SHA256
1
0
forked from pool/sssd
Commit Graph

410 Commits

Author SHA256 Message Date
4d2b0a5d01 use rpm macros instead
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=142
2015-01-01 23:00:54 +00:00
86656f23a4 Accepting request 266999 from home:msmeissn:branches:network:ldap
- build with PIE

OBS-URL: https://build.opensuse.org/request/show/266999
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=141
2015-01-01 23:00:25 +00:00
Dominique Leuenberger
af0436e267 Accepting request 265318 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/265318
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=61
2014-12-17 18:16:51 +00:00
Dominique Leuenberger
d4ec5aab5b Accepting request 265318 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/265318
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=61
2014-12-17 18:16:51 +00:00
c3f2b68a07 Accepting request 260566 from home:Ledest:misc
fix bashism in postun script

OBS-URL: https://build.opensuse.org/request/show/260566
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=139
2014-12-08 22:59:07 +00:00
Stephan Kulow
52bbec6e3f Accepting request 259244 from network:ldap
- Update to new upstream release 1.12.2 (bugfix release, bnc#900159)
* Fixed a regression where the IPA provider did not fetch User
  Private Groups correctly
* An important bug in the GPO access control which resulted in a
  wrong principal being used, was fixed.
* Several new options are available for deployments that need to
  restrict a certain PAM service from connecting to a certain SSSD
  domain. For more details, see the description of
  pam_trusted_users and pam_public_domains options in the
  sssd.conf(5) man page and the domains option in the pam_sss(8)
  man page.
* When SSSD is acting as an IPA client in setup with trusted AD
  domains, it is able to return group members or full group
  memberships for users from trusted AD domains.
* Support for the "views" feature of IPA.
- Remove 0001-build-call-AC_BUILD_AUX_DIR-before-anything-else.patch
  (merged upstream)

- Add 0001-build-call-AC_BUILD_AUX_DIR-before-anything-else.patch
  to workaround bad autoconf invocation

- 0001-build-detect-endianness-at-configure-time.patch 
  Correct defective endianness test.

- Update to new upstream release 1.12.1
* The GPO access control was further enhanced to allow the access
  control decisions while offline and map the Windows logon
  rights onto Linux PAM services.
* The SSSD now ships a plugin for the rpc.idmapd daemon,
  sss_rpcidmapd(5).

OBS-URL: https://build.opensuse.org/request/show/259244
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=60
2014-11-04 16:27:34 +00:00
Stephan Kulow
e3f749a934 Accepting request 259244 from network:ldap
- Update to new upstream release 1.12.2 (bugfix release, bnc#900159)
* Fixed a regression where the IPA provider did not fetch User
  Private Groups correctly
* An important bug in the GPO access control which resulted in a
  wrong principal being used, was fixed.
* Several new options are available for deployments that need to
  restrict a certain PAM service from connecting to a certain SSSD
  domain. For more details, see the description of
  pam_trusted_users and pam_public_domains options in the
  sssd.conf(5) man page and the domains option in the pam_sss(8)
  man page.
* When SSSD is acting as an IPA client in setup with trusted AD
  domains, it is able to return group members or full group
  memberships for users from trusted AD domains.
* Support for the "views" feature of IPA.
- Remove 0001-build-call-AC_BUILD_AUX_DIR-before-anything-else.patch
  (merged upstream)

- Add 0001-build-call-AC_BUILD_AUX_DIR-before-anything-else.patch
  to workaround bad autoconf invocation

- 0001-build-detect-endianness-at-configure-time.patch 
  Correct defective endianness test.

- Update to new upstream release 1.12.1
* The GPO access control was further enhanced to allow the access
  control decisions while offline and map the Windows logon
  rights onto Linux PAM services.
* The SSSD now ships a plugin for the rpc.idmapd daemon,
  sss_rpcidmapd(5).

OBS-URL: https://build.opensuse.org/request/show/259244
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=60
2014-11-04 16:27:34 +00:00
a271d4bdca Add missing devel>library require
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=137
2014-10-31 10:28:30 +00:00
f5f2db69d2 - Update to new upstream release 1.12.2 (bugfix release, bnc#900159)
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=136
2014-10-30 20:04:24 +00:00
938cdaff2f sssd-1.12.2
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=135
2014-10-30 13:18:09 +00:00
44b6230c6d Add 0001-build-call-AC_BUILD_AUX_DIR-before-anything-else.patch
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=134
2014-10-11 13:39:47 +00:00
1a9ba34fc6 Accepting request 255031 from home:elvigia:branches:network:ldap
- 0001-build-detect-endianness-at-configure-time.patch 
  Correct defective endianness test.

OBS-URL: https://build.opensuse.org/request/show/255031
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=133
2014-10-11 12:40:55 +00:00
913fb74ac9 Edit prjconf instead
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=132
2014-10-11 10:30:37 +00:00
f8b9ac4b8f Ignore self-built package
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=131
2014-10-11 10:06:15 +00:00
252f21485c ship krb5 localauth plugin
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=130
2014-10-10 09:06:01 +00:00
9164480cf8 wbclient plugin handling
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=129
2014-10-10 07:25:27 +00:00
8ca2d3df1c Changelog summary from varkoly
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=128
2014-10-10 07:25:15 +00:00
68add0bc43 sssd-1.12.1
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=127
2014-10-09 17:56:31 +00:00
Stephan Kulow
8427dcea5e Accepting request 245814 from network:ldap
- The utility sss_obfuscate uses the Python module pysss, so add a
  dependency on python-sssd-config to sssd-tools (bnc#890242) (forwarded request 245784 from leonardocf)

OBS-URL: https://build.opensuse.org/request/show/245814
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=58
2014-08-25 09:54:26 +00:00
Stephan Kulow
b328f85795 Accepting request 245814 from network:ldap
- The utility sss_obfuscate uses the Python module pysss, so add a
  dependency on python-sssd-config to sssd-tools (bnc#890242) (forwarded request 245784 from leonardocf)

OBS-URL: https://build.opensuse.org/request/show/245814
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=58
2014-08-25 09:54:26 +00:00
0d211d8609 Accepting request 245784 from home:leonardocf:branches:network:ldap
- The utility sss_obfuscate uses the Python module pysss, so add a
  dependency on python-sssd-config to sssd-tools (bnc#890242)

OBS-URL: https://build.opensuse.org/request/show/245784
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=125
2014-08-22 19:03:55 +00:00
6b34bea91e Accepting request 244504 from network:ldap
- Update to new upstream release 1.12.0

OBS-URL: https://build.opensuse.org/request/show/244504
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=57
2014-08-15 07:58:17 +00:00
f76d88302c Accepting request 244504 from network:ldap
- Update to new upstream release 1.12.0

OBS-URL: https://build.opensuse.org/request/show/244504
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=57
2014-08-15 07:58:17 +00:00
96f34b16a6 put cache killer right before restart operation
sysv restart

OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=123
2014-08-11 00:18:49 +00:00
992327eeeb Clear caches; rcsssd
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=122
2014-08-10 15:23:36 +00:00
ca8df2f4bb sssd-1.12
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=121
2014-08-10 14:40:01 +00:00
Stephan Kulow
e3561b9b21 Accepting request 238107 from network:ldap
- fix %postun to not erroneously remove sss pam module

OBS-URL: https://build.opensuse.org/request/show/238107
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=56
2014-06-25 04:58:07 +00:00
Stephan Kulow
c59e17f411 Accepting request 238107 from network:ldap
- fix %postun to not erroneously remove sss pam module

OBS-URL: https://build.opensuse.org/request/show/238107
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=56
2014-06-25 04:58:07 +00:00
ee17ce35bb Add keyring
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=119
2014-06-19 16:20:11 +00:00
Christian Kornacker
736d48179c - fix %postun to not erroneously remove sss pam module
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=118
2014-06-12 14:36:57 +00:00
Stephan Kulow
39dc0dae4f Accepting request 235585 from network:ldap
- Switch to libnl-3 so we can get rid of libnl-1. (forwarded request 235577 from elvigia)

OBS-URL: https://build.opensuse.org/request/show/235585
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=55
2014-06-02 05:00:11 +00:00
Stephan Kulow
99b86b9153 Accepting request 235585 from network:ldap
- Switch to libnl-3 so we can get rid of libnl-1. (forwarded request 235577 from elvigia)

OBS-URL: https://build.opensuse.org/request/show/235585
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=55
2014-06-02 05:00:11 +00:00
bb58307ee8 Accepting request 235577 from home:elvigia:branches:network:ldap
- Switch to libnl-3 so we can get rid of libnl-1.

OBS-URL: https://build.opensuse.org/request/show/235577
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=116
2014-05-27 17:40:18 +00:00
87020fc869 Add 0001-BUILD-Link-libsss_ldap_common.so-to-libsss_idmap.so.patch
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=115
2014-05-24 14:38:26 +00:00
Stephan Kulow
c3cca2f482 Accepting request 233707 from network:ldap
- bnc#877457 - 78 Configuration file /usr/lib/systemd/system/sssd.service is marked executable.
  Please remove executable permission bits.

- Detect endianness at configure time, for use by Samba's byteorder.h header;
  (bnc#876544).
  + 0001-build-detect-endianness-at-configure-time.patch (forwarded request 233706 from varkoly)

OBS-URL: https://build.opensuse.org/request/show/233707
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=54
2014-05-14 08:50:28 +00:00
Stephan Kulow
5e396627cb Accepting request 233707 from network:ldap
- bnc#877457 - 78 Configuration file /usr/lib/systemd/system/sssd.service is marked executable.
  Please remove executable permission bits.

- Detect endianness at configure time, for use by Samba's byteorder.h header;
  (bnc#876544).
  + 0001-build-detect-endianness-at-configure-time.patch (forwarded request 233706 from varkoly)

OBS-URL: https://build.opensuse.org/request/show/233707
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=54
2014-05-14 08:50:28 +00:00
0f8c31ef53 Accepting request 233706 from home:varkoly:branches:network:ldap
- bnc#877457 - 78 Configuration file /usr/lib/systemd/system/sssd.service is marked executable.
  Please remove executable permission bits.

- Detect endianness at configure time, for use by Samba's byteorder.h header;
  (bnc#876544).
  + 0001-build-detect-endianness-at-configure-time.patch

OBS-URL: https://build.opensuse.org/request/show/233706
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=113
2014-05-13 11:38:19 +00:00
Stephan Kulow
bdd429379d Accepting request 231991 from network:ldap
- Update to new upstream release 1.11.5.1
  * sssd crashes after upgrade from 1.11.4 to 1.11.5 when using a samba4 domain
  * SSSD pam module accepts usernames with leading spaces
  * [RFE] Expose the list of trusted domains to IPA
  * If both IPA and LDAP are set up with enumeration on, two enum tasks are running
  * sssd.conf man pages don't list a configuration option.
  * Make SSSD compilable on systems with non-standard paths to krb5 includes
  * [freebsd] pam_sss: add ignore_unknown_user option
  * MAN: Remove misleading memberof example from ldap_access_filter example
  * not retrieving homedirs of AD users with posix attributes
  * Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes
  * Check IPA idranges before saving them to the cache
  * Evaluate usage of sudo LDAP provider together with the AD provider
  * Setting int option to 0 yields the default value
  * ipa-server-mode: Use lower-case user name component in home dir path
  * SSSD Does not cache SELinux map from FreeIPA correctly
  * IPA SELinux code looks for the host in the wrong sysdb subdir when a trusted user logs in
  * sssd fails to handle expired passwords when OTP is used
  * Add another Kerberos error code to trigger IPA password migration
  * Double OK when starting the service
  * SSSD should create the SELinux mapping file with format expected by pam_selinux
  * Valgrind: Invalid read of int while processing netgroup
  * other subdomains are unavailable when joined to a subdomain in the ad forest
  * Error during password change
  * configure time variables not expanded when running ./configure
  * RHEL7 IPA selinuxusermap hbac rule not always matching

OBS-URL: https://build.opensuse.org/request/show/231991
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=53
2014-05-02 07:51:48 +00:00
Stephan Kulow
064b3f8daa Accepting request 231991 from network:ldap
- Update to new upstream release 1.11.5.1
  * sssd crashes after upgrade from 1.11.4 to 1.11.5 when using a samba4 domain
  * SSSD pam module accepts usernames with leading spaces
  * [RFE] Expose the list of trusted domains to IPA
  * If both IPA and LDAP are set up with enumeration on, two enum tasks are running
  * sssd.conf man pages don't list a configuration option.
  * Make SSSD compilable on systems with non-standard paths to krb5 includes
  * [freebsd] pam_sss: add ignore_unknown_user option
  * MAN: Remove misleading memberof example from ldap_access_filter example
  * not retrieving homedirs of AD users with posix attributes
  * Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes
  * Check IPA idranges before saving them to the cache
  * Evaluate usage of sudo LDAP provider together with the AD provider
  * Setting int option to 0 yields the default value
  * ipa-server-mode: Use lower-case user name component in home dir path
  * SSSD Does not cache SELinux map from FreeIPA correctly
  * IPA SELinux code looks for the host in the wrong sysdb subdir when a trusted user logs in
  * sssd fails to handle expired passwords when OTP is used
  * Add another Kerberos error code to trigger IPA password migration
  * Double OK when starting the service
  * SSSD should create the SELinux mapping file with format expected by pam_selinux
  * Valgrind: Invalid read of int while processing netgroup
  * other subdomains are unavailable when joined to a subdomain in the ad forest
  * Error during password change
  * configure time variables not expanded when running ./configure
  * RHEL7 IPA selinuxusermap hbac rule not always matching

OBS-URL: https://build.opensuse.org/request/show/231991
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=53
2014-05-02 07:51:48 +00:00
Peter Varkoly
d8b693a7a2 - Update to new upstream release 1.11.5.1
* sssd crashes after upgrade from 1.11.4 to 1.11.5 when using a samba4 domain
  * SSSD pam module accepts usernames with leading spaces
  * [RFE] Expose the list of trusted domains to IPA
  * If both IPA and LDAP are set up with enumeration on, two enum tasks are running
  * sssd.conf man pages don't list a configuration option.
  * Make SSSD compilable on systems with non-standard paths to krb5 includes
  * [freebsd] pam_sss: add ignore_unknown_user option
  * MAN: Remove misleading memberof example from ldap_access_filter example
  * not retrieving homedirs of AD users with posix attributes
  * Document that `sssd` cache needs to be cleared manually, if ID mapping configuration changes
  * Check IPA idranges before saving them to the cache
  * Evaluate usage of sudo LDAP provider together with the AD provider
  * Setting int option to 0 yields the default value
  * ipa-server-mode: Use lower-case user name component in home dir path
  * SSSD Does not cache SELinux map from FreeIPA correctly
  * IPA SELinux code looks for the host in the wrong sysdb subdir when a trusted user logs in
  * sssd fails to handle expired passwords when OTP is used
  * Add another Kerberos error code to trigger IPA password migration
  * Double OK when starting the service
  * SSSD should create the SELinux mapping file with format expected by pam_selinux
  * Valgrind: Invalid read of int while processing netgroup
  * other subdomains are unavailable when joined to a subdomain in the ad forest
  * Error during password change
  * configure time variables not expanded when running ./configure
  * RHEL7 IPA selinuxusermap hbac rule not always matching
  * AD Enumeration reads data from LDAP while regular lookups connect to GC
  * Implement heuristics to detect if POSIX attributes have been replicated to the Global Catalog or not
  * sssd_be crashes when ad_access_filter uses FOREST keyword.
  * "System Error" when invalid ad_access_filter is used

OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=111
2014-04-29 10:03:23 +00:00
Stephan Kulow
74b00ed597 Accepting request 225993 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/225993
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=52
2014-03-18 15:21:16 +00:00
Stephan Kulow
49f6037290 Accepting request 225993 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/225993
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=52
2014-03-18 15:21:16 +00:00
c5a97ae10b sssd-1.11.4
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=109
2014-03-07 15:22:25 +00:00
Stephan Kulow
2dec3a07a2 Accepting request 212445 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/212445
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=51
2013-12-31 09:58:27 +00:00
Stephan Kulow
6f9f1da33f Accepting request 212445 from network:ldap
Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/212445
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=51
2013-12-31 09:58:27 +00:00
18af19f4e4 Remove sysvinit calls
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=107
2013-12-22 18:51:04 +00:00
0634651aa9 Accepting request 212033 from home:jengelh:sssd
- Update to new upstream release 1.11.3

OBS-URL: https://build.opensuse.org/request/show/212033
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=106
2013-12-22 16:55:08 +00:00
Stephan Kulow
cd900cd13d Accepting request 211391 from network:ldap
- Migrate deprecated krb5_kdcip variable to krb5_server (bnc#851048) (forwarded request 208844 from ckornacker)

OBS-URL: https://build.opensuse.org/request/show/211391
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=50
2013-12-19 11:37:19 +00:00
Stephan Kulow
bd4b78296a Accepting request 211391 from network:ldap
- Migrate deprecated krb5_kdcip variable to krb5_server (bnc#851048) (forwarded request 208844 from ckornacker)

OBS-URL: https://build.opensuse.org/request/show/211391
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=50
2013-12-19 11:37:19 +00:00
3e5c6a9951 Accepting request 208844 from home:ckornacker:branches:network:ldap
- Migrate deprecated krb5_kdcip variable to krb5_server (bnc#851048)

OBS-URL: https://build.opensuse.org/request/show/208844
OBS-URL: https://build.opensuse.org/package/show/network:ldap/sssd?expand=0&rev=104
2013-12-18 12:36:44 +00:00