for anonymous and authenticated
...
sessions (defaults: 256K and 16M respectively).
2001-05-29 20:00:55 +00:00
Kurt Zeilenga
0aef7722e6
Add support for obsolete attributes.
...
We don't support collective attributes (yet).
Remove exit() calls from scheme parsers. Need to do same for acl parser.
2001-05-17 07:31:59 +00:00
Kurt Zeilenga
1669cd4d7b
Add '=' to printableString to be consistent with ASN.1 description
...
of syntax. RFC 1778/2252 are wrong and will need to be updated.
2001-05-16 19:20:29 +00:00
Kurt Zeilenga
4baa7c47da
Add better modlist2mod error reporting (to client)
2001-05-10 03:41:17 +00:00
Kurt Zeilenga
24ea49810f
Clean up some #ifdefs
2001-05-09 23:42:49 +00:00
Kurt Zeilenga
abce5abf34
Quick sb_max_incoming hack, should be configurable (likely
...
with differing anonymous vs authenticated values).
2001-05-04 21:55:07 +00:00
Kurt Zeilenga
1eb0170482
s/<anonymous>/cn=anonymous/ to avoid syntax issues
2001-04-19 19:29:38 +00:00
Kurt Zeilenga
10730ca226
Add objectClass kind checking
...
Kludge NADF schema to conform
2001-01-22 08:09:25 +00:00
Kurt Zeilenga
79d9ab38ba
Add more restrictive numeric string validate.
...
Need to rework IA5 matching to support empty strings as they should
be allowed for most string types (excepting directoryString).
2001-01-17 21:02:11 +00:00
Mark Adamson
2231d5e64e
Make SASL authorization work for NULL, "u:", and "dn:" authz strings.
2000-11-30 22:00:15 +00:00
Kurt Zeilenga
451146f795
Update validation of printable-like syntaxes
2000-11-04 21:09:23 +00:00
Kurt Zeilenga
17bcb2b3bb
Update printableString to restrict characters per RFC1778 not isprint()
2000-11-04 20:31:50 +00:00
Julio Sánchez Fernández
5b52ae5109
Extend MRA. It now has a pointer to a MatchingRule, but a char
...
pointer is kept for messages and to tell a filter without rule
from one with an unknown rule. It matters.
2000-10-15 19:10:43 +00:00
Julio Sánchez Fernández
6777a3a41a
Permit access defined by uniqueMember and not only DN-valued
...
attributes. This allows using groupOfUniqueNames for
access control.
Fix small typo in MRA definition.
2000-10-09 19:09:22 +00:00
Kurt Zeilenga
7c96f629ee
Add connection and operation arguments to backend callbacks.
...
Needed for transactions.
2000-09-29 05:25:44 +00:00
Kurt Zeilenga
ce382475f0
misc cleanup
2000-09-29 02:50:34 +00:00
Mark Adamson
bf1ee530ea
Implementation of SASL authorization.
2000-09-21 17:32:54 +00:00
Kurt Zeilenga
3342ea3b49
Add more bind allow/disallow flags
2000-09-11 18:24:24 +00:00
Kurt Zeilenga
2e13824d0d
Add "allow tls_2_anon" to allow StartTLS to force session to anonymous.
...
Add "disallow tls_authc" to disallow StartTLS when session is authenticated.
Create and use connection2anonymous routine for consistency.
2000-09-08 22:59:01 +00:00
Kurt Zeilenga
cee040a321
Bring UCdata infrastructure.
2000-09-03 23:48:35 +00:00
Kurt Zeilenga
bf3df2f7a6
restrictops, requires, disallow knobs; ssf acls; and misc other changes
...
man pages to follow...
2000-08-28 18:38:48 +00:00
Kurt Zeilenga
1c328aa9c7
Minor typedef and other clean ups
2000-08-26 01:14:05 +00:00
Kurt Zeilenga
a7ec3506cf
change "substr" to imply initial, any, final indexing.
2000-08-22 21:33:09 +00:00
Kurt Zeilenga
02f888c563
First cut of LDBM substrings indexing. Needs testing.
2000-08-22 21:26:25 +00:00
Kurt Zeilenga
32c7186b9c
Add frontend support for "any" substrings assertions.
...
Needs to be tied into index mask and backend search code.
2000-08-22 02:23:52 +00:00
Kurt Zeilenga
7800d2d41e
Remove cldap cruft
2000-08-18 03:35:19 +00:00
Kurt Zeilenga
a50f391bb3
Working SASL security layers!
2000-07-28 00:04:07 +00:00
Kurt Zeilenga
6c41d272cf
Update framework to support registration of approximate matching
...
rules.
2000-07-24 21:29:30 +00:00
Kurt Zeilenga
3a73af57c1
conform schema routines to ldap naming conventions
2000-07-22 17:30:44 +00:00
Kurt Zeilenga
ce63e21f00
New slapindex framework (no meat)
2000-07-19 02:24:08 +00:00
Kurt Zeilenga
9c5ad6291b
Add experimental caseExact/Ignore substrings indexer/filter routines.
2000-07-18 17:46:34 +00:00
Kurt Zeilenga
d2b05a3858
Rework SASL command line arguments. Default is now to authenticate
...
using best available mechanism. (authzid prompting to be disabled)
To use simple bind, -x is required (implied if -P 2) with -D/-[Ww]
To use simple "anonymous" bind, just -x will do.
2000-07-15 23:25:46 +00:00
Kurt Zeilenga
5bca08d716
Store sasl callbacks in session handle so that they can properly freed.
2000-07-15 00:01:09 +00:00
Kurt Zeilenga
5fc22599e2
Update SASL code to reuse context through life of session.
...
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
2000-07-13 22:54:38 +00:00
Mark Valence
d4d03e36e5
Added "threads" config to slapd.conf.
2000-07-04 19:24:13 +00:00
Kurt Zeilenga
2eb664f481
Add octetString syntax to undefined attribute type
2000-07-02 17:50:18 +00:00
Kurt Zeilenga
b1172dc5ac
Add experimental support for undefined attribute types.
2000-07-02 17:16:18 +00:00
Kurt Zeilenga
b21ba52482
Clarify ad_type usage
2000-07-02 08:06:55 +00:00
Kurt Zeilenga
1566454e6e
Add sets to NT build, remove LINT
2000-07-01 04:58:23 +00:00
Mark Valence
4b1ff75bdd
Prepare for Set ACLs and ACIs.
2000-06-29 21:41:54 +00:00
Kurt Zeilenga
3112f21612
Add attribute type/matching rule support for structuralObjectClass attribute
...
type. Add type to core.schema. Not yet populated on add nor checked on modify.
2000-06-26 05:13:41 +00:00
Kurt Zeilenga
317d04a5d9
Modify backend_attribute to return bervals and adjust ACLs
...
(actually, ACL here might be dangerous)
2000-06-26 01:22:32 +00:00
Mark Valence
295f3ba0aa
New backend routine: back_attribute
2000-06-21 17:23:24 +00:00
Kurt Zeilenga
d19419392c
Use ASCII_*() macros and friends. Should be combined with similiar LDAP_*()
...
macros in ldap_pvt.h.
2000-06-20 17:05:15 +00:00
Kurt Zeilenga
01f7e78cbb
Add experimental objectIdentifierFirstComponentMatch routine
2000-06-20 03:55:40 +00:00