forked from jengelh/sssd
Accepting request 480497 from network:ldap
OBS-URL: https://build.opensuse.org/request/show/480497 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/sssd?expand=0&rev=83
This commit is contained in:
commit
fbde2110e4
@ -1,3 +0,0 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
|
||||||
oid sha256:0a64a15c1e344fdfd1904872133d558b4fbbc6cb1ac748b66819f941d5c804fb
|
|
||||||
size 5244029
|
|
@ -1,6 +0,0 @@
|
|||||||
-----BEGIN PGP SIGNATURE-----
|
|
||||||
|
|
||||||
iEYEABECAAYFAli53WwACgkQHsardTLnvCUIBQCguPYgc+o1n1+bl3fnrqs/QJh9
|
|
||||||
LXQAnj6hXHbfhvAJy23otBTKi3Xs2+9h
|
|
||||||
=S3bq
|
|
||||||
-----END PGP SIGNATURE-----
|
|
3
sssd-1.15.2.tar.gz
Normal file
3
sssd-1.15.2.tar.gz
Normal file
@ -0,0 +1,3 @@
|
|||||||
|
version https://git-lfs.github.com/spec/v1
|
||||||
|
oid sha256:4cd5fcb314d77a58029a216b7e6001c6cb41c5b784cf570c5761c97d1c12d264
|
||||||
|
size 5248134
|
6
sssd-1.15.2.tar.gz.asc
Normal file
6
sssd-1.15.2.tar.gz.asc
Normal file
@ -0,0 +1,6 @@
|
|||||||
|
-----BEGIN PGP SIGNATURE-----
|
||||||
|
|
||||||
|
iEYEABECAAYFAljJcscACgkQHsardTLnvCVCdwCgj0g3CSbz/gIS37W553d0QI7i
|
||||||
|
waoAnRN8+lQjwHQS+76q5nz2eSdRLnIG
|
||||||
|
=4tQo
|
||||||
|
-----END PGP SIGNATURE-----
|
43
sssd.changes
43
sssd.changes
@ -1,3 +1,46 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Thu Mar 16 13:32:12 UTC 2017 - hguo@suse.com
|
||||||
|
|
||||||
|
- Introduce mandatory runtime requirement "cyrus-sasl-gssapi" to
|
||||||
|
krb5-common sub-package. Address bsc#1024836.
|
||||||
|
|
||||||
|
-------------------------------------------------------------------
|
||||||
|
Wed Mar 15 22:18:03 UTC 2017 - michael@stroeder.com
|
||||||
|
|
||||||
|
- Update to new upstream release 1.15.2
|
||||||
|
* It is now possible to configure certain parameters of a
|
||||||
|
trusted domain in a configuration file sub-section.
|
||||||
|
* Several issues related to socket-activating the NSS service,
|
||||||
|
especially if SSSD was configured to use a non-privileged
|
||||||
|
userm were fixed. The NSS service now does not change the
|
||||||
|
ownership of its log files to avoid triggering a name-service
|
||||||
|
lookup while the NSS service is not running yet.
|
||||||
|
Additionally, the NSS service is started before any other
|
||||||
|
service to make sure username resolution works and the other
|
||||||
|
service can resolve the SSSD user correctly.
|
||||||
|
* A new option "cache_first" allows the administrator to change
|
||||||
|
the way multiple domains are searched. When this option is
|
||||||
|
enabled, SSSD will first try to "pin" the requested name or
|
||||||
|
ID to a domain by searching the entries that are already
|
||||||
|
cached and contact the domain that contains the cached entry
|
||||||
|
first. Previously, SSSD would check the cache and the remote
|
||||||
|
server for each domain. This option brings performance
|
||||||
|
benefit for setups that use multiple domains (even
|
||||||
|
auto-discovered trusted domains), especially for ID lookups
|
||||||
|
that would previously iterate over all domains. Please note
|
||||||
|
that this option must be enabled with care as the
|
||||||
|
administrator must ensure that the ID space of domains does
|
||||||
|
not overlap.
|
||||||
|
* The SSSD D-Bus interface gained two new methods:
|
||||||
|
"FindByNameAndCertificate" and "ListByCertificate". These
|
||||||
|
methods will be used primarily by IPA and
|
||||||
|
`mod_lookup_identity
|
||||||
|
<https://github.com/adelton/mod_lookup_identity/> to
|
||||||
|
correctly match multple users who use the same certificate
|
||||||
|
for Smart Card login.
|
||||||
|
* A bug where SSSD did not properly sanitize a username with a
|
||||||
|
newline character in it was fixed.
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Sat Mar 11 22:34:41 UTC 2017 - jengelh@inai.de
|
Sat Mar 11 22:34:41 UTC 2017 - jengelh@inai.de
|
||||||
|
|
||||||
|
@ -17,7 +17,7 @@
|
|||||||
|
|
||||||
|
|
||||||
Name: sssd
|
Name: sssd
|
||||||
Version: 1.15.1
|
Version: 1.15.2
|
||||||
Release: 0
|
Release: 0
|
||||||
Summary: System Security Services Daemon
|
Summary: System Security Services Daemon
|
||||||
License: GPL-3.0+ and LGPL-3.0+
|
License: GPL-3.0+ and LGPL-3.0+
|
||||||
@ -143,6 +143,7 @@ against a Kerberos server.
|
|||||||
Summary: SSSD helpers needed for Kerberos and GSSAPI authentication
|
Summary: SSSD helpers needed for Kerberos and GSSAPI authentication
|
||||||
License: GPL-3.0+
|
License: GPL-3.0+
|
||||||
Group: System/Daemons
|
Group: System/Daemons
|
||||||
|
Requires: cyrus-sasl-gssapi
|
||||||
|
|
||||||
%description krb5-common
|
%description krb5-common
|
||||||
Provides helper processes that the LDAP and Kerberos back ends can
|
Provides helper processes that the LDAP and Kerberos back ends can
|
||||||
@ -563,7 +564,6 @@ rm -f /var/lib/sss/db/*.ldb
|
|||||||
%_mandir/man5/sssd-ad.5*
|
%_mandir/man5/sssd-ad.5*
|
||||||
%dir %_mandir/??/
|
%dir %_mandir/??/
|
||||||
%dir %_mandir/??/man5/
|
%dir %_mandir/??/man5/
|
||||||
%_mandir/??/man5/sssd-ad.5*
|
|
||||||
|
|
||||||
%files dbus
|
%files dbus
|
||||||
%defattr(-,root,root)
|
%defattr(-,root,root)
|
||||||
|
Loading…
Reference in New Issue
Block a user