Arthur de Jong

Open Source / Free Software developer

summaryrefslogtreecommitdiffstats
path: root/nslcd
Commit message (Collapse)AuthorAgeFilesLines
* some simple changes in includes to make FreeBSD diff smallerArthur de Jong2009-09-042-1/+7
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@986 ef36b2f9-881f-0410-afb5-c4e39611909c
* add a --disable-configfile-checking option to configure ↵Arthur de Jong2009-09-011-0/+2
| | | | | | to cause unknown options to be ignored from the configuration git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@985 ef36b2f9-881f-0410-afb5-c4e39611909c
* lower the default values for bind_timelimit and ↵Arthur de Jong2009-09-011-2/+2
| | | | | | reconnect_maxsleeptime from 30 to 10 seconds git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-pam-ldapd@983 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename configfile to /etc/nslcd.conf and make debian ↵Arthur de Jong2009-08-311-1/+1
| | | | | | packaging copy the file to the new name on upgrade git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@980 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename software to nss-pam-ldapdArthur de Jong2009-08-3119-19/+19
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@978 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't return password hashes at all for non-root users, ↵Arthur de Jong2009-08-123-16/+21
| | | | | | based on a patch by Alexander V. Chernikov <melifaro@ipfw.ru> git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@969 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix off by one error in the maximum number of gidNumber ↵Arthur de Jong2009-06-291-1/+1
| | | | | | attributes in an LDAP group entry git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@957 ef36b2f9-881f-0410-afb5-c4e39611909c
* fix off by one error in the maximum number of uidNumber ↵Arthur de Jong2009-06-291-1/+1
| | | | | | attributes in an LDAP entry (thanks to David Binderman for finding this) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@956 ef36b2f9-881f-0410-afb5-c4e39611909c
* also support starttls as value for the ssl optionArthur de Jong2009-06-201-1/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@942 ef36b2f9-881f-0410-afb5-c4e39611909c
* make error message a little clearerArthur de Jong2009-06-121-1/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@937 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement case-sensitive filtering for group, netgroup, ↵Arthur de Jong2009-06-069-151/+133
| | | | | | passwd, protocols, rpc, services and shadow lookups git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@934 ef36b2f9-881f-0410-afb5-c4e39611909c
* also compile correctly if ↵Arthur de Jong2009-06-041-1/+1
| | | | | | HAVE_LDAP_SASL_INTERACTIVE_BIND_S is not set git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@929 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove SSL/TLS warning messages during startupArthur de Jong2009-06-031-9/+1
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@925 ef36b2f9-881f-0410-afb5-c4e39611909c
* import preliminary version of PAM functionality into nslcdArthur de Jong2009-06-034-2/+298
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@923 ef36b2f9-881f-0410-afb5-c4e39611909c
* make lookup_dn2uid() available to other modules and ↵Arthur de Jong2009-06-032-21/+30
| | | | | | split uid2dn() into uid2entry() and uid2dn() (from nss-pam-ldapd branch) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@922 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement myldap_set_credentials() and myldap_cpy_dn() ↵Arthur de Jong2009-06-032-1/+51
| | | | | | which will be used in the PAM lookups (from nss-pam-ldapd branch) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@921 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't look inside the passed variable get_strdup() ↵Arthur de Jong2009-05-301-6/+3
| | | | | | because it could point to uninitialized memory git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@910 ef36b2f9-881f-0410-afb5-c4e39611909c
* refactor protocol reading and writing macros to the ↵Arthur de Jong2009-05-2913-16/+16
| | | | | | common directory, use more logical names and in the PAM module no longer use NSS status codes (import of r887 from nss-pam-ldapd) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@904 ef36b2f9-881f-0410-afb5-c4e39611909c
* initialise database modules only once after parsing configArthur de Jong2009-05-2413-15/+37
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@893 ef36b2f9-881f-0410-afb5-c4e39611909c
* support multiple search bases, partially based on a ↵Arthur de Jong2009-05-2415-109/+156
| | | | | | patch by Leigh Wedding <lwedding@bigpond.com> git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@892 ef36b2f9-881f-0410-afb5-c4e39611909c
* according to autoupdate RETSIGTYPE can be considered ↵Arthur de Jong2009-05-091-2/+2
| | | | | | void always git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@872 ef36b2f9-881f-0410-afb5-c4e39611909c
* prefix NETGROUP_TYPE macros with NSLCD_Arthur de Jong2009-05-081-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@864 ef36b2f9-881f-0410-afb5-c4e39611909c
* set most SSL/TLS related options globally instead of per ↵Arthur de Jong2009-05-013-80/+44
| | | | | | connection git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@853 ef36b2f9-881f-0410-afb5-c4e39611909c
* move debugging initialisation to myldap_set_debuglevel() ↵Arthur de Jong2009-04-305-37/+51
| | | | | | function git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@852 ef36b2f9-881f-0410-afb5-c4e39611909c
* produce more logging and get OpenLDAP logging working by ↵Arthur de Jong2009-04-251-10/+55
| | | | | | logging to stderr (and implement temporary workaround for reqcert problems) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@850 ef36b2f9-881f-0410-afb5-c4e39611909c
* include ldap.h to ensure that struct ldap_config will be ↵Arthur de Jong2009-04-251-1/+2
| | | | | | the same in every file git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@849 ef36b2f9-881f-0410-afb5-c4e39611909c
* clear errno before ldap calls to get usable returned errnoArthur de Jong2009-04-251-0/+4
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@848 ef36b2f9-881f-0410-afb5-c4e39611909c
* clear up protocol description in nslcd.h, renaming ↵Arthur de Jong2009-04-1911-12/+12
| | | | | | NSLCD_RESULT_SUCCESS to NSLCD_RESULT_BEGIN git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@834 ef36b2f9-881f-0410-afb5-c4e39611909c
* update copyright yearArthur de Jong2009-03-221-2/+2
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@823 ef36b2f9-881f-0410-afb5-c4e39611909c
* check user and group names against LOGIN_NAME_MAX if it ↵Arthur de Jong2009-02-271-1/+6
| | | | | | is defined git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@810 ef36b2f9-881f-0410-afb5-c4e39611909c
* add some more documentationArthur de Jong2009-02-271-1/+12
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@808 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename the tls_checkpeer option to tls_reqcert, ↵Arthur de Jong2008-12-063-7/+39
| | | | | | deprecating the old name and supporting all options that OpenLDAP supports for that value git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@805 ef36b2f9-881f-0410-afb5-c4e39611909c
* allow backslashes in names execpt as first or last characterArthur de Jong2008-12-031-2/+3
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@804 ef36b2f9-881f-0410-afb5-c4e39611909c
* clean the environment and set LDAPNOINIT to disable ↵Arthur de Jong2008-12-031-2/+30
| | | | | | parsing of LDAP configfiles (.ldaprc, /etc/ldap/ldap.conf, etc) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@803 ef36b2f9-881f-0410-afb5-c4e39611909c
* use tls_* options also for StartTLS connectionsArthur de Jong2008-11-291-36/+36
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@802 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove sslpath option because it wasn't used for anythingArthur de Jong2008-11-292-10/+0
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@801 ef36b2f9-881f-0410-afb5-c4e39611909c
* also allow spaces in user and group names because it was ↵Arthur de Jong2008-10-011-1/+1
| | | | | | causing problems in some environments git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@788 ef36b2f9-881f-0410-afb5-c4e39611909c
* also retry if ldap_result() failed and getting error ↵Arthur de Jong2008-09-241-1/+1
| | | | | | number returned LDAP_SUCCESS git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@787 ef36b2f9-881f-0410-afb5-c4e39611909c
* log option name instead of option value for ↵Arthur de Jong2008-09-241-1/+1
| | | | | | ldap_set_option() value git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@786 ef36b2f9-881f-0410-afb5-c4e39611909c
* rename get_base_from_dse() to get_base_from_rootdse()Arthur de Jong2008-07-201-5/+5
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@777 ef36b2f9-881f-0410-afb5-c4e39611909c
* make the get_base_from_dse() function cleaner and add a ↵Arthur de Jong2008-07-201-5/+11
| | | | | | comment describing the function git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@776 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement looking up search base in DSE of LDAP serverArthur de Jong2008-07-201-0/+53
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@775 ef36b2f9-881f-0410-afb5-c4e39611909c
* LDAP_OPT_X_TLS_REQUIRE_CERT is not a booleanArthur de Jong2008-07-101-4/+5
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@773 ef36b2f9-881f-0410-afb5-c4e39611909c
* replace https:// by ldaps:// (stupid typo)Arthur de Jong2008-06-172-4/+4
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@770 ef36b2f9-881f-0410-afb5-c4e39611909c
* give pidfile and socket creation functions more logical ↵Arthur de Jong2008-06-151-4/+4
| | | | | | names git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@763 ef36b2f9-881f-0410-afb5-c4e39611909c
* implement SASL authentication based on a patch by Dan ↵Arthur de Jong2008-06-143-30/+82
| | | | | | White <dwhite@olp.net> git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@762 ef36b2f9-881f-0410-afb5-c4e39611909c
* combine isvalidusername() and isvalidgroupname() into ↵Arthur de Jong2008-06-134-90/+43
| | | | | | isvalidname() because they are similar enough and we just want to check to see if it is a reasonable name (e.g. not a DN) git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@759 ef36b2f9-881f-0410-afb5-c4e39611909c
* don't perform SSL/TLS sanity checks if it isn't ↵Arthur de Jong2008-06-121-0/+4
| | | | | | available on the platform git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@757 ef36b2f9-881f-0410-afb5-c4e39611909c
* remove warning on using ssl optionArthur de Jong2008-06-061-1/+0
| | | | git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@751 ef36b2f9-881f-0410-afb5-c4e39611909c
* check that all URLs start with https:// if "ssl on" is ↵Arthur de Jong2008-06-061-0/+12
| | | | | | specified git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@750 ef36b2f9-881f-0410-afb5-c4e39611909c