Accepting request 423279 from network:ldap

Automatic submission by obs-autosubmit

OBS-URL: https://build.opensuse.org/request/show/423279
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=75

sssd-1.14.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5c49ed0ecd17461a955bf031b73f257e8c40744d7485cd969976ccce819d624e
-size 4915954

sssd-1.14.0.tar.gz.asc

@@ -1,7 +0,0 @@
------BEGIN PGP SIGNATURE-----
-Version: GnuPG v1
-
-iEYEABECAAYFAld+lREACgkQHsardTLnvCWq5QCdHBsN7hUU57vQ6nekGFsKbS8t
-jYIAn14wL9ZxSlmGY9zAGUAt8A0l0DLQ
-=ER1G
------END PGP SIGNATURE-----

sssd-1.14.1.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:ae6fe6c886db5de2b4f1f1fa0e1a10955d8d25bfceff25e475e50a37527c75e0
+size 4949350

sssd-1.14.1.tar.gz.asc

@@ -0,0 +1,7 @@
+-----BEGIN PGP SIGNATURE-----
+Version: GnuPG v1
+
+iEYEABECAAYFAle3EtUACgkQHsardTLnvCUUmQCePnqDXDrAnLZOqKdKaTCrb/ZS
+cooAoLCGqfUtRQy6BrbRy2tLwMbYVPe5
+=bOBT
+-----END PGP SIGNATURE-----

sssd.changes

@@ -1,3 +1,47 @@
+-------------------------------------------------------------------
+Fri Aug 19 18:38:35 UTC 2016 - michael@stroeder.com
+
+- Update to new upstream release 1.14.1
+ * The IPA provider now supports logins with enterprise principals (also
+   known as additional UPN suffixes). This functionality also enabled Active
+   Directory users from trusted AD domains who use an additional UPN suffix
+   to log in. Please note that this feature requires a recent IPA server.
+ * When a user name is overriden in an IPA domain, resolving a group these
+   users are a member of now returns the overriden user names
+ * Users can be looked up by and log in with their e-mail address as an
+   identifier. In order to do so, an attribute that represents the user's
+   e-mail address is fetched by default. This attribute can by customized
+   by setting the ldap_user_email configuration option.
+ * A new ad_enabled_domains option was added. This option lets the
+   administrator select domains that SSSD should attempt to reach in the
+   AD forest SSSD is joined to. This option is useful for deployments where
+   not all domains are reachable on the network level, yet the administrator
+   needs to access some trusted domains and therefore disabling the subdomains
+   provider completely is not desirable.
+ * The sssctl tool has two new commands active-server and servers that
+   allow the administrator to observe the server that SSSD is bound to and
+   the servers that SSSD autodiscovered
+ * SSSD used to fail to start when an attribute name is present in both
+   the default SSSD attribute map and the custom ldap_user_extra_attrs map
+ * GPO policy procesing no longer fails if the gPCMachineExtensionNames
+   attribute only contains whitespaces
+ * Several commits fix regressions related to switching all user and group
+   names to fully qualified format, such as running initgroups for a user
+   who is only a member of a primary group
+ * Several patches fix regressions caused by splitting the database into
+   two ldb files, such as when user attributes change without increasing
+   the modifyTimestamp attribute value
+ * systemd unit files are now shipped for the sssd-secrets responder,
+   allowing the responder to be socket-activated. To do so, administrators
+   should enable the sssd-secrets.socket and sssd-secrets.service systemd
+   units.
+ * The sssd binary has a new switch --disable-netlink that lets sssd skip
+   messages from the kernel's netlink interface.
+ * A crash when entries with special characters such as '(' were requested
+   was fixed
+ * The ldap_rfc_2307_fallback_to_local_users option was broken in the
+   previous version. This release fixes the functionality.
+
 -------------------------------------------------------------------
 Fri Jul  8 10:46:59 UTC 2016 - jengelh@inai.de
 

sssd.spec

@@ -17,7 +17,7 @@
 
 
 Name:           sssd
-Version:        1.14.0
+Version:        1.14.1
 Release:        0
 Summary:        System Security Services Daemon
 License:        GPL-3.0+ and LGPL-3.0+