| dea636af4d1902a081ee891f1b19ee2f8729d759 |
|
20-Jun-2016 |
Pavel Březina <pbrezina@redhat.com> |
DP: Switch to new interface
Reviewed-by: Sumit Bose <sbose@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| cc2d77d5218c188119fa954c856e858cbde76947 |
|
20-Jun-2016 |
Pavel Březina <pbrezina@redhat.com> |
Rename dp_backend.h to backend.h
Reviewed-by: Sumit Bose <sbose@redhat.com>
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| 43bbf5b158ec3152806791ca49ae224ee978de24 |
|
19-Jan-2016 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: remove full_refresh_in_progress
When we switched to be_ptask this variable has become obsolete.
Reviewed-by: Sumit Bose <sbose@redhat.com> |
| 895b8d884d0f5277e181fe1212ec0c0daaf3977d |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: make sdap_sudo_handler static
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| cb235ec146f1ba81c211f8506736edea436be28a |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: obtain host information when going online
Resolves:
https://fedorahosted.org/sssd/ticket/2672
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| 1ab2b07c71da6c19c3855e390d10156d598c06a2 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: built host filter inside sdap_sudo_refresh request
Preparation for:
https://fedorahosted.org/sssd/ticket/2672
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| a00c89f23bd50d4fd9cf24aa09037c997781b8c9 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: set USN inside sdap_sudo_refresh request
Reduce code duplication.
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| 24eac34a8c1f0a284cb697e8d5c09ff049181691 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: fix tevent style
Rearrage and rename functions in sdap_async_sudo.c to obey
tevent style and improve readability.
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| fc19031212369d69a9693ac8777ce1e61a16fe93 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: simplify error handling
This patch removes state->error and uses only ret instead since
state->error was only duplication anyway.
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| 00fea5c2aaa0277bea522d2f61de75699ee2ed49 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: move refreshes from sdap_sudo.c to sdap_sudo_refresh.c
sdap_sudo.c will contain only initialization and handlers.
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| a13cf3d295a4a6654dfa7e4193c0a2bc8bb78e92 |
|
15-Dec-2015 |
Pavel Březina <pbrezina@redhat.com> |
SUDO: convert periodical refreshes to be_ptask
This removes old sudo timer and simplyfies code a lot. It also
allows to manage offline/online state.
- Full and smart refresh are disabled when offline.
- Full refresh is run immediately when sssd is back online.
- Smart refresh is scheduled normally when sssd is back online.
Resolves:
https://fedorahosted.org/sssd/ticket/1943
Reviewed-by: Jakub Hrozek <jhrozek@redhat.com>
Reviewed-by: Lukáš Slebodník <lslebodn@redhat.com> |
| dcb712782ed81cd19fc5d9a5dab37e50294d6f2e |
|
18-Dec-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo: do full refresh when data provider is back online
https://fedorahosted.org/sssd/ticket/1689
Add a online callback if the first full refresh fails due to the
provider beeing offline so we can perform the refresh as soon as
possible. |
| 5860e321d82d007a5b7f4a1ff9a3893156e22b19 |
|
18-Dec-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo: schedule another full refresh in short interval if the first fails
https://fedorahosted.org/sssd/ticket/1689
If the first full refresh of sudo rules fails because the data provider
is offline, we will schedule another one in 2, 4, ... minutes. |
| 260366c37cafab011cf48760eaf04282098ef800 |
|
18-Dec-2012 |
Pavel Březina <pbrezina@redhat.com> |
add sdap_sudo_schedule_refresh()
Reduces amount of code duplication. |
| fb67530ec34740a18f56ff56614898d2bdaee36f |
|
24-Oct-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo: do not fail if usn value is zero but full refresh is completed
https://fedorahosted.org/sssd/ticket/1596
In case that LDAP server contains zero sudo rules, the full refresh
completes succussfully and stores current USN value (= 0). But then
smart refresh will fail because it takes USN=0 as invalid value. |
| 5f73b623fc72e3b9b3590420825f30e618b4d4dd |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: load host filter configuration on init
We need to load host information during provider initialization.
Currently it loads only values from configuration files, but it is
implemented as an asynchrounous request as it will later try to
autodetect these settings (which will need to contact DNS). |
| 7b74632f498dd1edf69294b597a4d92ec6d73b9f |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: pass sudo_ctx instead of id_ctx
I had to create a new context structure to store additional
information such as ip addresses and hostnames. |
| 4684d427e7e10642ceff62128c3d22db87872c4c |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: return number of downloaded rules in sdap_sudo_refresh_recv() |
| f143937efc6cbb1eb84042979c83dd5b3f23a40c |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: find highest USN |
| c407643004a02566e35a864ba0d8b0c0f88d9d67 |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: add new timer API |
| 72985dbeba2d2eb8bc94d9ce62424aa6045c03cb |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: provide API for full refresh |
| 751a7930d5af7c1a3c36936e3c5b9205189c6b92 |
|
29-Jun-2012 |
Pavel Březina <pbrezina@redhat.com> |
sudo ldap provider: give sdap_sudo_refresh_send() search and purge filters |
| 5d00ee0e07dea78806df780db69e94900e5bb8c0 |
|
04-Feb-2012 |
Jakub Hrozek <jhrozek@redhat.com> |
Move BUILD_SUDO outside the generic LDAP source files
Avoid #ifdefs in the general part of the code |
| 7a571a9d9be35360cc0f283fcd8124bda11ebf51 |
|
27-Jan-2012 |
Pavel Březina <pbrezina@redhat.com> |
SUDO Integration - prepare data provider for new responder commands
https://fedorahosted.org/sssd/ticket/1143 |
| efe918d7cb27a6ac5901748fc1f5879e3296c012 |
|
17-Jan-2012 |
Pavel Březina <pbrezina@redhat.com> |
SUDO Integration - wrap data provider with tevent_req
https://fedorahosted.org/sssd/ticket/1110 |
| 8ce0509f582935655ee2b5ad81c5905be9ef5a02 |
|
20-Dec-2011 |
Pavel Březina <pbrezina@redhat.com> |
SUDO Integration - be_sudo_req removed from sudo_ctx |
| e9eeb4302e0e426c6cc1a4e65b95a6f7066e80b9 |
|
16-Dec-2011 |
Pavel Březina <pbrezina@redhat.com> |
SUDO integration - LDAP provider |