Re: [SSSD] [PATCH] Delete attributes that are removed from LDAP

On Mon, Jan 17, 2011 at 08:14:35AM -0500, Stephen Gallagher wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 01/13/2011 03:37 PM, Stephen Gallagher wrote: > > Sometimes, a value in LDAP will cease to exist (the classic > > example being shadowExpire). We need to make sure we purge t

Re: [SSSD] [PATCHES] Fixes for user lookup during PAM actions

On Thu, Jan 20, 2011 at 09:41:40AM -0500, Stephen Gallagher wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 01/19/2011 04:36 PM, Simo Sorce wrote: > > On Wed, 19 Jan 2011 15:59:16 -0500 > > Stephen Gallagher wrote: > > > >> -subreq = sdap_get_initgr_send(state, state->ev, > >

Re: [SSSD] [PATCH] Allow fallback to SSSD domain

On Mon, Jan 17, 2011 at 03:22:25PM -0500, Stephen Gallagher wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > On 01/17/2011 03:18 PM, Stephen Gallagher wrote: > > For backwards-compatibility with older versions of the SSSD (such > > as 1.2.x), we need to be able to have our DNS SRV reco

Re: [SSSD] [PATCH] NSS obfuscation code cleanup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/20/2011 12:06 PM, Stephen Gallagher wrote: > On 01/20/2011 03:58 AM, Jakub Hrozek wrote: >> https://fedorahosted.org/sssd/ticket/752 > >> I think we can leave initialization as it is now - since we only get the >> obfuscated password once at the

[SSSD] [PATCH] Add ldap_tls_{cert, key, cipher_suite} config options

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 This patch was submitted by Tyson Whitehead in https://fedorahosted.org/sssd/ticket/780 I made one slight modification to his original patch (added the sssd-ldap.conf entries, to match the sssd-ipa.conf entries). Ack and pushed to master. Thanks for

[SSSD] [PATCH] Fix nested group handling during enumeration

Hi, this patch should fix trac ticket #779 by saving all groups without the members first and then try to unroll the nested groups. Please review it carefully. This patch fixes the issue for me and I hope it does not do harm in other places. bye, Sumit From 7e5a9f2653c5c81fd18ace59be9b6e6fc260004

Re: [SSSD] [PATCH] NSS obfuscation code cleanup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/20/2011 03:58 AM, Jakub Hrozek wrote: > https://fedorahosted.org/sssd/ticket/752 > > I think we can leave initialization as it is now - since we only get the > obfuscated password once at the startup. If we needed to treat that > functionality a

Re: [SSSD] [PATCHES] Fixes for user lookup during PAM actions

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 01/19/2011 04:36 PM, Simo Sorce wrote: > On Wed, 19 Jan 2011 15:59:16 -0500 > Stephen Gallagher wrote: > >> -subreq = sdap_get_initgr_send(state, state->ev, >> +subreq = sdap_get_initgr_send(state, >> + sta

[SSSD] [PATCH] NSS obfuscation code cleanup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 https://fedorahosted.org/sssd/ticket/752 I think we can leave initialization as it is now - since we only get the obfuscated password once at the startup. If we needed to treat that functionality as a library, we might need to switch to NSS_InitContex