Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Handle failure of getpeercred more gracefully | Arthur de Jong | 2013-08-25 | 1 | -9/+9 |
| | |||||
* | Rearrange Python imports | Arthur de Jong | 2013-08-25 | 4 | -5/+6 |
| | |||||
* | Have pynslcd handle mapped userPassword | Arthur de Jong | 2013-08-21 | 3 | -4/+17 |
| | | | | | | This fixes an error that could occur when the userPassword was retrieved from LDAP and insufficient privileges were available for reading the attribute. | ||||
* | Fix rootpwmodpw handling in pynslcd | Arthur de Jong | 2013-08-18 | 1 | -2/+2 |
| | |||||
* | Fix not logging passwords in pynslcd (7108b1f) | Arthur de Jong | 2013-08-18 | 1 | -1/+1 |
| | |||||
* | Rename isvalidname() to is_valid_name() in pynslcd | Arthur de Jong | 2013-08-18 | 4 | -7/+7 |
| | |||||
* | Do not log passwords in pynslcd | Arthur de Jong | 2013-08-18 | 1 | -1/+8 |
| | |||||
* | -n switch for pynslcd | Arthur de Jong | 2013-08-18 | 1 | -3/+10 |
| | |||||
* | Use retrieve_by, group_by and group_columns in the cache | Arthur de Jong | 2013-08-17 | 9 | -160/+229 |
| | | | | | | | | | | This removes custom retrieve() functions and Query classes from the database modules and uses retrieve_sql retrieve_by, group_by and group_columns to make a custom retrieval query. In the cache module this completely replaces how the query grouping is done. The Query class is now only used inside the cache and the CnAliasedQuery, RowGrouper and related classed have been removed. | ||||
* | Make Cache a context manager | Arthur de Jong | 2013-08-17 | 1 | -0/+6 |
| | |||||
* | Give cache tables friendlier names | Arthur de Jong | 2013-08-17 | 9 | -61/+74 |
| | | | | This also defined the tables for netgroup storage. | ||||
* | Explicitly define tables used for cache | Arthur de Jong | 2013-08-17 | 8 | -14/+35 |
| | | | | | | | This introduces the tables property in the Cache object that is used to define the used tables. This also fixes the storing of mulit-valued attributes in the cache. | ||||
* | Move cache table creation to modules | Arthur de Jong | 2013-08-17 | 12 | -177/+193 |
| | | | | | | This also moves the creation of a SQLite database connection to a _get_connection() function to ensure the cache is only created when the caches are instantiated. | ||||
* | Fix missing part of d659e83 | Arthur de Jong | 2013-07-30 | 1 | -2/+2 |
| | |||||
* | Use cleaner import and get rid of uid2dn function in pynslcd | Arthur de Jong | 2013-07-29 | 2 | -12/+5 |
| | |||||
* | Handle the nss_min_uid option in pynslcd | Arthur de Jong | 2013-07-29 | 2 | -4/+16 |
| | |||||
* | Handle the nss_initgroups_ignoreusers option in pynslcd | Arthur de Jong | 2013-07-29 | 2 | -1/+9 |
| | |||||
* | Fix handling of pam_password_prohibit_message in pynslcd | Arthur de Jong | 2013-07-29 | 2 | -2/+2 |
| | |||||
* | Implement config request handling in pynslcd | Arthur de Jong | 2013-07-29 | 3 | -3/+49 |
| | | | | This allows the PAM module to request the pam_password_prohibit_message option for denying password change. | ||||
* | Implement PAM session handling in pynslcd | Arthur de Jong | 2013-07-28 | 1 | -2/+61 |
| | | | | | Just like in nslcd this doesn't actually do anything with the session ids except generating them. | ||||
* | Properly handle start_tls in pynslcd | Arthur de Jong | 2013-07-28 | 1 | -0/+4 |
| | |||||
* | Fix errors in invalidator changes | Arthur de Jong | 2013-07-26 | 2 | -2/+2 |
| | | | | | This fixes a few typos and an omission in the configuration file parsing code. | ||||
* | Rename nscd_invalidate option to reconnect_invalidate | Arthur de Jong | 2013-07-26 | 5 | -19/+19 |
| | | | | | This also renames the internal nscd module to invalidator for both nslcd and pynslcd. The new invalidator module is now no longer nscd-specific. | ||||
* | Allow invalidating the nfsidmap cache | Arthur de Jong | 2013-07-26 | 2 | -16/+18 |
| | | | | This introduces an nfsidmap value for nscd_invalidate which will cause the nfsidmap -c command to be run. | ||||
* | Fix nscd cache flushing bug in pynslcd | Arthur de Jong | 2013-07-26 | 1 | -1/+1 |
| | | | | | The pynslcd implementation would always clear the passwd nscd cache regardless of the provided map. | ||||
* | Ignore errors in opening NSS module | Arthur de Jong | 2013-05-10 | 1 | -1/+4 |
| | |||||
* | Python style changes | Arthur de Jong | 2013-04-12 | 9 | -39/+36 |
| | | | | | | | This tries to conform more closely to PEP8. Imports have been checked and, if used only once, moved closer to the use to avoid potential import loops. This also includes a few other minor changes, like using __main__ for utility scripts and variable renames to avoid name clashes. | ||||
* | Raise an error with a missing old password on password ↵ | Arthur de Jong | 2013-04-12 | 1 | -1/+3 |
| | | | | modification | ||||
* | Fix getting caller's uid on password change (pynslcd) | Arthur de Jong | 2013-04-12 | 1 | -1/+1 |
| | |||||
* | Include the usermod.py file in the distribution | Arthur de Jong | 2013-04-05 | 1 | -1/+2 |
| | |||||
* | Update the shadowLastChange on password change in pynslcd | Arthur de Jong | 2013-03-30 | 1 | -0/+27 |
| | |||||
* | Implement password modification in pynslcd | Arthur de Jong | 2013-03-30 | 1 | -1/+69 |
| | |||||
* | Handle user modification requests in pynslcd | Arthur de Jong | 2013-03-30 | 2 | -0/+132 |
| | | | | | Similar to the nslcd implementation, this currently only covers modifying the homeDirectory and loginShell attributes. | ||||
* | Rename authentication function and return connection | Arthur de Jong | 2013-03-30 | 1 | -9/+9 |
| | |||||
* | Mark unsupported pynslcd configuration options | Arthur de Jong | 2013-03-30 | 1 | -17/+16 |
| | |||||
* | Detect and handle connection failure and recovery | Arthur de Jong | 2013-03-29 | 2 | -1/+28 |
| | | | | | Logs a connection recovery message and run a nscd cache invalidation if configured. | ||||
* | Start the nscd invalidator process if needed | Arthur de Jong | 2013-03-29 | 1 | -0/+4 |
| | |||||
* | Parse the nscd_invalidate option | Arthur de Jong | 2013-03-29 | 1 | -0/+11 |
| | |||||
* | Functionality for clearing the nscd cache in pynslcd | Arthur de Jong | 2013-03-29 | 2 | -1/+108 |
| | |||||
* | Switch to using os.environ instead of os.putenv() | Arthur de Jong | 2013-03-29 | 1 | -3/+3 |
| | | | | | The os.putenv() call doesn't update os.environ and Python documentation recommends using os.environ. | ||||
* | Rename validate_request to validate | Arthur de Jong | 2013-03-29 | 1 | -3/+3 |
| | |||||
* | Also perform authentication search using LDAPSearch class | Arthur de Jong | 2013-03-29 | 1 | -1/+2 |
| | |||||
* | Implement a nss_nested_groups configuration option | Arthur de Jong | 2013-03-24 | 2 | -12/+15 |
| | | | | | | This option can be used in both nslcd and pynslcd to enable recursive group member lookups. By default the functionality is disabled. This also updates the documentation. | ||||
* | Implement support for nested groups in pynslcd | Arthur de Jong | 2013-03-24 | 2 | -16/+54 |
| | |||||
* | log hex value of action id to make debugging easier | Arthur de Jong | 2013-03-09 | 1 | -1/+1 |
| | |||||
* | ensure consistent naming of DN variables | Arthur de Jong | 2013-03-09 | 1 | -9/+8 |
| | |||||
* | clean up imports and use ↵ | Arthur de Jong | 2013-03-09 | 7 | -21/+21 |
| | | | | ldap.filter.escape_filter_chars() directly | ||||
* | move get_connection function to search module as ↵ | Arthur de Jong | 2013-03-09 | 3 | -25/+28 |
| | | | | Connection class as subclass of ReconnectLDAPObject to automatically reconnect to the LDAP server | ||||
* | move Search class to search module | Arthur de Jong | 2013-03-09 | 15 | -148/+184 |
| | |||||
* | fix default logging configuration setting in pynslcd | Arthur de Jong | 2013-03-09 | 1 | -1/+1 |
| |