upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-22 07:39:35 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
19245 commits 38 branches 309 tags 68 MiB
Commit graph

1192 commits

Author SHA1 Message Date
Kurt Zeilenga
c41d0eaf7c Add some chroot clarifications. 2004-10-13 01:29:50 +00:00
Howard Chu
1df6d76269 Add ppolicy_hash_cleartext config keyword, hash Adds as well as Modifies. 
Changed check_pw_quality callback to pass entry's Attributes in final arg.
 2004-10-07 04:07:17 +00:00
Pierangelo Masarati
c4123bb613 document submatches provided by non-regex <what> clauses 2004-10-06 23:19:53 +00:00
Pierangelo Masarati
796dce8657 add (and honor) a (configurable) baseObject to workaround ldap_entries view for RDBMSes that do not support UNION in views 2004-10-02 17:33:32 +00:00
Howard Chu
36b0611404 ITS#2588, ITS#2661 docs. 2004-09-28 09:02:31 +00:00
Kurt Zeilenga
424d673a6c Update SSF comments 2004-09-13 20:43:33 +00:00
Pierangelo Masarati
04734610de fix file:/// URI 2004-09-11 15:59:34 +00:00
Kurt Zeilenga
441ff00a06 Add default note 2004-09-10 22:55:59 +00:00
Kurt Zeilenga
3869e3b84d Add localSSF slapd.conf(5) directive to set SSF associated 
with ldapi:// sessions.
 2004-09-10 22:35:24 +00:00
Kurt Zeilenga
cdd94c7aa1 Add "slapcat -a filter" support 2004-09-08 21:44:28 +00:00
Kurt Zeilenga
5f5d50aeb0 Add TLS cipher suite directive to ldap.conf(5) 2004-09-05 07:21:20 +00:00
Kurt Zeilenga
48cae5aed8 ITS#3310: Fix lud_host typo 2004-08-29 14:55:56 +00:00
Pierangelo Masarati
450b579971 cleanup docs 2004-08-24 09:27:45 +00:00
Pierangelo Masarati
f64de49b9f update and cleanup 2004-08-21 12:28:54 +00:00
Pierangelo Masarati
905c8d580b move proxycache configuration directives into slapo-pcache; add references in related man pages 2004-08-21 12:20:01 +00:00
Pierangelo Masarati
d606635ec1 cleanup 2004-08-21 09:47:50 +00:00
Pierangelo Masarati
7b4a51cc28 further improve loglevel selection 2004-07-29 12:39:51 +00:00
Pierangelo Masarati
f33b51832a allow to use names to set loglevel 2004-07-29 00:10:03 +00:00
Pierangelo Masarati
9f6f5491fe slightly rework user/operational attributes handling (including fixing a bug in the logic of the previous change to backend_operational()); cleanup; more improvements to slapo-rwm and back-relay 2004-07-25 23:16:40 +00:00
Howard Chu
6a00e8b326 More info about linearindex and slapadd 2004-07-22 22:52:47 +00:00
Howard Chu
dd7003cf9f Added linearindex option for slapindex. Improves performance when database 
size exceeds dbcache size by minimizing cache thrashing.
 2004-07-22 22:32:37 +00:00
Howard Chu
f9f22058e7 ITS#3178 add "fasttool" option to disable transaction logging in tool mode 2004-07-22 22:14:35 +00:00
Howard Chu
76b2701a28 Minor cleanup 2004-07-22 22:13:13 +00:00
Pierangelo Masarati
52a49e0840 improve manual and make naming contexts uniform; NOTE: backwards compatibility not preserved 2004-07-20 00:46:20 +00:00
Pierangelo Masarati
fa694f0c3c document rwm overlay 2004-07-18 21:45:20 +00:00
Pierangelo Masarati
23c5f4c09f small improvements 2004-07-06 22:37:22 +00:00
Pierangelo Masarati
f64283ccae beautify and clarify <what> clause usage and defaults 2004-06-28 14:33:35 +00:00
Pierangelo Masarati
44e8ffd4fe clarify the use of regex and expand in by dn clauses 2004-06-28 10:22:48 +00:00
Pierangelo Masarati
d8eff4d1b5 use hard limit instead of returning adminLimitExceeded when requested limit exceeds hard; improve (and document) syntax; modify test025 accordingly 2004-06-22 09:43:41 +00:00
Kurt Zeilenga
5238488e60 Replaced MSAD specific stuff 2004-06-22 04:33:18 +00:00
Pierangelo Masarati
ca33242924 manual cleanup 2004-06-20 22:39:43 +00:00
Pierangelo Masarati
b1a1f0b8b6 cleanup limits 2004-06-19 10:01:47 +00:00
Pierangelo Masarati
671e3c7651 allow max for time/size limits 2004-06-18 19:47:53 +00:00
Kurt Zeilenga
1e17d75400 limit clean up 2004-06-18 07:23:37 +00:00
Kurt Zeilenga
c521e21946 Okay, fully revert commit before last. 2004-06-17 23:23:15 +00:00
Kurt Zeilenga
28668bfa62 Partial revert of last change. shm_key documentation needed. 2004-06-17 23:01:22 +00:00
Kurt Zeilenga
08c405257b Undocument backend options which overlap DB_CONFIG options. 
DB_CONFIG should generally be used instead.
 2004-06-17 22:51:27 +00:00
Pierangelo Masarati
05b60e6b1e s/to/by/ 2004-06-17 22:51:03 +00:00
Pierangelo Masarati
f78611bf5e improve documentation of how to specify multiple uris 2004-06-16 15:18:34 +00:00
Pierangelo Masarati
a0dfadceef mention new tools 2004-06-15 22:40:53 +00:00
Pierangelo Masarati
b1718c4f69 mention new tools 2004-06-15 22:39:08 +00:00
Pierangelo Masarati
71142cc7e5 mention new tools 2004-06-15 22:38:31 +00:00
Pierangelo Masarati
a527174bcb fix indent (any man expert to check it?) 2004-06-15 20:57:28 +00:00
Kurt Zeilenga
6826810ea7 allow logging to USER and DAEMON (ITS#3187) 2004-06-15 07:22:48 +00:00
Pierangelo Masarati
a18e199e0d more on identity assertion 2004-05-22 17:26:02 +00:00
Howard Chu
725ca08f8d Add note about syncrepl Persist retries 2004-05-21 23:58:26 +00:00
Pierangelo Masarati
46b27edc3b more on idassert 2004-05-15 10:10:09 +00:00
Pierangelo Masarati
8b954144d6 reflect Kurt's comments on ID assertion 2004-05-14 10:01:22 +00:00
Pierangelo Masarati
f035e1f18f document proxyauthz{dn|pw} and idassert-* 2004-05-13 23:35:39 +00:00
Pierangelo Masarati
bbbe0db326 helper for unlimited time/size limits request 2004-05-07 17:43:22 +00:00
Pierangelo Masarati
03c64541d4 add granular op restriction 2004-05-01 17:53:37 +00:00
Pierangelo Masarati
ff0df4b6aa add group authz 2004-04-25 23:59:06 +00:00
Kurt Zeilenga
6366a0ca61 cleanup 2004-04-24 02:27:31 +00:00
Pierangelo Masarati
02ac6941d3 document slapacl tool 2004-04-20 09:18:10 +00:00
Pierangelo Masarati
9c10415919 - clarify when $$ must be used in regex; 
- clarify access privileges of rootdn;
- clarify that auth access is always required when performing authz-regexp,
  not only for proxyAuthz
 2004-04-19 01:19:41 +00:00
Pierangelo Masarati
05a84fb025 typo 2004-04-19 00:08:32 +00:00
Pierangelo Masarati
80c34cf27e typos 2004-04-18 21:36:32 +00:00
Howard Chu
8da6bf194a Added referential integrity and attribute uniqueness overlays 2004-04-17 08:17:43 +00:00
Pierangelo Masarati
9b3a3d5fce improve tool mode selection by slapd switch 2004-04-16 18:54:15 +00:00
Kurt Zeilenga
349c7834ce Rename config options and attribute names (for 2.3). 2004-04-16 02:29:55 +00:00
Kurt Zeilenga
765a6bd5d4 rename 2004-04-16 01:51:25 +00:00
Kurt Zeilenga
460510be0a rename function and config parameters 2004-04-16 01:50:29 +00:00
Pierangelo Masarati
6624f68725 fix braindead config option (mostly harmless) 2004-04-15 20:27:43 +00:00
Pierangelo Masarati
8ea2f6e157 further clarify size limits 2004-04-15 01:16:53 +00:00
Pierangelo Masarati
6b2347be6a document lastmod overlay 2004-04-14 23:35:17 +00:00
Pierangelo Masarati
8bf68bc796 clarify the use of the fail_if_no_mapping switch and minor cleanup 2004-04-14 13:10:00 +00:00
Pierangelo Masarati
3ea4368913 add slapsaslauth test tool 2004-04-13 17:18:03 +00:00
Pierangelo Masarati
25c672a844 document search disable feature (spin-off of limit on unchecked entries) 2004-04-09 17:57:48 +00:00
Pierangelo Masarati
2e13fbeea1 completion of limits w/ paged results control 2004-04-09 15:54:46 +00:00
Hallvard Furuseth
6b45e32da3 Add NEW_LOGGING note for the commented-out "debug" and "logfile" options. 2004-04-09 05:27:04 +00:00
Pierangelo Masarati
85b078a3cb clarify what rewrite rules suffixmassage corresponds to 2004-04-07 20:55:32 +00:00
Kurt Zeilenga
bd7cd42669 clarify updatedn (again) 2004-04-07 03:32:55 +00:00
Kurt Zeilenga
bd765b849d ITS#2768: configuring slurpd's interval between replog checks 
based upon a patch submitted by Jason Townsend (Apple).
 2004-03-23 01:12:11 +00:00
Howard Chu
d4d5e253d9 Fix header 2004-03-19 20:23:26 +00:00
Howard Chu
057a385346 Rename slapd-ppolicy.5 to slapo-ppolicy.5 2004-03-19 20:18:46 +00:00
Pierangelo Masarati
9e159e2382 remove outdated comment 2004-03-18 21:48:21 +00:00
Pierangelo Masarati
fa3baaeae9 overlays reworking 2004-03-18 18:59:46 +00:00
Howard Chu
d1292c1b14 Added ppolicy_use_lockout keyword; Default behavior is not to issue the 
PP_accountLocked error for locked accounts. (Gives too much information
to attackers.)
 2004-03-18 10:35:54 +00:00
Pierangelo Masarati
32a3311156 typo 2004-03-18 00:40:31 +00:00
Pierangelo Masarati
cd105fab4e man page 2004-03-18 00:36:50 +00:00
Pierangelo Masarati
f970303799 document new tools and remove deprected switches 2004-03-18 00:11:40 +00:00
Pierangelo Masarati
732ad4a3da document new tools 2004-03-18 00:07:24 +00:00
Howard Chu
e5ec72c2b9 Add note about overlay directive 2004-03-16 22:25:08 +00:00
Howard Chu
9e39c5e0b6 Docs for ppolicy overlay 2004-03-16 22:00:30 +00:00
Pierangelo Masarati
65b49dd312 add "searchFilterAttrDN" rewrite context, and allow filterstring rewrite 2004-03-10 21:11:14 +00:00
Pierangelo Masarati
006745430e allow "expand" style in peername, sockname, sockurl as well; more sanity checks 2004-03-09 19:44:14 +00:00
Pierangelo Masarati
042869366d use "expand" instead of "regex" for group ACLs that allow substring expansion, preserving backwards compatibility; add sanity checks 2004-03-09 16:33:05 +00:00
Pierangelo Masarati
4645eeb5ec cleanup DN style in limits 2004-03-08 13:13:30 +00:00
Pierangelo Masarati
f69c249892 fix program name (ITS#3003) 2004-03-06 15:48:21 +00:00
Pierangelo Masarati
5716b7f1b2 document saslAuthzTo/saslAuthzFrom new syntax; add onelevel style to DN type 2004-03-06 11:00:49 +00:00
Howard Chu
5f9a87c041 password-hash now takes a list of mechanisms 2004-03-02 22:17:20 +00:00
Howard Chu
c519390c82 Add -T option for invoking in tool mode 2004-02-26 19:26:12 +00:00
Kurt Zeilenga
b927f86e3f Clarify updatedn 2004-02-25 17:37:59 +00:00
Pierangelo Masarati
4e57108991 allow search limits based on groups (ITS#2967) 2004-02-18 16:40:36 +00:00
Pierangelo Masarati
cf5e2496f7 map type/name were swapped 2004-02-05 18:17:27 +00:00
Kurt Zeilenga
1fa73dad3b Reworded -r description from Quanah (ITS#2941) 2004-01-30 01:19:54 +00:00
Kurt Zeilenga
e476580d85 clarify -t 2004-01-21 00:51:09 +00:00
Pierangelo Masarati
f5a9f62578 clarify that's useless to give write privileges to the roodn of a database... 2004-01-14 23:11:48 +00:00
Pierangelo Masarati
4dbc0b842a spacing (ITS#2916) 2004-01-10 11:17:52 +00:00
Kurt Zeilenga
c8408d3c6a ITS#2906: report invalid userPassword schemes, clarify documentation 2004-01-09 04:11:57 +00:00
Kurt Zeilenga
3c598e89fb Happy new year 2004-01-01 19:15:16 +00:00
Kurt Zeilenga
b613a3d57d crypt(3) is not portable... 2003-12-30 01:37:38 +00:00
Pierangelo Masarati
3994dc645a allow to set max passes per rule 2003-12-29 18:02:49 +00:00
Pierangelo Masarati
9e86d9ffe2 clarify field description in rewriteRule statement 2003-12-29 17:12:29 +00:00
Pierangelo Masarati
c860ba6a23 fix, clarify and document previous commit 2003-12-29 17:06:43 +00:00
Pierangelo Masarati
3ddfddb1a7 typo 2003-12-29 15:22:10 +00:00
Jong Hyuk Choi
cd16a93244 update syncrepl and session log info 2003-12-21 16:32:00 +00:00
Pierangelo Masarati
8e89944abc for consistency, always allow 'onelevel' as an alias for 'one' in dnstyle 2003-12-20 15:29:05 +00:00
Jong Hyuk Choi
4894623e4d replica promotion / demotion 2003-12-19 23:12:44 +00:00
Kurt Zeilenga
aabcce3e58 Document +0 2003-12-19 05:06:51 +00:00
Kurt Zeilenga
2284f101fc Print UNDEFINED on compare error 2003-12-18 23:24:49 +00:00
Pierangelo Masarati
113727ba53 allow 'all' vs. 'any' sasl-authz-policy 2003-12-18 18:28:43 +00:00
Kurt Zeilenga
7f4ff18bd4 Update index to encourage "proper" use 2003-12-18 02:12:44 +00:00
Pierangelo Masarati
ca52621c1b some notes on access required by proxyAuthz control; 
note that other controls may need different access
privileges via, e.g., backend_attribute() (syncrepl?)
 2003-12-18 00:27:01 +00:00
Kurt Zeilenga
c4c6a38a0b Dont mention bare oc in list. 2003-12-17 17:48:56 +00:00
Kurt Zeilenga
30a1ff596d s/+/@/ in OC attr lists 2003-12-17 17:36:41 +00:00
Pierangelo Masarati
947f41832e more clarifications on dnstyle usage 2003-12-16 11:20:59 +00:00
Pierangelo Masarati
ee34f3fb64 add to 'val[.<style>=<value>' ACLs special match styles for DN-valued attributes; add negated objectClass to attribute name lists for ACLs and partial replication 2003-12-16 00:49:10 +00:00
Kurt Zeilenga
75b9f8acdc Make a few OPERATIONAL REQUIREMENT clarifications 
Clean up formating
 2003-12-15 18:41:23 +00:00
Pierangelo Masarati
7444352358 describe detailed access levels required for each operation 2003-12-15 17:55:55 +00:00
Kurt Zeilenga
eec0f83fd7 Fix typos 2003-12-14 21:00:52 +00:00
Pierangelo Masarati
529a03df53 use dedicated admin identity to proxyAuthz 2003-12-13 10:57:42 +00:00
Howard Chu
2f06437348 Updated for proxycache overlay. Probably belongs on its own now... 2003-12-07 04:30:39 +00:00
Kurt Zeilenga
17939ccdca Clarify that the updatedn should not be same as the rootdn. 2003-12-02 21:18:19 +00:00
Pierangelo Masarati
f0ea4161ba add administrative bind and proxyAuthz control to enable bound operations in distributed directories (need to manually #define LDAP_BACK_PROXY_AUTHZ and patches from ITS#2851 and ITS#2852) 2003-12-01 08:29:06 +00:00
Jong Hyuk Choi
4ae382fd79 misc updates 
- syncrepl : id -> rid
 - man page update
 2003-11-26 21:37:44 +00:00
Jong Hyuk Choi
1fdda703e6 Support multiple sync replication at the consumer : 
1) simultaneous operation of multiple active sync replication threads
2) cookie management for individual sync replication thread
   (include rid=%3d to the slapd cookie command line option (-c))
 2003-11-26 19:49:47 +00:00
Kurt Zeilenga
e3a4c4ec9c Notice/Acknowledge updates 2003-11-26 02:58:56 +00:00
Jong Hyuk Choi
c204f4061f keeps syncrepl manpage sections current 2003-11-24 23:16:45 +00:00
Howard Chu
f23c5d9565 ITS#2823 delete extraneous argument 2003-11-15 08:40:51 +00:00
Howard Chu
470345e993 ITS#2822 fix typos 2003-11-15 08:34:36 +00:00
Pierangelo Masarati
9620cacd34 clarify the usage of the <modifier> field in 'dn' and 'domain' clauses of <who> access directive 2003-11-01 14:14:09 +00:00
Kurt Zeilenga
d0c05e814d Add a basic DIT content rule test. 
Fix DIT rules to allow extensibleObject in AUX
unifdef -DSLAP_EXTENDED_SCHEMA
 2003-10-24 04:40:32 +00:00
Kurt Zeilenga
f6c1163eea clarify that replacement, but not expression evaluation, 
is done on the string in group.regex=string
We really should rename the style, in this case, to "replacement".
 2003-10-15 08:04:25 +00:00
Luke Howard
976f61f0ed Update SLAPI manual page 2003-10-12 06:36:29 +00:00
Kurt Zeilenga
d03c83f077 ITS#2621, reference slapd.plugin 2003-10-12 04:22:26 +00:00
Kurt Zeilenga
fd445970fb document ditcontentrule directive 2003-10-12 04:20:20 +00:00
Kurt Zeilenga
7094fd6c08 Update filter representations to conform to RFC 2254. 2003-10-07 22:41:45 +00:00
Howard Chu
878bff913a Added description for idlcachesize, shm_key 2003-09-27 07:06:48 +00:00
Howard Chu
0eca4fa42f More for dynamic groups 2003-09-21 10:52:44 +00:00
Howard Chu
11148522ec ITS#2573 dynamic group support 2003-09-21 10:45:57 +00:00
Howard Chu
b93a0f45d5 ITS#2497 value-level ACLs 2003-09-21 10:34:40 +00:00
Jong Hyuk Choi
7f882daf15 Schema checking option for LDAP Sync replication 2003-09-03 21:42:52 +00:00
Jong Hyuk Choi
8dc1ac85dd manual update for proxy cache (apurva) 2003-09-03 16:26:17 +00:00
Jong Hyuk Choi
372cb876a0 slapd.conf man page update (LDAP Sync replication configuration) 2003-08-28 22:29:55 +00:00
Kurt Zeilenga
9b0de44b91 Add clarification about authzDN which don't exist in the DIT 2003-08-14 18:38:20 +00:00
Kurt Zeilenga
bd98f4c2a2 ITS#2644: fix inconsistent domain names used in example 2003-08-09 03:23:03 +00:00
Kurt Zeilenga
443d4c8999 sasl-regexp clarifications 2003-07-29 15:28:52 +00:00
Hallvard Furuseth
c1270ba4d5 Rename LDAP_OPT_ERROR_NUMBER to LDAP_OPT_RESULT_CODE. 2003-07-22 18:49:40 +00:00
Hallvard Furuseth
7c5d23dd05 ldap_msgfree() can take a result chain, not just a single result. 2003-07-22 18:30:59 +00:00
Kurt Zeilenga
0a1be4b126 ITS#2622: ucdata is in DATADIR 2003-06-30 18:39:17 +00:00
Hallvard Furuseth
d0582fb4c2 Replace some tabs with spaces. 
Split some too long preformatted lines.
 2003-06-29 15:34:32 +00:00
Hallvard Furuseth
c20dbfb4f6 Remove SEE ALSO locale(5); the locale option has been gone for ages. 2003-06-27 17:30:13 +00:00
Hallvard Furuseth
e613b1a353 Add BACKENDS section in slapd.conf(5). 
Briefly compare back-bdb and back-ldbm.
Remove mention of MDBM and NDBM.  Rename GNU DBM to GDBM.
Fix spacing typos.  Prefix an octal file mode with 0.
Mention "notags" (new name for "nolang" from the attribute options patch).
Add SEE ALSO slapd-monitor(5) to slapd.conf(5).
 2003-06-27 12:22:27 +00:00
Hallvard Furuseth
7d57eb4c03 Fix spacing typos. 2003-06-27 12:16:29 +00:00
Pierangelo Masarati
ade4642f85 Document proxy cache extensions (by way of Jong Hyuk Choi) 2003-06-24 11:49:56 +00:00
Howard Chu
44e32b3f7f ITS#2594 add URI support for replica config 2003-06-14 00:06:36 +00:00
Kurt Zeilenga
256732f2ce s/tls/starttls/ 2003-06-10 18:32:36 +00:00
Hallvard Furuseth
feef99c760 Axe abandon support (ITS#2564) 2003-06-03 12:02:00 +00:00
Kurt Zeilenga
0954351565 Change ACL default style to exact (from regex) 2003-05-30 05:24:39 +00:00
Howard Chu
5ce0e3afb1 Add authors 2003-05-25 03:50:59 +00:00
Kurt Zeilenga
52e88a36a4 Fix typos ITS#2544 2003-05-24 05:20:15 +00:00
Kurt Zeilenga
d6bfa4ab8f remove documentation for bind_simple_unprotected 
(which was axed log ago)
 2003-05-24 01:26:38 +00:00
Kurt Zeilenga
b378944fc1 Zap "TLS hard" 2003-05-22 00:15:57 +00:00
Hallvard Furuseth
437e179098 Fix typo. 2003-05-19 17:30:14 +00:00
Pierangelo Masarati
ea8e28c6c1 update back-monitor man page 2003-05-18 23:26:30 +00:00
Kurt Zeilenga
c8a6d52e04 Rework CAVEATS 2003-05-17 18:37:40 +00:00
Pierangelo Masarati
904f513028 clarify DN regex match quirks 2003-05-17 12:39:10 +00:00
Kurt Zeilenga
7c8f3b351f Warn folks that setting TLS option may break some applications. 
URI should be used instead.
 2003-05-17 01:08:09 +00:00
Hallvard Furuseth
7e8ff6df6b Implement slapcat -s <dn>: Only dump a subtree of the database. 2003-04-29 20:47:21 +00:00
Hallvard Furuseth
fa915adb5b Minor nroff tweaks. 2003-04-29 15:14:35 +00:00
Kurt Zeilenga
c661a77268 axe suffixAlias 2003-04-26 23:52:28 +00:00
Kurt Zeilenga
26badc8174 Add some comments about DB_CONFIG 2003-04-24 16:22:46 +00:00
Howard Chu
5642e54117 Fix file: URL examples 2003-04-23 03:35:37 +00:00
Howard Chu
a58190e2b1 Fix missing slash in file: URL 2003-04-23 03:32:05 +00:00
Kurt Zeilenga
099c2426b8 clarify that updatedn permits replica updating subject to access controls. 2003-04-21 02:29:46 +00:00
Pierangelo Masarati
ab9f7108f1 add caveats to man page; cleanup and small improvements 2003-04-16 22:23:46 +00:00
Pierangelo Masarati
9a39dcb7d4 add slurpd pid/args files 2003-04-15 21:56:21 +00:00
Pierangelo Masarati
8563681f18 document recent changes 2003-04-15 20:55:29 +00:00
Kurt Zeilenga
06da0f5e6f Clarify "users" terminology 2003-04-15 02:20:01 +00:00
Pierangelo Masarati
3e3e5fdec5 first cut at documenting back-monitor 2003-04-08 23:46:56 +00:00
Pierangelo Masarati
250934254b cleanup 2003-04-07 21:42:51 +00:00
Pierangelo Masarati
d275fee025 new rewrite example 2003-04-03 21:17:09 +00:00
Pierangelo Masarati
430077e2ed partially revert previous commit 2003-04-02 23:01:21 +00:00
Pierangelo Masarati
a67b41eb69 fix listener mod handling 2003-04-02 20:27:58 +00:00
Kurt Zeilenga
02028df6c6 Add additional password file support. 2003-03-31 06:29:59 +00:00
Howard Chu
2c2bf67cea ITS#2389, describe conn_max_pending/auth keywords 2003-03-27 04:18:16 +00:00
Hallvard Furuseth
1f00bd3c7f Manpage nitpicks 2003-03-23 16:37:06 +00:00
Kurt Zeilenga
98e5afc28f Remove cache stuff 2003-03-20 19:50:22 +00:00
Pierangelo Masarati
c4b925f343 document -u option 2003-03-18 10:38:23 +00:00
Kurt Zeilenga
f4bb9a5d64 Fix typo (ITS#2379) 2003-03-15 23:36:23 +00:00
Howard Chu
bd935956f4 ITS#2366 typos 2003-03-12 21:51:17 +00:00
Kurt Zeilenga
472a79f211 LDAPv2 is Historic 2003-03-10 15:34:14 +00:00
Kurt Zeilenga
6fb4582d5c suffixalias is no longer supported 2003-03-07 18:57:30 +00:00
Howard Chu
a60f6fe1a3 Added proxy-whoami keyword and some mention of connection pooling. Depends 
on libldap_r, proxy authz control...
 2003-02-26 16:35:09 +00:00
Kurt Zeilenga
63efc41728 clarify global ACL use 
clarify root and subschema DSE ACLs
 2003-02-24 19:53:03 +00:00
Kurt Zeilenga
607215a8d6 Some dn.regex clarifications 2003-02-23 19:38:32 +00:00
Kurt Zeilenga
f620aa08f9 Max workers was lowered to 16. 2003-02-21 07:18:43 +00:00
Kurt Zeilenga
5abec40030 Document URI and SASL directives 2003-02-09 06:49:34 +00:00
Kurt Zeilenga
698d73d5f3 Disable reverse lookups by default for security 
(and performance) reasons.
 2003-02-08 07:40:19 +00:00
Pierangelo Masarati
f19df0a307 add 'rebind-as-user' according to back-ldap's implementation 2003-02-05 22:04:20 +00:00
Kurt Zeilenga
1aae1854ac delete (7) after UTF-8 2003-02-05 20:42:50 +00:00
Pierangelo Masarati
eed2d5db4d only document 'subtree', but also allow 'sub' 2003-02-05 20:38:42 +00:00
Pierangelo Masarati
381e293b41 allow 'sub' and 'subtree' in acl (fix ITS#2300) 2003-02-05 19:39:34 +00:00
Pierangelo Masarati
ac895cd4d5 document the multiple URI feature 2003-02-04 19:50:17 +00:00
Pierangelo Masarati
55d21236d1 comment a useful feature of using URIs 2003-02-04 19:43:10 +00:00
Hallvard Furuseth
1fbbc11811 Fix LBER_ERROR vs. -1 confusion. 2003-01-19 13:10:17 +00:00
Kurt Zeilenga
d2bb1b5691 Add a few notes about intended usage of these backends 2003-01-09 12:07:14 +00:00
Kurt Zeilenga
6939c53170 Happy new year 2003-01-03 20:20:47 +00:00
Hallvard Furuseth
3dca6b67a5 Fix typo. 2002-12-16 07:32:06 +00:00
Hallvard Furuseth
5ca8773a8b Fix typos. 2002-12-16 07:31:13 +00:00
Hallvard Furuseth
09df53687e Make links to ber_bvfree and others, and add them to NAME section. 2002-12-16 07:29:43 +00:00
Hallvard Furuseth
7ce4a611dc Fix ldap_extended_s(3) -> ldap_extended_operation(3) 2002-12-16 07:28:10 +00:00
Pierangelo Masarati
df5d69df8f allow a custom error log file for plugins by means of a slapd.conf directive; add very bare-bone back-monitor info about installed plugins 2002-12-14 15:04:37 +00:00
Howard Chu
143603690f Added searchstack keyword description. (Sorry, I don't like the word "slab"...) 2002-12-12 23:39:21 +00:00
Hallvard Furuseth
54728f367e Implement user-defined tagging attribute options and ranges 2002-12-12 13:56:05 +00:00
Pierangelo Masarati
9cce5e4c98 a skeleton of slapd.conf directives for SLAPI configuration (lot to do) 2002-12-07 18:03:13 +00:00
Pierangelo Masarati
65efd6a185 fix -h option example for multi-URI handling (as suggested by Roland Bauerschmidt <rb@debian.org>) 2002-11-24 21:52:48 +00:00
Pierangelo Masarati
8473f6e778 set keyword to noEstimate and document it 2002-11-21 20:57:00 +00:00
Pierangelo Masarati
59aea47963 improve limits handling and consistency; return "Admin limit exceeded" instead of "Unwilling to perform" 2002-11-21 12:58:59 +00:00
Pierangelo Masarati
b9e442d7de clarify how to specify no limits 2002-10-31 11:26:19 +00:00
Pierangelo Masarati
53e1930fd0 use keyword "unlimited" instead of -1 for no limits 2002-10-31 09:57:24 +00:00
Kurt Zeilenga
c14cbc1fb7 Update anon 2002-10-26 02:53:36 +00:00
Pierangelo Masarati
86dbdc1ddb document socket permission extension to ldapi:// 2002-10-23 14:22:21 +00:00
Kurt Zeilenga
6bc33d28c0 Note --without-threads limitation 2002-10-16 16:54:27 +00:00
Kurt Zeilenga
023d0e2a5c Rework unprotected simple bind checks 2002-10-08 19:03:18 +00:00
Kurt Zeilenga
36fca96695 if "disallow bind_simple_unprotected", require at least SSF of 2 2002-10-08 01:06:49 +00:00
Kurt Zeilenga
90e320398a Clarify that "security ssf=n" applies to "disallow bind_simple_unprotected". 2002-10-08 00:51:19 +00:00
Kurt Zeilenga
de6ed4fde4 Undocument -C (chase referrals) 
(already removed from usage statements)
 2002-09-23 21:33:26 +00:00
Kurt Zeilenga
68aebc05c9 Clean up hash password scheme stuff 2002-09-20 17:27:08 +00:00
Kurt Zeilenga
11a07153d6 Add some clarification as to what hash algorithms are used 
with each password-hash scheme.
 2002-09-20 17:12:58 +00:00
Kurt Zeilenga
f0a3a7bb47 Add reference to ldap.conf(5) 2002-09-04 21:00:11 +00:00
Kurt Zeilenga
2ca678ea2e More LDAPNOINIT statement to top of DESCRIPTION 2002-09-04 20:59:57 +00:00
Kurt Zeilenga
3cb2dc149d Document -R 2002-09-02 19:25:10 +00:00
Pierangelo Masarati
5a0ba6e429 document another (optional) config directive 2002-08-31 10:27:49 +00:00
Kurt Zeilenga
18e4362b07 Add ldapwhoami(1) 2002-08-24 06:28:10 +00:00
Kurt Zeilenga
dabbefd908 Add -y. 2002-08-24 06:19:39 +00:00
Pierangelo Masarati
f11c6b27e7 Final run of changes to back-sql; IBM db2 support has been tested. 
Now related ITSes need be audited and possibly closed.

Enhancements:
  - re-styled code for better readability
  - upgraded backend API to reflect recent changes
  - LDAP schema is checked when loading SQL/LDAP mapping
  - AttributeDescription/ObjectClass pointers used for more efficient
    mapping lookup
  - bervals used where string length is required often
  - atomized write operations by committing at the end of each operation
    and defaulting connection closure to rollback
  - added LDAP access control to write operations
  - fully implemented modrdn (with rdn attrs change, deleteoldrdn,
    access check, parent/children check and more)
  - added parent access control, children control to delete operation
  - added structuralObjectClass operational attribute check and
    value return on search
  - added hasSubordinate operational attribute on demand
  - search limits are appropriately enforced
  - function backsql_strcat() has been made more efficient
  - concat function has been made configurable by means of a pattern
  - added config switches:
      - fail_if_no_mapping	write operations fail if there is no mapping
      - has_ldapinfo_dn_ru	overrides autodetect
      - concat_pattern		a string containing two '?' is used
				(note that "?||?" should be more portable
				than builtin function "CONCAT(?,?)")
      - strcast_func		cast of string constants in "SELECT DISTINCT					statements (needed by PostgreSQL)
      - upper_needs_cast	cast the argument of upper when required
				(basically when building dn substring queries)

Todo:
  - add security checks for SQL statements that can be injected (?)
  - re-test with previously supported RDBMs
  - replace dn_ru and so with normalized dn (no need for upper() and so
    in dn match)
  - implement a backsql_normalize() function to replace the upper()
    conversion routines
  - note that subtree deletion, subtree renaming and so could be easily
    implemented (rollback and consistency checks are available :)
  - implement "lastmod" and other operational stuff (ldap_entries table ?)
 2002-08-23 08:54:08 +00:00
Howard Chu
33d5c0abd7 Fix errors in replica directive 2002-08-22 20:32:09 +00:00
Pierangelo Masarati
76e936e274 reflect recent additions to backend configuration 2002-08-13 17:13:57 +00:00
Howard Chu
1be4ab9d07 ITS#1893 Add (terse) schemadn description 2002-08-10 04:09:28 +00:00
Kurt Zeilenga
e2b8a3b139 Remove reference to getfilter(3) 2002-08-08 03:03:48 +00:00
Kurt Zeilenga
9c28c9b361 Zap LDAPv2-only stuff 2002-08-08 03:01:14 +00:00
Kurt Zeilenga
884b476c32 Add note regarding user/system checks and operational attributes. 2002-08-02 00:55:50 +00:00
Kurt Zeilenga
65b5f64a0e Clarify use of slapd.conf(5) v ldap.conf(5). 2002-07-24 03:11:58 +00:00
Kurt Zeilenga
99133f7944 Fix a few typos 2002-07-10 03:12:47 +00:00
Kurt Zeilenga
b839e6fc8b Remove misleading (untrue) text about known syntax OID macros. 2002-06-27 16:27:07 +00:00
Kurt Zeilenga
0cd54a7d27 Fix typo in last commit 2002-06-21 21:25:38 +00:00
Kurt Zeilenga
2893a78d0a Add LIBRARY section to each man page 2002-06-21 07:32:54 +00:00
Kurt Zeilenga
cbaf9f6649 Make it clear that ldap_explode_dn() and friends are deprecated. 2002-06-17 22:45:34 +00:00
Kurt Zeilenga
9a38d98d37 Add option to disallow unprotected simple authentication. 
Add protected simple authentication as a "strong" mechanism.
 2002-06-17 22:18:27 +00:00
Howard Chu
98b1e09c44 Note that TLS_CERT and TLS_KEY are user-only options. 2002-06-16 12:10:23 +00:00
Howard Chu
dca986280e Fix typo in previous commit 2002-06-16 07:29:06 +00:00
Howard Chu
0f0c268c6d Minor cleanup and reformat, added TLS options. 2002-06-16 07:19:31 +00:00
Kurt Zeilenga
27fdd04153 Add -4/-6 flags to slapd to force use of IPv4 or IPv6 2002-06-15 22:01:39 +00:00
Kurt Zeilenga
220b41bc91 Patch: Bugs with back-ldap/meta mappings (ITS#1787) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

manpage patch for ITS#1787.
 2002-06-14 20:41:40 +00:00
Howard Chu
7b9d3b4a26 Added sasl-authz-policy 2002-06-14 11:02:57 +00:00
Kurt Zeilenga
b43ad1dd0e Generate man page date from version.sh 2002-06-13 03:59:10 +00:00
Kurt Zeilenga
faf91f1f1f Update to the 'gentle SIGHUP' patch. (ITS#1679) 
- Let write operations return unwilling-to-perform after
  'gentle shutdown' has been initiated.
- Change -1 to 2 in slapd_gentle_shutdown and slapd_shutdown, since
  sig_atomic_t can be unsigned (ITS#1736).  The 'gentle SIGHUP' patch
  is older than ITS#1736 but was applied later, so it reintroduced
  the problem.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, June 2002.
 2002-06-12 15:43:19 +00:00
Kurt Zeilenga
dfeac21baa Add {CLEARTEXT} to password-hash possibilities 2002-06-12 00:50:28 +00:00
Kurt Zeilenga
133a4ebbc4 Note that rootpw can only be set if rootdn is under suffix. 2002-06-08 18:40:36 +00:00
Kurt Zeilenga
91088eaa84 Full_Name: Norbert Klasen 
Version: head
OS: SuSE Linux 7.3
URL: ftp://ftp.openldap.org/incoming/norbert.klasen.rejects.20020605.patch
Submission from: (NULL) (62.104.216.66)

This patch adds an '-S' option to ldapmodify. If a filename is specified with
this option, records which could not successfully be added/modified/deleted from
the LDAP server will be written to the specified file. Most useful in
conjunction with '-c' option.
 2002-06-06 00:31:09 +00:00
Kurt Zeilenga
951ca2bd68 Patch: Non-unique msgid for abandon in back-<shell,tcl> (ITS#1793) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

It has just occurred to me - duh - that the process ID of a back-shell
command is a perfectly good unique ID for it, and more useful than
any connection id/message id thingy.  Doesn't need extra arguments
to the shell commands either, except a pid: line to abandon.
And msgid: can still be removed in a future version.
Here is a patch.


Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, May 2002.
 2002-06-05 16:40:16 +00:00
Kurt Zeilenga
94ef44e463 param error comment is incorrect 2002-06-05 15:56:55 +00:00
Kurt Zeilenga
19eca33ca3 Gentile HUP shutdown from Hallvard 2002-06-03 16:47:43 +00:00
Kurt Zeilenga
4543536bdb Fix up -f description 2002-06-01 21:41:09 +00:00
Kurt Zeilenga
15e6a98bba Patch: Non-unique msgid for abandon in back-<shell,tcl> (ITS#1793) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Here is a patch which does what I described.  Of course, someone has
to decide if that is the right solution:-)
- Add an "opid:" line to the input to back-shell commands.
- Add an "abandonid: <opid> line to back-shell/abandon input.
- Replace message id with opid in back-tcl arguments.
- Add an abandonid = <opid> argument to back-tcl/abandon.
An opid (operation ID) is a "connection ID/message ID" string.  I
would have liked to use another name to avoid confusion with struct
slap_op->o_opid, but I could not think of another apt word.

This also fixes ITS#1784 and ITS#1792.  Since calling conventions
changed anyway, I fixed back-shell by adding abandonid: and making
opid: always be the ID of the current operation.

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, May 2002.
 2002-05-09 02:11:39 +00:00
Kurt Zeilenga
2ab8810555 Documentation patch #4 (ITS#1749) 
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
			================

Small changes:
- Fix typo slapd_meta -> slapd-meta in slapd-meta(5).
- Add slapd-dnssrv(5) to SEE ALSO in slapd.conf(5).
- Add descriptions of the files in FILES sections.
- Add $HOME/.udrc to FILES in ud(1) and ud.conf(5).
- Add ldaprc (without ".") and ENVIRONMENT VARIABLES in ldap.conf(5).
- Change manpage references to proper ".BR name (section)".

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, May 2002.
 2002-05-09 02:07:41 +00:00
Kurt Zeilenga
46e33e4634 Fix typos 2002-05-04 04:35:41 +00:00
Kurt Zeilenga
7b1d619a58 Basic dnssrv man page 2002-05-04 04:34:58 +00:00
Pierangelo Masarati
71aa1c5dc9 clarifications 2002-05-02 16:49:47 +00:00
Pierangelo Masarati
4f24ebbb8d 3rd step at updating docs by hallvard Furuseth (with minor changes in slapd-meta.5) 2002-05-02 16:35:16 +00:00
Howard Chu
d879fb351b Added config keyword descriptions from ITS#966. Minor cleanup. 2002-05-01 20:24:56 +00:00
Pierangelo Masarati
4ad033a298 couple of fixes 2002-05-01 19:36:24 +00:00
Howard Chu
0bb46f937b From Hallvard, with slight changes 2002-05-01 19:21:21 +00:00
Pierangelo Masarati
1aa96af216 second round at ITS#1749 2002-05-01 16:38:30 +00:00
Pierangelo Masarati
22c45ec87b couple of fixes 2002-04-29 20:36:04 +00:00
Pierangelo Masarati
d019bff7b8 First commit of Hallvard's backend documentation effort 
Backend documentation patch, version 1

================
Most of this text is taken from OpenLDAP.  The work of rewriting it
to manual pages is done by by Hallvard B. Furuseth and placed into
the public domain.  This software is not subject to any license of
the University of Oslo.
================

Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, April 2002.
 2002-04-29 20:24:29 +00:00
Howard Chu
5de276fa25 ITS#1749 added maxderefdepth, suffiaxalias, TLSCACertificatePath, 
ucdata-path, moduleload, modulepath. sasl-external-x509dn-convert has
been deleted from the code.
 2002-04-20 10:06:23 +00:00
Howard Chu
e265b47181 Comment out "logfile", its code is behind #ifdef NEW_LOGGING in config.c. 2002-04-20 09:23:19 +00:00
Howard Chu
5770a81595 ITS#1749 added "debug" description, commented out because it has no effect 
without NEW_LOGGING. Added logfile.
 2002-04-20 09:07:24 +00:00
Howard Chu
510f57c8dd ITS#1749 added BDB options 2002-04-20 08:12:03 +00:00
Kurt Zeilenga
c90a10465e Need to include <ldap_schema.h>. 2002-04-17 19:03:01 +00:00
Pierangelo Masarati
bd0fa7c579 document the -t switch 2002-04-15 19:18:54 +00:00
Kurt Zeilenga
fc71d62b92 trim finger from release 2002-04-15 18:14:02 +00:00
Pierangelo Masarati
d9748f0b06 updates SEE ALSO section 2002-04-13 15:08:03 +00:00
Pierangelo Masarati
4906410ca5 fix typo 2002-04-13 15:07:40 +00:00
Howard Chu
bf6fccd7bb ITS#1740 2002-04-13 10:56:16 +00:00
Howard Chu
491c0f22e0 ITS#1735 fix typos 2002-04-11 07:39:51 +00:00
Pierangelo Masarati
4a8ab5dbf2 Mostly based on patches provided by Hallvard B. Furuseth 
ITS#1677 - cast away const warnings
ITS#1678 - unsigned char args to ctype funcs
ITS#1682 - don't redefine ldap_debug
ITS#1683 - uninitialized vars
ITS#1703 - ldo_debug initialization
ITS#1705 - unsigned testing
ITS#1706 - socklen_t args
ITS#1719 - back-tcl update (other cleanups/fixes/improvements; yet untested)
ITS#1724 - integerNormalize/integerFilter/integerIndexer bugs
ITS#1725 - libdes not required

Implement back-null (/dev/null style backend)
Cleanup some misc warnings ("%lu" format, unused/uninitialized vars,
        ambiguous operator precedence)

Kurt, please regenerate configure
 2002-04-08 09:43:22 +00:00
Pierangelo Masarati
704ed641eb allow attribute exclusion list in selective replica 2002-03-30 08:57:41 +00:00
Pierangelo Masarati
53e28a63a9 fix typo 2002-03-30 08:46:35 +00:00
Kurt Zeilenga
6440556956 finish zapping url_search 2002-03-29 21:06:31 +00:00
Kurt Zeilenga
95691dc8b4 ITS#1680: Fix idle timeout typo 2002-03-25 17:26:07 +00:00
Pierangelo Masarati
f11a682c6f fix ITS#1668 2002-03-23 16:55:46 +00:00
Kurt Zeilenga
409398ea2d s/rootDSEfile/rootDSE/ 2002-02-07 18:17:24 +00:00
Kurt Zeilenga
400af27afa Add clarification to password-hash directive 2002-01-30 00:41:36 +00:00
Kurt Zeilenga
abf91ca1ff Initial ldapcompare(1) implementation. Adapted from patch 
submitted by Jeff Costlow <j.costlow@f5.com> (ITS#1560).

Portions:
Copyright 2002, F5 Networks, Inc, All rights reserved.
This software is not subject to any license of F5 Networks.

This is free software; you can redistribute and use it
under the same terms as OpenLDAP itself.
 2002-01-29 07:33:11 +00:00
Howard Chu
7f68a95bac Added TLSVerifyClient configuration notes 2002-01-27 04:49:32 +00:00
Howard Chu
5d927e7bb2 More updates. Need to add lber-sockbuf.3 ... 2002-01-25 12:34:57 +00:00
Howard Chu
916dec0d79 Mostly up to date. 2002-01-20 01:10:51 +00:00
Kurt Zeilenga
7ac207dc05 rm noautosubtypes 2002-01-15 02:47:06 +00:00
Howard Chu
b17f72ef8a More updates 2002-01-13 14:45:29 +00:00
Howard Chu
0e847131e0 Minor updates, mention extended requests, server and client controls. 
Please review and comment.
 2002-01-13 12:55:55 +00:00
Howard Chu
93d9a11089 Mention that objectClass names are valid in the attrs=<attrlist> clause. 2002-01-10 10:02:51 +00:00
Kurt Zeilenga
0e2af54a3f Update copyright statements 2002-01-04 21:17:25 +00:00
Kurt Zeilenga
3c415e0807 Refer to ldap_get/set_option, not ld_errno 2002-01-04 19:20:33 +00:00
Kurt Zeilenga
76524f6c50 Misc updates 2001-12-27 00:55:42 +00:00
Kurt Zeilenga
6c44ac070c Zap man pages of deprecated routines 2001-12-22 20:51:27 +00:00
Kurt Zeilenga
f021404b41 disallow bind_v2 is now default 2001-12-21 04:45:04 +00:00
Kurt Zeilenga
7caa803b59 Undocument 'schemacheck off' 2001-12-19 21:28:34 +00:00
Kurt Zeilenga
ff723903c5 Some index clarifications 2001-12-18 02:24:09 +00:00
Howard Chu
dfd26b8d95 Added description of "subordinate" keyword. 2001-12-15 07:15:32 +00:00
Kurt Zeilenga
dffcf0be27 zap friendly 2001-12-05 00:07:04 +00:00
Kurt Zeilenga
493b415255 Rework indexing code, removing "autolang" and making 
"subtypes" and "lang" default behavior.
 2001-12-05 00:06:03 +00:00
Pierangelo Masarati
ae74c1c97c small adjustment 2001-12-04 17:13:25 +00:00
Pierangelo Masarati
6d3df52af9 update limits stuff 2001-12-04 17:10:17 +00:00
Mark Adamson
bd091ce276 Allow size and time limits in slapd.conf for anonymous bound search operations 2001-11-21 20:28:15 +00:00
Kurt Zeilenga
74300deaab Some minor adjustments 2001-11-03 21:53:44 +00:00
Kurt Zeilenga
57a5439d6c Remove derived file 2001-11-03 19:07:05 +00:00
Pierangelo Masarati
cf13ded4fe access control man page 2001-11-03 18:03:10 +00:00
Pierangelo Masarati
64c7e39aa8 More compliant version of str2dn/dn2str; 
may need optimization;
uncomment #define USE_LDAP_DN_PARSING in libraries/libldap/getdn.c
to enable its use.
The ava/rdn/dn handling routines (append, insert, free and so) must
be made available thru declaration in some header.
 2001-10-29 08:05:23 +00:00
Kurt Zeilenga
fcd1ce0e28 Use defined Root DSE attributes. 
Developed by Julius Enarusai/IBM
Copyright IBM Corp. 2001

Use of this source code is subject to the terms of The OpenLDAP
Public License Version 2.7, 7 September 2001.  No trademarks of the
IBM Corporation are to be used to identify, endorse or promote any
products derived from this code without the prior written consent
of IBM.
 2001-10-23 23:29:41 +00:00
Kurt Zeilenga
850d8eba67 Minor update 2001-10-16 01:16:39 +00:00
Stig Venaas
4d4ed13f17 Section 3 man pages for ldap_parse_result(), 
ldap_parse_sasl_bind_result() and ldap_parse_extended_result()
 2001-10-10 23:05:43 +00:00
Kurt Zeilenga
492eb4b65b Note that slapadd produces LDIF in database order not 
superior first order.  Make note that slapcat doesn't
check for superiors.
 2001-10-05 19:48:59 +00:00
Kurt Zeilenga
a466dc75b1 Fix see also formating 2001-09-27 19:56:29 +00:00
Kurt Zeilenga
9ab1282f5d Minor cleanup 2001-09-27 02:51:22 +00:00
Kurt Zeilenga
ddc6c016b0 Misc. IETF LDAPext updates 2001-09-27 02:39:52 +00:00
Stig Venaas
28ab9fcaf5 Section 3 man page for ldap_parse_reference() 2001-09-26 10:35:54 +00:00
Kurt Zeilenga
e7d3103424 Acknowledge IETF work 2001-09-25 17:51:36 +00:00
Stig Venaas
1630c24f2a Section 3 man pages for ldap_first_reference(), ldap_next_reference() and 
ldap_count_references()
 2001-09-19 16:13:14 +00:00
Stig Venaas
e56883c35c Section 3 man pages for ldap_first_message(), ldap_next_message() and 
ldap_count_messages()
 2001-09-19 14:34:59 +00:00
Kurt Zeilenga
4abcfca8f5 Clean up DNs and remove extraneous files 2001-09-04 02:47:25 +00:00
Kurt Zeilenga
545a915c2e Use RFC 2253 DNs 2001-09-04 02:41:53 +00:00
Kurt Zeilenga
2b78f44203 More updates. 2001-08-30 04:54:59 +00:00
Kurt Zeilenga
71d564aee4 Add additional types to lber-types. 2001-08-30 03:02:36 +00:00
Kurt Zeilenga
f7690b1194 Password-hash doesn't support UNIX, KERBEROS, SASL schemes. 2001-08-29 19:37:32 +00:00
Kurt Zeilenga
d57365f407 Minor cleanup 2001-08-29 17:08:22 +00:00
Kurt Zeilenga
a9a5a3997d Add dnnolocking warning 2001-08-29 17:08:01 +00:00
Kurt Zeilenga
ec8e41f8d8 Remove -r 2001-08-29 17:03:53 +00:00
Kurt Zeilenga
b6fc1d3d43 Update kerberos flags 2001-08-24 20:17:23 +00:00
Pierangelo Masarati
6a5b253bc6 allow multiple limits setting on one global/per backend config line 2001-08-04 11:09:25 +00:00
Pierangelo Masarati
4919363fa0 more intuitive special limits configuration 2001-08-03 17:25:39 +00:00
Pierangelo Masarati
f35545b058 fix a couple of typos; schemacheck was duplicated 2001-08-01 10:47:44 +00:00
Pierangelo Masarati
8471ef7ed0 add global, per backend and per op_ndn time/size soft, hard and to-be-checked limits (exploited by back-ldbm); see slapd.conf(5) for details 2001-08-01 10:09:04 +00:00
Kurt Zeilenga
5d34881f45 Add no attrs clarification 2001-07-30 07:03:31 +00:00
Stig Venaas
c2daca1001 Fixed a tiny typo/spelling error 2001-07-29 11:46:41 +00:00
Pierangelo Masarati
2e79b7616b regex-based per op_ndn time/size limits 2001-07-28 12:07:40 +00:00
Pierangelo Masarati
d9889c28ef suffix option; allows partial replication of a database 2001-07-24 13:39:43 +00:00
Kurt Zeilenga
0b3072d393 Misc. updates 2001-07-24 07:56:07 +00:00
Kurt Zeilenga
3ce7e382d5 Misc updates 2001-07-24 06:26:32 +00:00
Kurt Zeilenga
0749253f10 Misc updates 2001-07-23 04:16:42 +00:00
Kurt Zeilenga
01e8c6e3e4 LDAPext I-D updates 2001-07-23 04:12:58 +00:00
Kurt Zeilenga
bac852d131 Add 3112 ref 2001-07-07 05:24:19 +00:00
Randy Kunkee
0ef87764d7 Move backend_syncfreq code down into back-ldbm. Creates new configuration 
for LDBM backends called "dbsync", which takes minimum of one argument up
to 3 args which are sync frequency, # of delays, and delay periods.  See
man page update for "dbsync" configuration for more details.
 2001-06-28 09:20:33 +00:00
Kurt Zeilenga
1229cfcc3f Backout directory config option 2001-06-22 21:00:24 +00:00
Kurt Zeilenga
ff993c7ddb Misc updates to password codes / docs 2001-06-13 05:40:24 +00:00
Kurt Zeilenga
72a55aa40f Leave dn2ufn. 2001-06-11 20:45:06 +00:00
Kurt Zeilenga
6cb35c0d89 More caching as experimental 2001-06-11 20:34:14 +00:00
Kurt Zeilenga
7746f0cbf9 Remove UFN man pages 2001-06-11 20:32:58 +00:00
Kurt Zeilenga
796e2ed786 Remove rebind from links for now 2001-06-11 20:26:05 +00:00
Kurt Zeilenga
9969deb348 Comment out rebind stuff until someone has a chance to 
rewrite it.
 2001-06-11 20:25:02 +00:00
Kurt Zeilenga
cc6fab319e Add support for separate max incoming for anonymous and authenticated 
sessions (defaults: 256K and 16M respectively).
 2001-05-29 20:00:55 +00:00
Kurt Zeilenga
49a4319b07 document sockbuf_max_incoming 2001-05-29 16:10:08 +00:00
Kurt Zeilenga
351e436dcf Add an LDBM backend "directory" directive (in addition to 
the existing database "directory" directive) to allow setting
of a DB_ENV directory.  Should likely be database specific.
 2001-05-29 01:51:37 +00:00
Kurt Zeilenga
80e026a1b6 Add lber-memory(3) to see also 2001-05-18 00:26:15 +00:00
Kurt Zeilenga
3733bfa207 No -r needed 2001-05-02 19:53:20 +00:00
Kurt Zeilenga
990ab4b119 Randfile 2001-05-02 19:52:58 +00:00
Kurt Zeilenga
867ed1c7c8 use "authcid" instead of "username". 2001-01-18 08:04:56 +00:00
Kurt Zeilenga
1ad7bd20bf s/binddn/credentials/ 2001-01-03 18:20:07 +00:00
Kurt Zeilenga
2f8f8b588e Fix format typo 2000-12-28 02:19:21 +00:00
Kurt Zeilenga
e7103a9f64 Add INADDR_ANY clarification. 2000-11-05 21:34:53 +00:00
Kurt Zeilenga
26e3fc4625 Document the "threads" directive 2000-10-18 00:22:30 +00:00
Kurt Zeilenga
9520b708eb Fix typo in concurrency description 2000-10-18 00:15:32 +00:00
Kurt Zeilenga
026a23fb81 Partial update of URL man page... 2000-10-17 19:07:56 +00:00
Kurt Zeilenga
282b192474 Note that the directory containing the replogfile as well as 
the slurpd temporary directory should have limited read/write/execute
access.
 2000-10-16 22:19:29 +00:00
Kurt Zeilenga
df47e87ec3 Zap defaultaccess option 2000-10-13 04:46:50 +00:00
Kurt Zeilenga
e6dc9d1889 Update ldappasswd binddn bug, man page and error reporting 2000-10-11 04:56:08 +00:00
Kurt Zeilenga
e9862ac995 Clarify handling of -r (chroot) option 2000-10-09 23:53:35 +00:00
Kurt Zeilenga
bbe9651ca9 fix maxbufsize=factor typo 2000-10-07 02:07:39 +00:00
Kurt Zeilenga
a912e6eea0 Make sure authzid form produces a valid subject DN. Support 
both u: and dn: forms.
Rework sasl-regex DN be of the form
	uid=user,cn=realm,cn=mech,cn=authz
Fix up slapd.conf(5)
 2000-10-06 23:50:38 +00:00
Kurt Zeilenga
1e7fe604e9 Comment on rootpw only be valid if rootdn is with namingContext 2000-10-06 21:19:20 +00:00
Kurt Zeilenga
1b635156ab s/saslregex/sasl-regex/ 
Other minor updates
 2000-10-06 21:16:36 +00:00
Kurt Zeilenga
71ba10ed20 Clarify memory usage 2000-10-04 20:40:49 +00:00
Kurt Zeilenga
fdc7b123ba Fix attrlist description 2000-10-04 01:50:49 +00:00
Kurt Zeilenga
314363a7f4 ITS#774 remove extranous paragraph regarding LDIF output 2000-09-26 17:08:38 +00:00
Mark Adamson
bf1ee530ea Implementation of SASL authorization. 2000-09-21 17:32:54 +00:00
Kurt Zeilenga
0cd8cf72fb Fix file:: uri 2000-09-19 20:44:05 +00:00
Kurt Zeilenga
ad08ff008e Remove -s (noschemacheck in favor of using global_schemacheck) 2000-09-17 20:40:43 +00:00
Kurt Zeilenga
b4c6774bf6 ITS#747: align with code changes from Bert Vermeulen <bert@biot.com> 2000-09-15 23:42:50 +00:00
Kurt Zeilenga
34f8561467 Update slurpd with StartTLS and additional SASL parameters 2000-09-15 23:41:07 +00:00
Kurt Zeilenga
5852f7188b Add 'defaultSearchBase' configuration directive to help support 
brain-damaged LDAPv2 clients.
 2000-09-11 21:57:14 +00:00
Kurt Zeilenga
3342ea3b49 Add more bind allow/disallow flags 2000-09-11 18:24:24 +00:00
Kurt Zeilenga
2e13824d0d Add "allow tls_2_anon" to allow StartTLS to force session to anonymous. 
Add "disallow tls_authc" to disallow StartTLS when session is authenticated.
Create and use connection2anonymous routine for consistency.
 2000-09-08 22:59:01 +00:00
Kurt Zeilenga
f4bc2e65d2 ITS#719 remove (more) -b 2000-09-07 18:01:22 +00:00
Kurt Zeilenga
4be39a7ae5 ITS(719) remove -b 2000-09-07 17:58:05 +00:00
Kurt Zeilenga
9c646a7fd8 Bring man page in sync with current usage. 
No ignore of numbers, no alternative form.
 2000-09-06 22:29:40 +00:00
Kurt Zeilenga
a07a97e7f6 document optional user argument 2000-09-06 18:44:51 +00:00
Kurt Zeilenga
5ed98aed27 Update references to RFCs 2000-09-01 22:10:19 +00:00
Kurt Zeilenga
db67d7cdc5 Add sasl-host directive 2000-08-30 03:50:16 +00:00
Kurt Zeilenga
c3ceb3b9db clarify Kerberos option availability 2000-08-28 22:49:44 +00:00
Kurt Zeilenga
26e8ba267d Add security factors to man page 2000-08-28 19:17:37 +00:00
Kurt Zeilenga
9715e7f008 Add disallow and requires to man page. Fix sasl ssf handling bug. 2000-08-28 18:58:13 +00:00
Kurt Zeilenga
a54b9cde6e Rework last commit for better forward compatibility 2000-08-25 07:55:08 +00:00
Kurt Zeilenga
be654e45f1 Remove meantion of authPassword from slappasswd(8) for 2.0. 
Use -u scheme (in line with future code).
Need to trim authPassword from release schema code/confs.
 2000-08-25 07:42:11 +00:00
Kurt Zeilenga
6f63134b26 Add support for "-H uri" 2000-08-25 05:31:59 +00:00
Kurt Zeilenga
95e11598ca Add URI to admin guide in See Also section 2000-08-24 23:18:06 +00:00
Kurt Zeilenga
8596bfe2d5 Document sasl_secprops 2000-08-24 01:09:18 +00:00
Kurt Zeilenga
2e4ed9333b Update date as well 2000-08-23 23:43:39 +00:00
Kurt Zeilenga
edd14b7c95 Update index description with substr varients and 
(experimental) subtyping options.
 2000-08-23 23:43:19 +00:00
Kurt Zeilenga
66552eb0bb Fix up examples 2000-08-21 03:10:47 +00:00
Kurt Zeilenga
52223bd699 Use example.com in examples 2000-08-21 03:09:53 +00:00
Kurt Zeilenga
7c3f69d756 More LDIF clarifications 2000-08-20 06:31:32 +00:00
Kurt Zeilenga
7a4172dcbd Clarify LDIF 2000-08-20 06:23:51 +00:00
Kurt Zeilenga
26fc5be75b Clean up RFC references 2000-08-20 06:21:38 +00:00
Kurt Zeilenga
2683cd6fe6 Update man page header 2000-08-20 01:00:12 +00:00
Kurt Zeilenga
3311d1ca8b Add descriptions for sasl options. 
Clarify other options and re-order a bit.
 2000-08-19 22:14:14 +00:00
Kurt Zeilenga
25a9f7427d Remove CLDAP cruft 2000-08-18 04:25:00 +00:00
Kurt Zeilenga
dd3e3a8fb8 rename admin guide 2000-08-18 02:58:05 +00:00
Mark Adamson
4a5498351e Added SASL authentication to slurpd for connecting to slave LDAP servers. 2000-08-17 16:30:37 +00:00
Kurt Zeilenga
c243a6fa92 ITS#657: Added command-line switch for searchbase to in.xfingerd 
ITS#658: man page
 from Tom Jordan <tjordan@doit.wisc.edu>
 2000-08-16 20:27:17 +00:00
Kurt Zeilenga
2b3b074b1c Update date 2000-08-13 22:06:44 +00:00
Kurt Zeilenga
56476a834e update guide ref + date 2000-08-13 22:06:01 +00:00
Kurt Zeilenga
f40d19abfc s/SLAPD and SLURPD/OpenLDAP/ .. (admin guide) 2000-08-13 22:00:36 +00:00
Kurt Zeilenga
99a775dc89 Add -r 2000-08-13 21:59:42 +00:00
Kurt Zeilenga
27ebe8534a Move default slurpd directory to $(LOCALSTATEDIR)/openldap-slurp. 2000-08-10 02:52:01 +00:00
Kurt Zeilenga
ee2e7457c7 Clean up attributetype and objectclass description 2000-08-07 23:04:20 +00:00
Kurt Zeilenga
40a233c079 Update command line option descriptions 2000-08-07 22:29:55 +00:00
Kurt Zeilenga
b7f0758fa2 Minor updates, needs to be updated and cleaned up 
Should be PRIMARY source for configuration options.
 2000-07-22 19:04:33 +00:00
Kurt Zeilenga
f0e445d9dd A few password related updates. 2000-07-22 18:32:33 +00:00
Kurt Zeilenga
890e342594 More links 2000-07-22 18:23:11 +00:00
Kurt Zeilenga
8fbe721b7a Add links for most _ext varients 2000-07-22 18:22:06 +00:00
Kurt Zeilenga
08d03a1333 Update C/R 2000-07-22 02:00:47 +00:00
Kurt Zeilenga
1a5a805cf4 Update ldap(3) (namely removing no longer supported routines) 
such as DNS DNs and charset routines.
 2000-07-22 01:59:08 +00:00
Kurt Zeilenga
90389fbb76 Trim AUTHOR section 2000-07-22 01:33:53 +00:00
Kurt Zeilenga
1609e96253 Add slapindex(8) and fix typo in slapcat(8). 2000-07-19 02:47:44 +00:00
Kurt Zeilenga
0f5c87a41c Clean up usage() 2000-07-17 21:54:20 +00:00
Kurt Zeilenga
44b42ba9c0 Add -I/-Q SASL mode options 2000-07-17 02:43:41 +00:00
Kurt Zeilenga
76f3601c3b Add -x flag (simple bind) 2000-07-16 00:52:04 +00:00
Kurt Zeilenga
19e45aee80 Add basic pages for BER types and memory allocators. 2000-07-13 22:56:16 +00:00
Kurt Zeilenga
da85564c0d Update SASL args 2000-07-13 22:54:45 +00:00
Kurt Zeilenga
5fc22599e2 Update SASL code to reuse context through life of session. 
Replace 'negotiated' with 'interactive' bind
Add hooks for SASL/EXTERNAL
Disable SASL security layers
Rework SASL command line and config file parameters
 2000-07-13 22:54:38 +00:00
Kurt Zeilenga
e2fa599482 Move old files to the Attic 2000-06-25 22:01:42 +00:00
Kurt Zeilenga
a56c2b59f9 Add -C to manual pages 2000-06-25 20:29:20 +00:00
Kurt Zeilenga
5f20cf1ed5 Modify ldapsearch(1) significantly. Now handles LDAPv3 search 
references, extended results, and extended partial results.  LDIF
extended to support these new features and reported version 2.
-L now limits output to LDIFv1 for compatibility reasons.  No
-L is now LDIFv2.  Old alternative form is no longer supported.

Use LDAP_TMPDIR (in ldap_config.h) instead of hardcoded /tmp
Use LDAP_FILE_URI_PREFIX (in ldap_config.h) instead of hardcoded
	file://tmp/
 2000-06-25 00:35:17 +00:00
Kurt Zeilenga
2c7f89b1b2 remove locale option. OpenLDAP is designed only for the "C" locale. 2000-06-20 16:55:23 +00:00
Kurt Zeilenga
f02e50a1bb Update examples to LDIFv1. Remove old format options. 2000-06-19 16:18:50 +00:00
Kurt Zeilenga
55d180f3ab Incomplete update of LDIF, refer to RFC 2000-06-18 19:41:49 +00:00
Kurt Zeilenga
65f9a005ed Add reference to slappasswd(8) 2000-06-18 19:40:38 +00:00
Kurt Zeilenga
93a8125eab Add OpenLDAP RCS ID 2000-06-18 19:39:31 +00:00
Kurt Zeilenga
187f4ab730 A couple of minor updates... needs overhaul 2000-06-16 06:44:25 +00:00
Kurt Zeilenga
d81a1ccfa4 Initial slappasswd(8) page 2000-06-16 06:43:55 +00:00
Kurt Zeilenga
bfa0862313 Update -Z description to reduce confusion with ldaps:// 2000-06-14 02:35:42 +00:00
Kurt Zeilenga
ec426532b2 Reworked thread code to better support thread-library specific 
r/w locks and thread pools.  Hide internal structures (using
pthread'ish technics).  Place common code in threads.c.  Move
no-thread code to thr_stub.c.  Move thread pool code to tpool.c.
Removed setconcurrency call from initializer, added 'concurrency'
directive to slapd.  Tested code under pthreads, pth, and no-threads.
 2000-06-13 02:42:13 +00:00
Kurt Zeilenga
6892f74529 Remove old schema directives 2000-06-06 07:57:41 +00:00
Julio Sánchez Fernández
00a9214608 Initial version of man page for the schema routines 2000-06-05 00:09:24 +00:00
Kurt Zeilenga
45c6324a9d Move ldapd into the Attic, quipu tools remain for now. 2000-06-01 23:00:22 +00:00
Kurt Zeilenga
e8c292df89 Add -n serviceName (for loggging purposes) 2000-05-26 19:52:40 +00:00
Kurt Zeilenga
e9d0b98a10 Update lber-encode/decode man pages 
Add ber_get_enum() for symmetry
 2000-05-13 23:08:25 +00:00
Kurt Zeilenga
4bc786f34b Y2k copyright update 2000-05-13 02:47:56 +00:00
Kurt Zeilenga
40d749ed6b Update LBER man pages to latest API. 
Need to add lber-types(3) to document BER types, allocation, and deallocation.
May need to add additional pages to document other new features.
 2000-05-13 01:44:58 +00:00
Kurt Zeilenga
865e24a8ac Update man page date. 2000-05-13 01:43:35 +00:00
Kurt Zeilenga
8c386888fa Move default LDBM directory from /usr/tmp to $(localstatedir) 2000-05-03 10:07:21 +00:00
Kurt Zeilenga
c02d7e2cb6 ITS#503: Extend ldap tools to support SASL/TLS 
Submitted by Gabor Gombas <gombasg@inf.elte.hu>
 2000-04-20 09:23:51 +00:00
Kurt Zeilenga
393ff0ad71 Add .ldaprc to SYSNOPSIS 2000-04-12 01:23:43 +00:00
Kurt Zeilenga
58987407fe Add comment concerning 'directory' LDBM option... a separate directory 
must be specified for each database.
 2000-03-03 19:51:39 +00:00
Kurt Zeilenga
152c0e25c2 Add reference to RFC 2307 (rootpw) 2000-03-01 22:58:30 +00:00
Kurt Zeilenga
3b4738ea96 remove #include <lber.h> from SYNOPSIS 1999-12-17 05:53:51 +00:00
Kurt Zeilenga
ab7c490960 Add BINDDN user-only directive to .ldaprc 
Used only for simple bind when dn == NULL and password != NULL.
 1999-12-17 03:27:16 +00:00
Kurt Zeilenga
7c28aa058c Add password check and generation check. 
Modify tests to use -h "ldap://localhost:port/" instead of -p port.
 1999-12-12 18:45:06 +00:00
Kurt Zeilenga
041c1545e8 Update usage and man page. 1999-12-10 04:59:28 +00:00
Kurt Zeilenga
d5edb4bff6 Reengineered ldappasswd(1). Uses extended operation to set 
user password.  Likely to be modified to use bind control
instead.  Use of modify deprecated in favor mechanisms that
support passwords stored externally to the directory (such
as in a SASL service).
Modified slapd extended operation infrastructure to support
backend provided extended operations.
 1999-12-08 04:37:59 +00:00
Gary Williams
e5583656ec add -r switch to man page 1999-12-06 19:02:39 +00:00
Kurt Zeilenga
f6829ee903 Initial commit of new ACL engine. Engine supports descrete access 
privs, additive/substractive rules, and rule continuation.  Existing
rules that use 'defaultaccess none' should be 100% compatible.  Rules
that rely other defaultaccess settings will require addition of
explicit clauses granting the access.
Needs additional testing and tuning of logs
 1999-10-21 17:53:56 +00:00
Kurt Zeilenga
7e53b5bdeb Change 'attribute' directive to 'attributetype' 
(and allowing 'attribute' for backwards compatibility).
manuals and *.schema to be updated as time permits.
 1999-10-13 20:28:00 +00:00
Kurt Zeilenga
0b7da01c9e Keep arguments in alpha order 1999-09-25 16:14:32 +00:00
Kurt Zeilenga
35655c056f Reimplement LDBM_SYNC/LDBM_NOSYNC code (dbnosync). 
Old code applied sync flags to store(), however supported DBMs
require such flags to be specified during open().  The new
code now applies flags in ldbm_cache_open (which calls ldbm_open).
ldbm_cache_close() now calls ldbm_sync().  This will force
a updating of on-disk contents after each LDAP operation.
The old code either failed to sync the on-disk contents until
close or synced on every store.   Per LDBM operation syncing
*should* be safe enough... real data safety requires transactions.
Removed nosync option from BDB2 as it is not compatible with
txn support.
Also added code to disable DBM level locking as slapd is only
process acessing the databases (dbnolocking).
 1999-09-23 19:49:20 +00:00
Kurt Zeilenga
1df4851a15 add deprecated comment to ldapd.8. 1999-09-19 18:12:18 +00:00
Kurt Zeilenga
ed43d13bff Remove MODRDN bug from Bugs 
Insert reference to ITS webpage
 1999-09-19 17:57:16 +00:00
Kurt Zeilenga
305ed36159 Add RCSid and Copyright 1999-09-12 04:41:47 +00:00
Kurt Zeilenga
521f761b2a s/patch/path/ 1999-09-06 18:25:48 +00:00
Hallvard Furuseth
203f5b058f Change -d option to not detach even with -d 0 or compiled with --disable-debug. 1999-09-04 20:24:40 +00:00
Howard Chu
ccab3faa58 Update for attribute, objectclass, and objectidentifier descriptions. 1999-08-20 00:32:36 +00:00
Kurt Zeilenga
7575bd92cd s/U-Mich/OpenLDAP/ in examples 1999-08-19 17:02:36 +00:00
Kurt Zeilenga
f422f01109 s/U-Mich/OpenLDAP/ in examples 1999-08-18 02:01:24 +00:00
Kurt Zeilenga
9f6185ab12 Document -s and -c modes. 1999-08-18 01:49:42 +00:00
Kurt Zeilenga
1b2aeeee21 s/ldif2ldbm/slapadd/ and similiar changes 
ldif updates (add URL description).
 1999-08-17 20:25:16 +00:00
Kurt Zeilenga
ec898a143e s/ldif2dlbm/slapadd/ 1999-08-17 20:07:33 +00:00
Kurt Zeilenga
01235987ee Add man pages for slapadd and slapcat (slapindex coming soon). 
Remove man pages for old ldbm tools.
 1999-08-17 20:04:35 +00:00
Kurt Zeilenga
9e93d5eba6 lastmod is on by default. 1999-08-05 23:52:14 +00:00
Kurt Zeilenga
98761f1edb Update "*", "+", "1.1" attribute type usage. 1999-07-25 20:52:42 +00:00
Kurt Zeilenga
43c0acaf98 Document "*", "+", and "1.1" use in attrlist. 1999-07-25 20:40:21 +00:00
Kurt Zeilenga
cf9a36da3f ITS#180: add note about server-side maximal size/time limits. 1999-07-21 18:12:15 +00:00
Kurt Zeilenga
29b0ed18df Fix misplaced paragraph tag 1999-07-21 17:31:37 +00:00
Kurt Zeilenga
23565fca08 Update slapd(8) with new -h option. 1999-07-19 21:45:11 +00:00
Julio Sánchez Fernández
661102431a Document -T and -P 1999-07-16 20:03:53 +00:00
Julio Sánchez Fernández
fbd4c530ba Document a few TLS options that do something. 1999-07-16 19:56:32 +00:00
Kurt Zeilenga
73276e84ae Import experimental referral implementation from OPENLDAP_DEVEL_REFERRALS. 
Includes support for update referral for each replicated backend.
	Reworked replication test to use update referral.
Includes major rewrite of response encoding codes (result.c).
Includes reworked alias support and eliminates old suffix alias codes
(can be emulated using named alias).
Includes (untested) support for the Manage DSA IT control.
Works in LDAPv2 world.  Still testing in LDAPv3 world.
Added default referral (test009) test.
 1999-07-16 02:45:46 +00:00
Kurt Zeilenga
7e4b3bc2e7 initial commit of idletimeout code... everything but the actual timeout. 1999-06-18 22:54:19 +00:00
Kurt Zeilenga
d738025d44 Add sizelimit/timelimit comments concerning ldap.conf (ITS#180). 1999-06-03 05:11:22 +00:00
Hallvard Furuseth
20f90f3031 ITS#118: Remove "delete" and add [self] in access levels for "defaultaccess" 1999-05-03 22:55:27 +00:00
Hallvard Furuseth
6e8a293acb Fix typo "-c" to "-H" 1999-05-03 22:34:02 +00:00
Kurt Zeilenga
01b967244d Make 'schemacheck on' the default. 1999-04-29 18:10:40 +00:00
Kurt Zeilenga
7ba980f0f6 Modify slapd set user/group support to use -u/-g instead -U/-G. 
Moved -u (udp) to -c (connectionless).  Connectionless is depreciated
and undocumented.
Added tests for set{,e}{u,g}id to configure.  Use existance of
setuid/setgid to enable feature.  Use seteuid/setegid only if
they exist.
Fixed minor minor leak of username/groupname if specificied
more than once.  (This should actually be an error)
 1999-04-21 00:40:20 +00:00
Kurt Zeilenga
d1cbc97c80 Add '-n' and '-s' to ldif2ldbm manpage (ITS$59). 1999-04-13 21:35:21 +00:00
Hallvard Furuseth
9ebd9a0289 Add -U and -G options to set user and group id. 
Move socket setup to set_socket(), called before the uid/gid change.
 1999-04-03 03:19:07 +00:00
Kurt Zeilenga
3550bc48c0 Add slapd -a address support. Allows you to bind to a specific 
address.  Useful for running multiple servers in a virtual hosting
environment.
Modified test001-ldif2ldbm to verify this functionality.  Assumes
localhost is 127.0.0.1.
 1999-03-17 03:56:25 +00:00
Hallvard Furuseth
79f7c85067 Add locale support (slapd.conf keyword "locale") to slapd if HAVE_LOCALE_H 1999-02-22 21:01:24 +00:00
Kurt Zeilenga
ae0df6f8f8 Update misleading statement about ldap_init(). It use is actually 
preferred.  ldap_open is to be depreciated.
 1999-01-28 01:23:04 +00:00
Kurt Spanier
68a8798594 Definition of slapd pid and args files as slapd.conf general parameters; 
introduction of pid/agrs parameters to the test-suite slapd.conf files;
creation of sub-directory test/var for storage of pid/args files during test;
update of the slapd and slapd.conf man pages.
(The change reduces dependency on ldapconfig.h, since SLAPD_PIDEXT
 and SLAPD_ARGSEXT are deleted from the code.)
 1999-01-21 15:53:54 +00:00
Kurt Zeilenga
eed7408e7e Update ldap_first_attribute/ldap_next_attribute to handle 
BerElement argument per latest IETF ldapext draft c api spec.
That is, caller is solely responsible for freeing the BerElement
allocated and returned by ldap_first_attribute.
Update man pages accordingly.
Update applications accordingly.
 1999-01-20 20:21:38 +00:00
Kurt Zeilenga
d14454aa0e Document fact that rootpw need not be cleartext. 1999-01-15 20:33:56 +00:00
Kurt Zeilenga
d66a450344 Update init and ldap.conf(5) to handle LDAPNOINIT, LDAPCONF, LDAPRC 
environment settings.
 1999-01-14 23:04:08 +00:00
Kurt Spanier
3e818315f2 Tiny fix to the description of the -l option. 1999-01-08 10:09:07 +00:00
Kurt Spanier
77c35c2bcc Description of the '-l syslog-local-user' option in the slapd manpage; 
also description of .pid and .args files.
 1999-01-08 09:59:09 +00:00
Kurt Zeilenga
668d6ecf11 Fix typo in dbcachenowsync description. 1998-12-30 20:15:14 +00:00
Kurt Zeilenga
654d3c0814 Fix minor formatting problem (missing .TP) with dbcachenowsync description. 1998-12-30 19:58:31 +00:00
Dave Storey
61b430be33 Add support for -P protocol_version. 1998-12-27 14:08:46 +00:00
Kurt Zeilenga
3a119bf1f7 Update man pages based upon required use of ldap_memfree() instead of free() 
replace 'malloced' with 'dynamically allocated'
	State ldap_memfree(3) should be used instead of free()
	Still need ldap_memfree(3) man page.
 1998-12-22 19:08:27 +00:00
Kurt Zeilenga
a3ac3be6a7 Added lber_get/set_option. Removed lber_debug/ldap_debug. 
Updated other codes as needed.
 1998-12-22 01:34:01 +00:00
Kurt Zeilenga
2d15a94d16 LDAP C-API changes 
struct friendly (Friendly) changed to ldap_friendly (LDAPFriendly)
	  ldap_friendly friend prefix changed to 'lf_' from 'f_'
	removed mod_next field from LDAPMod (struct ldapmod)
	modified slapd to use new LDAPModList (struct ldapmodlist) struct.
Added LDAPv3 result codes to ldap.h
 1998-12-21 00:21:58 +00:00
Dave Storey
5da5771bd9 Password prompting updates. <dave@tamos.net> 1998-12-12 05:56:46 +00:00
Dave Storey
40deee980f Addition of password prompting, salted password and auto-generation. 1998-12-12 05:55:26 +00:00
Kurt Zeilenga
7770b6f282 Apply patch from Dave with password prompting. 1998-12-06 20:12:02 +00:00
Kurt Zeilenga
9db922aa64 Man page updates from David E. Storey <dave@tamos.net> 1998-12-06 04:09:55 +00:00
Kurt Zeilenga
f0a32aed71 Add ldappasswd program contributed by David E. Storey <dave@tamos.net> 1998-12-06 03:44:28 +00:00
Kurt Zeilenga
ba84e23867 Add ldap.conf man page. 1998-11-29 20:58:40 +00:00
Kurt Zeilenga
edd464ee8f Update build environment: 
default sysconfdir subdirectory is openldap instead of ldap.
    This removes conflicts with other ldap subsystems.  Should
    be configure option.
  *.conf files are now preserved.  A *.conf.default are always
    created with the latest conf.
  *.help and ldapfriendly are now placed in $(datadir)/$(ldap_subdir)
  updated man pages to reflect changes.
 1998-11-29 19:48:28 +00:00
Kurt Zeilenga
1fc810bfe5 Added support for ldap.conf file. See ldap.conf(5) for details. 
Modified clients to reduce use of ldapconfig.h.edit.
ldap_{get,set}_option support is relatively complete.  Needs
to be extended to support other "features" of OpenLDAP.
 1998-11-10 23:37:30 +00:00
Kurt Zeilenga
3f1b97481c Make flush_writes the default. Change option to 'dbcachenowsync'. 
Change backend struct option to li_dbcachewsync.
 1998-11-07 02:25:32 +00:00
Hallvard Furuseth
07354ef9c2 Added ldap_explode_rdn() 1998-11-05 00:40:04 +00:00
Hallvard Furuseth
f81ee9b63e Added ldap_msgtype() and ldap_msgid() 1998-11-04 23:51:31 +00:00
Hallvard Furuseth
41e25b4041 Added ldap_explode_rdn() 1998-11-04 23:28:51 +00:00
Kurt Zeilenga
34c945b86d added ber_print_error() and renamed lber_bprint into ber_ namespace. 1998-10-27 07:50:07 +00:00
Kurt Zeilenga
2a869f5a99 merged with autoconf branch 1998-10-25 01:41:42 +00:00
Kurt Zeilenga
adc2134f03 Modified build environment to correctly support bin,sbin,libexec,etc 
and setting of variables from Make-platform with defaults in Make-common.
 1998-08-19 18:19:39 +00:00
Kurt Zeilenga
079f21c3ac Added LIBEXECDIR, SBINDIR and patched install rules and files as needed. 1998-08-19 02:38:35 +00:00
Kurt Zeilenga
df38bf83e8 apply FreeBSD changes to main branch 1998-08-09 01:35:58 +00:00
Kurt Zeilenga
04ff180cbf Modified make system to support CVS instead of RCS 1998-08-09 01:24:49 +00:00
Kurt Zeilenga
8b2170bcf4 Import of FreeBSD LDAP 3.3 Port 1998-08-09 01:05:15 +00:00
Kurt Zeilenga
42e0d83cb3 Initial revision 1998-08-09 00:43:13 +00:00