July 2017 - sssd-devel - Fedora Mailing-Lists

[sssd PR#325][opened] MAN: Improve description of 'trusted domain section' in sssd.conf's man page

by amitkumar50

URL: https://github.com/SSSD/sssd/pull/325 Author: amitkumar50 Title: #325: MAN: Improve description of 'trusted domain section' in sssd.conf's man page Action: opened PR body: """ PR generated to include explaination for ipa ad trust sssd configuration where ad has a child domain. Explanation is added to 'TRUSTED DOMAIN SECTION'. Also an example is included to better understanding. Resolves: https://pagure.io/SSSD/sssd/issue/3399 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/325/head:pr325 git checkout pr325

6 years, 7 months

4
18
0 / 0

[sssd PR#301][opened] Introduce sysdb_search_by_orig_dn()

by fidencio

URL: https://github.com/SSSD/sssd/pull/301 Author: fidencio Title: #301: Introduce sysdb_search_by_orig_dn() Action: opened PR body: """ This patchset came as a suggestion from @jhrozek as the most part of users/groups searches done are by orig dn, would make sense to have these methods exposed and used wherever it's possible. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/301/head:pr301 git checkout pr301

6 years, 7 months

3
30
0 / 0

[sssd PR#225][opened] SECRETS: Apply separate quotas for cn=secrets and cn=kcm

by jhrozek

URL: https://github.com/SSSD/sssd/pull/225 Author: jhrozek Title: #225: SECRETS: Apply separate quotas for cn=secrets and cn=kcm Action: opened PR body: """ While testing the KCM responder some more, I realized that we always checked the (hardcoded, no less) base DN of cn=secrets when checking for quotas. These patches make the quota check separate for each of the cn=secrets/cn=kcm hives, add a test and mention in documentation that the quota from sssd-secrets applies for how many ccaches can be stored. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/225/head:pr225 git checkout pr225

6 years, 7 months

4
50
0 / 0

[sssd PR#241][opened] FleetCommander Integration

by fidencio

URL: https://github.com/SSSD/sssd/pull/241 Author: fidencio Title: #241: FleetCommander Integration Action: opened PR body: """ This patch series contains: - some refactoring done on access module (and, consequently, on HBAC) in order to reuse a some code in the session module (an, consequently, on FleetCommander code); - the new session module that provides the FleetCommander Integration; """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/241/head:pr241 git checkout pr241

6 years, 7 months

4
63
0 / 0

[sssd PR#211][opened] IFP: Fix of limit = 0 (unlimited result)

by celestian

URL: https://github.com/SSSD/sssd/pull/211 Author: celestian Title: #211: IFP: Fix of limit = 0 (unlimited result) Action: opened PR body: """ If we set limit to 0 it means that result is unlimited. Internally we restrict number of result by allocation of result array. In unlimited case there was a bug and zero array was allocated. This fix allocates neccessary array when we know real result size. Resolves: https://pagure.io/SSSD/sssd/issue/3306 How to test (this reproducer needs #208 "IFP: Filter with * in Users.ListByName method" applied) ``` systemctl daemon-reload sudo su -c "truncate -s0 /var/log/sssd/*.log" sudo su -c "rm -f /var/lib/sss/db/*" sudo su -c "rm -f /var/lib/sss/mc/*" sudo systemctl restart sssd.service sudo su -c "truncate -s0 /var/log/sssd/*.log" dbus-send --system --print-reply --dest=org.freedesktop.sssd.infopipe \ /org/freedesktop/sssd/infopipe/Users \ org.freedesktop.sssd.infopipe.Users.ListByName \ string:"*" uint32:"0" dbus-send --system --print-reply --dest=org.freedesktop.sssd.infopipe \ /org/freedesktop/sssd/infopipe/Groups \ org.freedesktop.sssd.infopipe.Groups.ListByName \ string:"*" uint32:"100" dbus-send --system --print-reply --dest=org.freedesktop.sssd.infopipe \ /org/freedesktop/sssd/infopipe/Users \ org.freedesktop.sssd.infopipe.Users.ListByDomainAndName \ string:"domain.cygnus" string:"*" uint32:"100" ``` """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/211/head:pr211 git checkout pr211

6 years, 7 months

4
16
0 / 0

[sssd PR#319][opened] sudo: add a threshold option to reduce size of rules refresh filter

by pbrezina

URL: https://github.com/SSSD/sssd/pull/319 Author: pbrezina Title: #319: sudo: add a threshold option to reduce size of rules refresh filter Action: opened PR body: """ If a large number of rules is expired at one time the ldap filter may become too large to be processed by server. This commits adds a new option "sudo_threshold" to sudo responder. If the threshold is exceeded a full refreshed is done instead of rules refresh. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/319/head:pr319 git checkout pr319

6 years, 8 months

5
19
0 / 0

[sssd PR#214][opened] UTIL: Set udp_preference_limit=0 in krb5 snippet

by celestian

URL: https://github.com/SSSD/sssd/pull/214 Author: celestian Title: #214: UTIL: Set udp_preference_limit=0 in krb5 snippet Action: opened PR body: """ We add udp_preference_limit = 0 to krb5 snippet. This option enable TCP connection before UDP, when sending a message to the KDC. Resolves: https://pagure.io/SSSD/sssd/issue/3254 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/214/head:pr214 git checkout pr214

6 years, 8 months

5
50
0 / 0

[sssd PR#335][opened] Revert "LDAP: Fix nesting level comparison"

by lslebodn

URL: https://github.com/SSSD/sssd/pull/335 Author: lslebodn Title: #335: Revert "LDAP: Fix nesting level comparison" Action: opened PR body: """ This reverts commit 925a14d50edf0e3b800ce659b10b771ae1cde293. It broke a test for enumerate nested groups if they are part of non POSIX groups https://pagure.io/SSSD/sssd/issue/2406 """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/335/head:pr335 git checkout pr335

6 years, 8 months

3
10
0 / 0

[sssd PR#202][opened] T3315 infopipe group users master

by celestian

URL: https://github.com/SSSD/sssd/pull/202 Author: celestian Title: #202: T3315 infopipe group users master Action: opened PR body: """ Reproducer is: ``` # PREPARING ipa user-add --first=Test --last=User --email=u1(a)test-domain.sssd test_user ipa group-add test_group # REPRODUCER systemctl daemon-reload sudo su -c "truncate -s0 /var/log/sssd/*.log" sudo su -c "rm -f /var/lib/sss/db/*" sudo su -c "rm -f /var/lib/sss/mc/*" sudo systemctl restart sssd.service ipa group-add-member --users=test_user test_group sss_cache -UG getent group test_group # getent show user test_user in test_group, but dbus call doesn't: dbus-send --print-reply --system --dest=org.freedesktop.sssd.infopipe \ /org/freedesktop/sssd/infopipe/Groups \ org.freedesktop.sssd.infopipe.Groups.FindByName \ string:test_group # command above returns <RESULT_OBJECT> # We need to update group in cache because method "org.freedesktop.DBus.Properties.GetAll" # doesn't update records (<-- this should be better commented) dbus-send --print-reply --system --dest=org.freedesktop.sssd.infopipe \ <RESULT_OBJECT> \ org.freedesktop.sssd.infopipe.Groups.Group.UpdateMemberList # --> this call doesn't work without patch "IFP: Parse ghost name in Group.UpdateMemberList" # after this call group is updated in cache and we can call: dbus-send --system --print-reply --dest=org.freedesktop.sssd.infopipe \ <RESULT_OBJECT> \ org.freedesktop.DBus.Properties.GetAll \ string:"org.freedesktop.sssd.infopipe.Groups.Group" # We expect test_user in result users array. # CLEANING ipa group-del test_group ipa user-del test_user ``` """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/202/head:pr202 git checkout pr202

6 years, 8 months

5
29
0 / 0

[sssd PR#318][opened] libwbclient-sssd: update interface to version 0.14

by sumit-bose

URL: https://github.com/SSSD/sssd/pull/318 Author: sumit-bose Title: #318: libwbclient-sssd: update interface to version 0.14 Action: opened PR body: """ The main change is a new member of the wbcAuthErrorInfo struct. """ To pull the PR as Git branch: git remote add ghsssd https://github.com/SSSD/sssd git fetch ghsssd pull/318/head:pr318 git checkout pr318

6 years, 8 months

3
7
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

sssd-devel July 2017