summaryrefslogtreecommitdiffstats
path: root/src/libtdeldap.cpp
Commit message (Collapse)AuthorAgeFilesLines
* Fixup prior commitTimothy Pearson2016-09-041-1/+1
|
* Close cert file handle if already open before opening for writeTimothy Pearson2016-09-041-2/+6
| | | | Fixup missing newlines in printf warnings from last commit
* Don't abort on chown() failure for certificate filesTimothy Pearson2016-09-041-4/+2
|
* Fix missing stirng placeholder in warning messageTimothy Pearson2015-12-291-1/+1
|
* Fix memory leak on bind failureTimothy Pearson2015-10-231-19/+23
| | | | Fix minor issues with comments
* Revert "Fix memory leak on certificate request attempt"Timothy Pearson2015-10-231-2/+0
| | | | | | Unfortunately this did not fix the leak as I originally thought. This reverts commit 2e9737f1184064e01b7ee0a9504d601d74ba4bf2.
* Fix memory leak on certificate request attemptTimothy Pearson2015-10-231-0/+2
|
* Properly report certificate retrieval failures to calling applicationTimothy Pearson2015-10-021-19/+20
|
* Remove any chance of passwords persisting in deallocated main memory after ↵Timothy Pearson2015-10-011-1/+2
| | | | application termination
* Fix FTBFS on ancient Heimdal versionsTimothy Pearson2015-09-301-0/+4
|
* Add deactivated krb5 PKCS login lineTimothy Pearson2015-09-291-3/+18
|
* Write out remaining appdefaults entries on clientTimothy Pearson2015-09-291-3/+6
|
* Allow Kerberos ticket init via cryptographic cardTimothy Pearson2015-09-291-5/+76
|
* Write missing appdefaults section on client machinesTimothy Pearson2015-09-291-0/+15
|
* Add PKI subject mapping to user principalsTimothy Pearson2015-09-291-1/+90
| | | | Fix long-standing inability to clear user principal attribute fields
* Convert the last methods using the kadmin utility to the Heimdal C APITimothy Pearson2015-09-291-68/+129
|
* Move keytab export to native Heimdal APITimothy Pearson2015-09-291-356/+240
|
* Convert service add to C APITimothy Pearson2015-09-281-126/+12
|
* Remove dead code from prior commitTimothy Pearson2015-09-281-121/+0
|
* Convert machine add to kadmin APITimothy Pearson2015-09-281-90/+246
|
* Fix local kadmin accessTimothy Pearson2015-09-281-14/+95
|
* Start to move away from using the kadmin binary to using the kadmin client APITimothy Pearson2015-09-271-91/+109
|
* Fix a few minor issues with PKI certificate generationTimothy Pearson2015-09-241-3/+12
|
* Minor fixup to cert generation codeTimothy Pearson2015-09-191-1/+1
|
* Extend PKCS certificate generation routinesTimothy Pearson2015-09-191-32/+44
| | | | This breaks the ABI
* Add PKCS methodsTimothy Pearson2015-09-181-4/+104
|
* Clean up revoked certificates when done updating CRLTimothy Pearson2015-09-041-0/+14
|
* Fix up certificate expiry detectionTimothy Pearson2015-09-041-1/+1
|
* Add certificate store attribute access methodTimothy Pearson2015-09-031-0/+68
|
* Add additional CRL manipulation methodsTimothy Pearson2015-09-031-34/+105
|
* Store CRL expiry in LDAPTimothy Pearson2015-09-031-0/+37
|
* Add CRL generationTimothy Pearson2015-09-031-30/+188
|
* Implement several methods required for PKI certificate managementTimothy Pearson2015-09-021-6/+100
|
* Extend user key and certificate generation methodsTimothy Pearson2015-09-011-39/+206
|
* Fix CN/DN orderingTimothy Pearson2015-08-311-3/+7
|
* Properly set CRL URL and fix up a few other glitchesTimothy Pearson2015-08-311-14/+20
|
* Allow CRL URL to be set via configuration fileTimothy Pearson2015-08-311-0/+2
|
* Fix up Kerberos PKI certificate generationTimothy Pearson2015-08-311-8/+265
|
* Allow certificate expiry to be setTimothy Pearson2015-08-251-4/+37
|
* Extend CA expiry to 1 yearTimothy Pearson2015-08-241-2/+3
|
* Fix incorrect login causing PAM fatal error messageTimothy Pearson2015-08-231-1/+1
|
* Fix security hole when Kerberos credential caching is enabledTimothy Pearson2014-06-071-1/+1
| | | | The prior PAM stack configuration, while unfortunately present in many online examples, allows storing of an arbitrary cached password for non-Kerberos users by simply entering it twice
* Make bonding and unbonding methods slightly more robustTimothy Pearson2014-01-071-1/+37
|
* Fix LDAP CA root file configurationTimothy Pearson2014-01-061-2/+7
|
* Look for CA file in correct location on bonded machinesTimothy Pearson2014-01-061-11/+11
|
* Do not replicate olcGlobal by defaultTimothy Pearson2013-07-161-2/+3
|
* Fix incorrect certificate CA file in ldap client configurationTimothy Pearson2013-07-111-1/+1
|
* Use shared realm certificate file name to allow syncrepl to workTimothy Pearson2013-07-111-6/+6
|
* Use more precise syncrepl configurationTimothy Pearson2013-07-111-2/+2
|
* Fix failure to use provided error string handler in getRealmCAMasterTimothy Pearson2013-07-021-1/+1
|
generated by cgit v1.2.3 (git 2.46.0) at 2025-12-25 09:12:32 +0000