Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Get files ready for 0.9.0 release0.9.0 | Arthur de Jong | 2013-04-05 | 9 | -22/+684 |
| | |||||
* | Include the usermod.py file in the distribution | Arthur de Jong | 2013-04-05 | 1 | -1/+2 |
| | |||||
* | Fix docbook validation | Arthur de Jong | 2013-04-05 | 1 | -1/+1 |
| | |||||
* | Ignore missing Python in initial test | Arthur de Jong | 2013-04-03 | 1 | -1/+1 |
| | |||||
* | Fix comment | Arthur de Jong | 2013-04-03 | 1 | -1/+1 |
| | |||||
* | Update the shadowLastChange on password change in pynslcd | Arthur de Jong | 2013-03-30 | 1 | -0/+27 |
| | |||||
* | Implement password modification in pynslcd | Arthur de Jong | 2013-03-30 | 1 | -1/+69 |
| | |||||
* | Implement used modification functionality | Arthur de Jong | 2013-03-30 | 16 | -5/+851 |
|\ | | | | | | | | | | | | | | | | | | | This adds user information modification functionality to nslcd and pynslcd and implements a chsh.ldap utility that can be used to change the login shell of a user (similar to the normal chsh command). The user modification functionality should allow for generic modifications of user information. More utility commands to perform modifications remain to be implemented. | ||||
| * | Initial version of a chsh.ldap utility | Arthur de Jong | 2013-03-30 | 9 | -3/+388 |
| | | |||||
| * | Handle user modification requests in pynslcd | Arthur de Jong | 2013-03-30 | 2 | -0/+132 |
| | | | | | | | | | | Similar to the nslcd implementation, this currently only covers modifying the homeDirectory and loginShell attributes. | ||||
| * | Handle user modification requests in nslcd | Arthur de Jong | 2013-03-30 | 4 | -2/+301 |
| | | | | | | | | | | | | | | This is currently limited to supporting modification of the homeDirectory and loginShell attributes. Modifications as root currently use the rootpwmoddn and rootpwmodpw options. | ||||
| * | Define a NSLCD_ACTION_USERMOD request | Arthur de Jong | 2013-03-30 | 1 | -0/+30 |
|/ | | | | | | | | | The modification can either be requested by root or by the user itself. Modifications by the user should be done by connecting to the LDAP server with the user-supplied credentials. It is expected that access controls in the LDAP server prevent unwanted modifications. The nslcd process is expected to check whether supplied values are sensible. | ||||
* | Rename authentication function and return connection | Arthur de Jong | 2013-03-30 | 1 | -9/+9 |
| | |||||
* | Fix test for absence of Python | Arthur de Jong | 2013-03-30 | 1 | -1/+1 |
| | |||||
* | Mark unsupported pynslcd configuration options | Arthur de Jong | 2013-03-30 | 1 | -17/+16 |
| | |||||
* | Preset default configure values consistently | Arthur de Jong | 2013-03-30 | 1 | -7/+7 |
| | |||||
* | Give an error when the Python interpreter is missing | Arthur de Jong | 2013-03-30 | 1 | -1/+1 |
| | |||||
* | Build command-line utilities by default if Python is ↵ | Arthur de Jong | 2013-03-30 | 1 | -2/+12 |
| | | | | available | ||||
* | Implement clearing of nscd cache in pynslcd | Arthur de Jong | 2013-03-29 | 5 | -1/+150 |
|\ | |||||
| * | Detect and handle connection failure and recovery | Arthur de Jong | 2013-03-29 | 2 | -1/+28 |
| | | | | | | | | | | Logs a connection recovery message and run a nscd cache invalidation if configured. | ||||
| * | Start the nscd invalidator process if needed | Arthur de Jong | 2013-03-29 | 1 | -0/+4 |
| | | |||||
| * | Parse the nscd_invalidate option | Arthur de Jong | 2013-03-29 | 1 | -0/+11 |
| | | |||||
| * | Functionality for clearing the nscd cache in pynslcd | Arthur de Jong | 2013-03-29 | 2 | -1/+108 |
|/ | |||||
* | Switch to using os.environ instead of os.putenv() | Arthur de Jong | 2013-03-29 | 1 | -3/+3 |
| | | | | | The os.putenv() call doesn't update os.environ and Python documentation recommends using os.environ. | ||||
* | Rename validate_request to validate | Arthur de Jong | 2013-03-29 | 1 | -3/+3 |
| | |||||
* | Also perform authentication search using LDAPSearch class | Arthur de Jong | 2013-03-29 | 1 | -1/+2 |
| | |||||
* | Make the NSS tests dependant on the configuration of ↵ | Arthur de Jong | 2013-03-28 | 1 | -1/+45 |
| | | | | nsswitch.conf | ||||
* | Do not rely on printf() being able to print NULL strings | Arthur de Jong | 2013-03-28 | 1 | -9/+16 |
| | |||||
* | Fix manual page generation | Arthur de Jong | 2013-03-28 | 1 | -1/+1 |
| | |||||
* | Fix comment for nss_nested_groups config option | Arthur de Jong | 2013-03-28 | 1 | -1/+1 |
| | |||||
* | Implement support for nested groups | Arthur de Jong | 2013-03-24 | 11 | -54/+556 |
|\ | |||||
| * | Add tests for nested group functionality | Arthur de Jong | 2013-03-24 | 2 | -9/+287 |
| | | | | | | | | | | This also includes some changes to the test directory contents that were for other tests and functionality. | ||||
| * | Implement a nss_nested_groups configuration option | Arthur de Jong | 2013-03-24 | 7 | -28/+60 |
| | | | | | | | | | | | | This option can be used in both nslcd and pynslcd to enable recursive group member lookups. By default the functionality is disabled. This also updates the documentation. | ||||
| * | Implement support for nested groups in pynslcd | Arthur de Jong | 2013-03-24 | 2 | -16/+54 |
| | | |||||
| * | Implement support for nested groups in nslcd | Arthur de Jong | 2013-03-24 | 1 | -24/+162 |
| | | | | | | | | | | | | | | | | | | | | | | This differs from the code provided by Steve Hill in that it avoids (recursively) performing parallel LDAP searches by queueing groups and check for extra members per queued group (in the forward lookup) or check for extra parents (for the user to groups lookup). For the reverse lookup handling the NSLCD_HANDLE macro could no longer be used because extra care should be taken to free the sets before returning and two search phases are needed. | ||||
| * | Implement a mkfilter_group_bymemberdn() function | Steve Hill | 2013-03-24 | 2 | -0/+16 |
|/ | | | | | | | | This was part of a bigger change to implement nested groups, however most of the other parts were re-implemented differently. For the original changes, see: http://lists.arthurdejong.org/nss-pam-ldapd-users/2013/msg00034.html | ||||
* | Unpack the LDIF file to make diffs clearer | Arthur de Jong | 2013-03-24 | 2 | -0/+55867 |
| | |||||
* | spelling fixes | Arthur de Jong | 2013-03-24 | 2 | -2/+2 |
| | |||||
* | fix service request logging | Arthur de Jong | 2013-03-24 | 1 | -2/+2 |
| | |||||
* | NSS: Return TRYAGAIN on zero-length buffer | Jakub Hrozek | 2013-03-19 | 1 | -1/+6 |
| | | | | | | One of our customers was running into a situation where glibc provided a zero buffer, which is a condition that is retriable and the nss module should return NSS_STATUS_TRYAGAIN not NSS_STATUS_UNAVAIL. | ||||
* | fix the text representation of shadow information for ↵ | Arthur de Jong | 2013-03-11 | 1 | -7/+7 |
| | | | | nscd on Solaris | ||||
* | implement a lookup_shadow test command for use on ↵ | Arthur de Jong | 2013-03-11 | 3 | -1/+102 |
| | | | | systems that don't allow querying shadow via getent | ||||
* | fix a few compiler warnings | Arthur de Jong | 2013-03-10 | 2 | -5/+7 |
| | |||||
* | guess the value for --with-pam-seclib-dir if it is not ↵ | Arthur de Jong | 2013-03-10 | 1 | -2/+12 |
| | | | | specified | ||||
* | small portability fix in test_pamcmds.sh | Arthur de Jong | 2013-03-10 | 1 | -2/+4 |
| | |||||
* | only log protocol name if it is present | Arthur de Jong | 2013-03-10 | 1 | -2/+4 |
| | |||||
* | also support systems without bet_get_enum() | Arthur de Jong | 2013-03-10 | 2 | -1/+5 |
| | |||||
* | log hex value of action id to make debugging easier | Arthur de Jong | 2013-03-09 | 1 | -1/+1 |
| | |||||
* | ensure consistent naming of DN variables | Arthur de Jong | 2013-03-09 | 1 | -9/+8 |
| | |||||
* | clean up imports and use ↵ | Arthur de Jong | 2013-03-09 | 7 | -21/+21 |
| | | | | ldap.filter.escape_filter_chars() directly |