upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-21 23:29:34 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
24473 commits 38 branches 309 tags 68 MiB
Commit graph

1081 commits

Author SHA1 Message Date
Quanah Gibson-Mount
d943d7f2fb ITS#9636 - Delete shell backend 2021-08-17 16:01:29 +00:00
Quanah Gibson-Mount
c6b43dcdc5 ITS#9635 - Delete back-ndb 2021-08-17 16:01:29 +00:00
Howard Chu
c3aca3d545 ITS#9637 back-mdb fix max idlexp 2021-08-16 22:44:54 +01:00
Ondřej Kuzník
84dab3f961 ITS#9599 Add bestof tier implementation 2021-08-13 10:57:14 +01:00
Ondřej Kuzník
ab90bfd95c ITS#9599 Implement tiered load balancing 2021-08-13 10:57:14 +01:00
Ondřej Kuzník
ddc9430727 ITS#9598 Per OID restrictions 2021-08-13 10:57:14 +01:00
Ondřej Kuzník
0190f18b4c ITS#9598 Introduce backend-restricted selection 2021-08-13 10:57:14 +01:00
HAMANO Tsukasa
2aaaf98315 ITS#9463 cumulative fix for back-wt 
- LDAP MODRDN handling
- support paged response
- add wt_extended
- add config emit
- wt_key_read() return WT_NOTFOUND if not found key.
- add ext_candidates()
- fix idlcache session name
- fix warning
- don't reuse idlcache cursor
- set correct pid when modrdn with newsuperior
- fix condition bug
- fix send_search_entry() error handling
- fix for referral handling
- fix for readonly mode
- fix sizelimit response
- support modrdn
- improve modify handling
- clear ancestor idlcache
- fix for multi-DIT
- IMPORTANT CHANGES: Compatibility is broken with previous database table, please restore database from LDIF.
- checking for scope=children
- sort dn2idl result
- fix cursor leak
- support db_open with readonly mode
- add wt_tool_entry_delete
- initialize comp variable
- support referrals
- implement wt_tool_dn2id_get() and wt_tool_entry_modify() for slapadd -w
- skip redundant scan, and more debug message
- fix OID conflict with back-passwd
- no need to close session, It may cause SEGV.
- fixed wt_dn2entry for empty DN
- support multiple database
- Construct wiredtiger's config parameter. It allow multi line wtconfig settings
- add idlcache
- fix concurrent modification to a entry with multi values
- prevent to add duplicate dn entry
- suppress error message "search_near failed: WT_NOTFOUND"
- update Debug statements
- back-wt does not support subtree rename
- fix for @ondra review
- update slapd-wt.5 and warning for mode option
- add back-wt test into test target
- add scope checking
 2021-08-07 19:27:43 +00:00
Howard Chu
9f4de680e3 ITS#6949 add support for logfile rotation 
Uses debuglevel, not sysloglevel.
 2021-08-05 15:45:19 +00:00
Howard Chu
e700dc03ee ITS#9615 move CheckModule from policy to overlay config 
And fix errmsg FIXME
 2021-08-03 16:31:49 +00:00
Howard Chu
e893e0e8b6 ITS#9569 update schema def in manpage 2021-07-29 12:55:15 +01:00
andrew.findlay@skills-1st.co.uk
73e7034d66 ITS#5555 - Correct documentation for SASL AuthzTo Check 
This patch file is derived from OpenLDAP Software. All of the
modifications to OpenLDAP Software represented in the following patch(es)
were developed by Andrew Findlay <andrew.findlay@skills-1st.co.uk>.
I have not assigned rights and/or interest in this work to any party.

I, Andrew Findlay, hereby place the following modifications to OpenLDAP
Software (and only these modifications) into the public domain. Hence,
these modifications may be freely used and/or redistributed for any
purpose with or without attribution and/or other notice.
 2021-07-26 22:02:55 +00:00
Quanah Gibson-Mount
97bee2f392 ITS#9589 - Fix man page references to be valid 2021-07-26 20:09:01 +00:00
Quanah Gibson-Mount
cb5ba6781f ITS#8742 - More for bringing slapd.conf.5 and slapd-config.5 in sync 2021-07-26 16:36:26 +00:00
Howard Chu
dfcaa3f01e ITS#6248 support multiple CAcert dirs 2021-07-22 21:07:21 +01:00
Quanah Gibson-Mount
f6dcc600a3 ITS#8788 - Document that "undef" is not usable with back-mdb 2021-06-24 17:48:21 +00:00
Ondřej Kuzník
9e1a961792 ITS#9581 Implement lastbind precision 2021-06-21 18:37:30 +00:00
Nadezhda Ivanova
915e515970 ITS#9555 Introduce a default operations timeout for back-asyncmeta 2021-05-25 15:01:51 +00:00
Tero Saarni
de6c939047 ITS#9468 documented that re-connecting does not happen after idle-timeout or conn-ttl 2021-05-11 15:05:50 +00:00
Ondřej Kuzník
9bbbbf5f6a ITS#9502 TCP_USER_TIMEOUT for lloadd 2021-04-22 21:52:12 +00:00
Nadezhda Ivanova
6e3f6639b9 ITS#9502 Implement tcp-user-timeout support for back-ldap/(async)meta 2021-04-22 21:52:12 +00:00
Ondřej Kuzník
ae77343d67 ITS#9520 Refuse parallelism if not compiled with libargon2 2021-04-14 18:17:59 +01:00
Ondřej Kuzník
8b353df0e2 ITS#9517 Add module args support to slappaswd and relevant docs 2021-04-14 18:17:59 +01:00
Howard Chu
e16b0a739c ITS#8586 server cert manpage tweaks 2021-04-12 20:32:12 +01:00
Andreas Schulze
680091b5b4 ITS#8586 load cert+chain from TLSCertificateFile 
For OpenSSL
 2021-04-12 20:32:09 +01:00
Karl O. Pinc
4e4341f379 ITS#9396 Recommend namedPolicy for ppolicy entries 2021-04-09 18:33:48 +00:00
Quanah Gibson-Mount
0ad73f8717 ITS#9437 - Fix slapo-otp overlay name 2021-03-31 23:12:00 +00:00
Quanah Gibson-Mount
c5a56bcbeb ITS#9437, ITS#9470 - Document homedir, OTP overlays 2021-03-31 17:59:35 +00:00
Ondřej Kuzník
fe7e4697e9 ITS#9437 Implement TOTP drift correction 2021-03-31 14:57:56 +00:00
Ondřej Kuzník
87f3bad8bb ITS#9437 Add otp_2fa overlay 2021-03-31 14:57:56 +00:00
Quanah Gibson-Mount
adb16cbd64 ITS#9470 - Fix typos 2021-03-26 16:28:39 +00:00
Ondřej Kuzník
8382d3c380 ITS#9470 Add homedir overlay 2021-03-26 01:27:09 +00:00
HoweverAT
9d594a118e ITS#8847 Add SOCKET_BIND_ADDRESSES Option 2021-03-25 18:47:11 +00:00
Howard Chu
f1ebb45695 ITS#9251 make max filter depth configurable 2021-03-22 17:31:13 +00:00
Quanah Gibson-Mount
4c44e35076 ITS#9200 -- 2.4 to 2.5 upgrade documentation and updates 2021-03-18 18:39:28 +00:00
Quanah Gibson-Mount
91a5159152 ITS#8773 - Add slapo-deref.5 man page 2021-03-15 16:31:55 +00:00
Quanah Gibson-Mount
2fcfeb83f0 ITS#8742 - Bring slapd.conf.5 and slapd-config.5 in sync 2021-03-11 19:24:25 +00:00
Quanah Gibson-Mount
c7763538de ITS#9453 - Make pw argon2 official 2021-03-10 23:21:08 +00:00
Quanah Gibson-Mount
9d5267e14e ITS#9079 - Fix minor issues with slapo-unique man page 2021-03-09 19:12:49 +00:00
Quanah Gibson-Mount
d41b35b8c0 ITS#9260 - Reference conn-pool-max option in related man pages 2021-03-09 17:22:42 +00:00
Quanah Gibson-Mount
7a8f7c6efb ITS#9490 - Fix typo 2021-03-05 15:59:17 +00:00
Quanah Gibson-Mount
932d18fdc1 ITS#8724 - Note that paged results is stripped 2021-03-04 21:44:38 +00:00
Quanah Gibson-Mount
5d5f431868 ITS#9490 - Add keepalive settings to ldap.conf 2021-03-04 17:11:35 +00:00
Quanah Gibson-Mount
fc0cb887c3 Revert "ITS#8977 - Remove documentation for idlexp" 
This reverts commit a40f6bff89.
 2021-03-02 19:56:51 +00:00
Ondřej Kuzník
6bfdb0342d ITS#8215 Some more slapmodify manpage tweaks 2021-03-02 19:08:50 +00:00
Quanah Gibson-Mount
2ec44a11ab ITS#8454 - Add detailed information about auditlog format 2021-02-26 20:13:47 +00:00
Quanah Gibson-Mount
51462ca0ee ITS#8659 - Add missing data on auditlog schema 
Add missing objectClass auditContainer
Add missing attribute reqMod to auditModRDN objectClass
 2021-02-26 17:01:12 +00:00
Ondřej Kuzník
34b95c520e ITS#9438 Add remoteauth overlay 2021-02-25 22:11:39 +00:00
Quanah Gibson-Mount
dc6aab1f7d ITS#8665 - Document limits restrictions for glued databases 2021-02-25 00:48:05 +00:00
Ondřej Kuzník
3925b8e009 ITS#7259 Clarify password length considerations 2021-02-24 13:19:40 +00:00
Quanah Gibson-Mount
a40f6bff89 ITS#8977 - Remove documentation for idlexp 
The idlexp feature depends on additional work that is not yet done. Remove documentation for the feature
 2021-02-18 18:47:40 +00:00
Ondřej Kuzník
e6cf237802 ITS#9180 Mark memberof deprecated 2021-02-18 16:28:12 +00:00
Jan Synacek
c25fa7b0e5 ITS#7744 Fix TLS_REQCERT description 2021-02-18 14:45:51 +00:00
Howard Chu
dfd8515e8e ITS#8861 clarify tls keyword 2021-02-18 14:33:16 +00:00
Howard Chu
70a7f51742 ITS#7795 more detail for "manage" priv 2021-02-18 13:23:47 +00:00
Quanah Gibson-Mount
c9c0e9f05c ITS#8248 - Clarify documentation around logfile directive 2021-02-17 21:00:55 +00:00
Quanah Gibson-Mount
ce2c5173bd ITS#9161 - Fix various typos 
Fix a number of different typos across the code base
 2021-02-17 18:42:46 +00:00
Quanah Gibson-Mount
71213e6938 ITS#8132 - Clarify wording on serverID. 2021-02-17 17:33:48 +00:00
Quanah Gibson-Mount
97ba684c9e Fix typo 2021-02-17 17:28:33 +00:00
Karl O. Pinc
7077dc3138 Better explanation of when access control processing stops 2021-02-17 15:02:33 +00:00
Karl O. Pinc
2b402a5f34 Improve authzFrom and authzTo docs 2021-02-17 15:02:22 +00:00
Ondřej Kuzník
d3fca1364b ITS#9102 Update secprop documentation 2021-02-17 13:24:00 +00:00
Howard Chu
9090dd727b ITS#7584 packets, BER, and parse loglevels 
Note these are only valid for debug output, not syslog
 2021-02-15 18:09:47 +00:00
Howard Chu
0b769a4490 ITS#6694 reorganize unchecked/pagedresults limits descriptions 2021-02-15 13:40:58 +00:00
David Barchiesi
0799f58533 ITS#9442 Add negregex constraint type for not allowing values based on a regex. 2021-01-28 18:54:03 +00:00
Quanah Gibson-Mount
e768dcd062 ITS#6406 - Note accesslog storage requirements 
Update slapo-accesslog(5) man page to note that the database backend storing the data must support an ordered return of results.
 2021-01-26 18:06:05 +00:00
Quanah Gibson-Mount
7d096281ef ITS#8214 - Fix man page to require rwm prefix 2021-01-26 15:59:43 +00:00
Quanah Gibson-Mount
efaf9a4a17 Happy New Year! 2021-01-11 19:25:53 +00:00
Howard Chu
354e678ce9 ITS#9426 dynlist: don't add unexpanded groups at end of search 
if pagedResults is in use
 2020-12-15 22:55:47 +00:00
Ondřej Kuzník
b49f51879f Implement client pending operation limits 2020-11-17 17:58:15 +00:00
Ondřej Kuzník
25a4d684fc Permit lloadd to share slapd TLS context 2020-11-17 17:58:15 +00:00
Ondřej Kuzník
513659c610 Document config behaviour 2020-11-17 17:58:15 +00:00
Nadezhda Ivanova
678fa100f7 Convert the load balancer into a backend 2020-11-17 17:58:14 +00:00
Ondřej Kuzník
0cfd4fca4d Make timeouts common and redo connection read timeouts 2020-11-17 17:58:14 +00:00
Ondřej Kuzník
ccf75c96c4 Update write timeout to timeval 2020-11-17 17:58:14 +00:00
Ondřej Kuzník
7b413f9ed4 Update docs and defaults 2020-11-17 17:55:46 +00:00
Ondřej Kuzník
9d3b998abd Document new bind configuration 2020-11-17 17:55:46 +00:00
Ondřej Kuzník
a8a0fe26b0 Documentation updates 2020-11-17 17:55:46 +00:00
Ondřej Kuzník
495dfa69a2 Split client/upstream PDU size limits 2020-11-17 17:55:46 +00:00
Ondřej Kuzník
3fa8a0cdf2 Rename listener-threads to reflect the option 2020-11-17 17:55:46 +00:00
Ondřej Kuzník
8d85912ab9 lloadd documentation 2020-11-17 17:55:46 +00:00
Quanah Gibson-Mount
4041848587 Add documentation on ACL requirements for psuedo-attribute entryDN 
Also fix up the example for replacing the memberOf overlay
 2020-11-10 23:30:47 +00:00
Quanah Gibson-Mount
e749750a8f ITS#8159 - Add missing "hard" parameter to size.prtotal 2020-09-01 19:40:36 +00:00
Quanah Gibson-Mount
04124c1f70 ITS#8175 - Fix missing descriptions for olcDisallows for proxy_authz_non_critical and dontusecopy_non_critical 2020-09-01 18:04:06 +00:00
Howard Chu
d5ed7c5027 ITS#9054, #9318 document new TLS options in slapd 2020-08-28 11:09:25 +01:00
Howard Chu
608a822349 ITS#9318 add TLS_REQSAN option 
Add an option to specify how subjectAlternativeNames should be
handled when validating the names in a server certificate.
 2020-08-21 18:05:08 +00:00
Howard Chu
2386a11649 ITS#9054 Add support for multiple EECDH curves 
Requires OpenSSL 1.0.2 or newer
 2020-08-21 07:58:07 +01:00
Ondřej Kuzník
43ebfa8fb4 ITS#6467 Make accesslog a possible sessionlog source 2020-07-22 22:25:10 +01:00
Quanah Gibson-Mount
3716245fec Issue#8511 - Update documentation and configs to correctly use multiprovider 2020-07-22 19:32:49 +00:00
Ondřej Kuzník
a49b553676 ITS#9279 Implement Netscape password policy controls in ppolicy 2020-07-22 18:57:38 +00:00
Howard Chu
c470af3749 ITS#9121 add examples to manpage 2020-07-22 15:11:24 +00:00
Howard Chu
2c0499ae4e ITS#9121 support nested groups 2020-07-22 15:11:24 +00:00
Howard Chu
9210ed1618 ITS#9121 add dynamic memberOf support for static groups 2020-07-22 15:11:24 +00:00
Ondřej Kuzník
c7b008eede ITS#8701 Fix documentation 2020-07-21 10:48:47 +01:00
Quanah Gibson-Mount
21eef84a49 ITS#9275 -- Update wording to remove slave and master terms, consolidate on provider/consumer 2020-07-18 16:27:04 +00:00
Quanah Gibson-Mount
b180833da8 ITS#9020 - Fix typo 2020-07-14 15:22:25 +00:00
Ondřej Kuzník
bdc9dbc511 ITS#8701 Implement account usability in ppolicy 2020-07-07 16:43:37 +01:00
Ondřej Kuzník
376d5d65cb ITS#7084 ACL of 'manage' gives pasword administrator access 
Password administrators can bypass safeModify, password quality checks
and trigger reset if policy instructs the server to.
 2020-07-03 20:42:14 +00:00
Quanah Gibson-Mount
58c978825c Issue#9020 - Use consistent namespaces for overlays 2020-06-22 20:44:12 +00:00
Quanah Gibson-Mount
f926e66723 ITS#8873 - Delete obsolete configuration options from back-ldap, back-meta, and back-asyncmeta 2020-05-26 19:59:56 +00:00