sssd  2.2.3
About: SSSD provides a set of daemons to manage access to remote directories and authentication mechanisms such as LDAP, Kerberos or FreeIPA. It provides also an NSS and PAM interface toward the system.
  Fossies Dox: sssd-2.2.3.tar.gz  ("unofficial" and yet experimental doxygen-generated source code documentation)  

sdap.h
Go to the documentation of this file.
1 /*
2  SSSD
3 
4  LDAP Helper routines
5 
6  Copyright (C) Simo Sorce <ssorce@redhat.com>
7 
8  This program is free software; you can redistribute it and/or modify
9  it under the terms of the GNU General Public License as published by
10  the Free Software Foundation; either version 3 of the License, or
11  (at your option) any later version.
12 
13  This program is distributed in the hope that it will be useful,
14  but WITHOUT ANY WARRANTY; without even the implied warranty of
15  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16  GNU General Public License for more details.
17 
18  You should have received a copy of the GNU General Public License
19  along with this program. If not, see <http://www.gnu.org/licenses/>.
20 */
21 
22 #ifndef _SDAP_H_
23 #define _SDAP_H_
24 
25 #include "providers/backend.h"
26 #include <ldap.h>
27 #include "util/sss_ldap.h"
29 
30 struct sdap_msg {
31  struct sdap_msg *next;
32  LDAPMessage *msg;
33 };
34 
35 struct sdap_op;
36 
37 typedef void (sdap_op_callback_t)(struct sdap_op *op,
38  struct sdap_msg *, int, void *);
39 
40 struct sdap_handle;
41 
42 struct sdap_op {
43  struct sdap_op *prev, *next;
44  struct sdap_handle *sh;
45 
46  int msgid;
47  bool done;
48 
50  void *data;
51 
52  struct tevent_context *ev;
53  struct sdap_msg *list;
54  struct sdap_msg *last;
55 };
56 
57 struct fd_event_item {
60 
61  int fd;
62  struct tevent_fd *fde;
63 };
64 
65 struct ldap_cb_data {
66  struct sdap_handle *sh;
67  struct tevent_context *ev;
69 };
70 
71 struct sup_list {
72  int num_vals;
73  char **vals;
74 };
75 
76 struct sdap_handle {
77  LDAP *ldap;
78  bool connected;
79  /* Authentication ticket expiration time (if any) */
80  time_t expire_time;
81  ber_int_t page_size;
83 
85 
89 
90  struct sdap_op *ops;
91 
92  /* during release we need to lock access to the handler
93  * from the destructor to avoid recursion */
95  /* mark when it is safe to finally release the handler memory */
97 };
98 
99 struct sdap_service {
100  char *name;
101  char *uri;
103  struct sockaddr_storage *sockaddr;
104 };
105 
107  int grace;
108  int expire;
109 };
110 
111 #define SYSDB_SHADOWPW_LASTCHANGE "shadowLastChange"
112 #define SYSDB_SHADOWPW_MIN "shadowMin"
113 #define SYSDB_SHADOWPW_MAX "shadowMax"
114 #define SYSDB_SHADOWPW_WARNING "shadowWarning"
115 #define SYSDB_SHADOWPW_INACTIVE "shadowInactive"
116 #define SYSDB_SHADOWPW_EXPIRE "shadowExpire"
117 #define SYSDB_SHADOWPW_FLAG "shadowFlag"
118 
119 #define SYSDB_NS_ACCOUNT_LOCK "nsAccountLock"
120 
121 #define SYSDB_KRBPW_LASTCHANGE "krbLastPwdChange"
122 #define SYSDB_KRBPW_EXPIRATION "krbPasswordExpiration"
123 
124 #define SYSDB_PWD_ATTRIBUTE "pwdAttribute"
125 
126 #define SYSDB_NDS_LOGIN_DISABLED "ndsLoginDisabled"
127 #define SYSDB_NDS_LOGIN_EXPIRATION_TIME "ndsLoginExpirationTime"
128 #define SYSDB_NDS_LOGIN_ALLOWED_TIME_MAP "ndsLoginAllowedTimeMap"
129 
130 #define SDAP_ROOTDSE_ATTR_NAMING_CONTEXTS "namingContexts"
131 #define SDAP_ROOTDSE_ATTR_DEFAULT_NAMING_CONTEXT "defaultNamingContext"
132 #define SDAP_ROOTDSE_ATTR_AD_VERSION "domainControllerFunctionality"
133 #define SDAP_ROOTDSE_ATTR_AD_SCHEMA_NC "schemaNamingContext"
134 
135 #define SDAP_IPA_USN "entryUSN"
136 #define SDAP_IPA_LAST_USN "lastUSN"
137 #define SDAP_AD_USN "uSNChanged"
138 #define SDAP_AD_LAST_USN "highestCommittedUSN"
139 
140 #define SDAP_AD_GROUP_TYPE_BUILTIN 0x00000001
141 #define SDAP_AD_GROUP_TYPE_GLOBAL 0x00000002
142 #define SDAP_AD_GROUP_TYPE_DOMAIN_LOCAL 0x00000004
143 #define SDAP_AD_GROUP_TYPE_UNIVERSAL 0x00000008
144 #define SDAP_AD_GROUP_TYPE_APP_BASIC 0x00000010
145 #define SDAP_AD_GROUP_TYPE_APP_QUERY 0x00000020
146 #define SDAP_AD_GROUP_TYPE_SECURITY 0x80000000
147 
149  SDAP_URI = 0,
239 
240  SDAP_OPTS_BASIC /* opts counter */
241 };
242 
246 
247  SDAP_AT_GENERAL /* attrs counter */
248 };
249 
250 /* the objectclass must be the first attribute.
251  * Functions depend on this */
292 
293  SDAP_OPTS_USER /* attrs counter */
294 };
295 
296 #define SDAP_FIRST_EXTRA_USER_AT SDAP_AT_SP_LSTCHG
297 
298 /* the objectclass must be the first attribute.
299  * Functions depend on this */
313 
314  SDAP_OPTS_GROUP /* attrs counter */
315 };
316 
323 
324  SDAP_OPTS_NETGROUP /* attrs counter */
325 };
326 
342 
343  SDAP_OPTS_SUDO /* attrs counter */
344 };
345 
354 
355  SDAP_OPTS_HOST /* attrs counter */
356 };
357 
364  SDAP_OPTS_SERVICES /* attrs counter */
365 };
366 
370 
371  SDAP_OPTS_AUTOFS_MAP /* attrs counter */
372 };
373 
378 
379  SDAP_OPTS_AUTOFS_ENTRY /* attrs counter */
380 };
381 
383  const char *opt_name;
384  const char *def_name;
385  const char *sys_name;
386  char *name;
387 };
388 #define SDAP_ATTR_MAP_TERMINATOR { NULL, NULL, NULL, NULL }
389 
391  const char *basedn;
392  int scope;
393  const char *filter;
394 };
395 
396 errno_t
397 sdap_create_search_base(TALLOC_CTX *mem_ctx,
398  const char *unparsed_base,
399  int scope,
400  const char *filter,
401  struct sdap_search_base **_base);
402 
403 /* Values from
404  * http://msdn.microsoft.com/en-us/library/cc223272%28v=prot.13%29.aspx
405  */
414 };
415 
416 struct sdap_domain {
418 
419  char *basedn;
420 
429 
430  struct sdap_domain *next, *prev;
431  /* Need to modify the list from a talloc destructor */
432  struct sdap_domain **head;
433 
434  void *pvt;
435 };
436 
437 typedef struct tevent_req *
438 (*ext_member_send_fn_t)(TALLOC_CTX *mem_ctx,
439  struct tevent_context *ev,
440  const char *ext_member,
441  void *pvt);
442 typedef errno_t
443 (*ext_member_recv_fn_t)(TALLOC_CTX *mem_ctx,
444  struct tevent_req *req,
445  enum sysdb_member_type *member_type,
446  struct sss_domain_info **_dom,
447  struct sysdb_attrs **_member);
448 
450  /* Typically ID context of the external ID provider */
451  void *pvt;
452 
455 };
456 
457 struct sdap_certmap_ctx;
458 
459 struct sdap_options {
460  struct dp_option *basic;
461  struct data_provider *dp;
464  size_t user_map_cnt;
469 
470  /* ID-mapping support */
472 
473  /* Resolving external members */
475 
476  /* FIXME - should this go to a special struct to avoid mixing with name-service-switch maps? */
480 
481  /* supported schema types */
482  enum schema_type {
483  SDAP_SCHEMA_RFC2307 = 1, /* memberUid = uid */
484  SDAP_SCHEMA_RFC2307BIS = 2, /* member = dn */
485  SDAP_SCHEMA_IPA_V1 = 3, /* member/memberof */
486  SDAP_SCHEMA_AD = 4 /* AD's member/memberof */
487  } schema_type;
488 
489  /* password modify mode */
491  SDAP_PWMODIFY_EXOP = 1, /* pwmodify extended operation */
492  SDAP_PWMODIFY_LDAP = 2 /* ldap_modify of userPassword */
493  } pwmodify_mode;
494 
495  /* The search bases for the domain or its subdomain */
496  struct sdap_domain *sdom;
497 
498  /* The options below are normally only used with AD */
501  const char *schema_basedn;
502 
503  /* Certificate mapping support */
505 };
506 
508  char *server_id;
510  unsigned long last_usn;
515 };
516 
517 struct sdap_id_ctx;
518 
522 };
523 
527 };
528 
529 errno_t sdap_copy_map_entry(const struct sdap_attr_map *src_map,
530  struct sdap_attr_map *dst_map,
531  int entry_index);
532 
533 int sdap_copy_map(TALLOC_CTX *memctx,
534  struct sdap_attr_map *src_map,
535  int num_entries,
536  struct sdap_attr_map **_map);
537 
559 int sdap_extend_map(TALLOC_CTX *memctx,
560  struct sdap_attr_map *src_map,
561  size_t num_entries,
562  char **extra_attrs,
563  struct sdap_attr_map **_map,
564  size_t *_new_size);
565 
566 int sdap_extend_map_with_list(TALLOC_CTX *mem_ctx,
567  const struct sdap_options *opts,
568  int extra_attr_index,
569  struct sdap_attr_map *src_map,
570  size_t num_entries,
571  struct sdap_attr_map **_map,
572  size_t *_new_size);
573 
574 void sdap_inherit_options(char **inherit_opt_list,
575  struct sdap_options *parent_sdap_opts,
576  struct sdap_options *child_sdap_opts);
577 
578 int sdap_get_map(TALLOC_CTX *memctx,
579  struct confdb_ctx *cdb,
580  const char *conf_path,
581  struct sdap_attr_map *def_map,
582  int num_entries,
583  struct sdap_attr_map **_map);
584 
585 int sdap_parse_entry(TALLOC_CTX *memctx,
586  struct sdap_handle *sh, struct sdap_msg *sm,
587  struct sdap_attr_map *map, int attrs_num,
588  struct sysdb_attrs **_attrs,
589  bool disable_range_retrieval);
590 
591 errno_t sdap_parse_deref(TALLOC_CTX *mem_ctx,
592  struct sdap_attr_map_info *minfo,
593  size_t num_maps,
594  LDAPDerefRes *dref,
595  struct sdap_deref_attrs ***_deref_res);
596 
597 errno_t setup_tls_config(struct dp_option *basic_opts);
598 
600  struct sdap_handle *sh);
601 bool sdap_check_sup_list(struct sup_list *l, const char *val);
602 
603 #define sdap_is_sasl_mech_supported(sh, sasl_mech) \
604  sdap_check_sup_list(&((sh)->supported_saslmechs), sasl_mech)
605 
606 #define sdap_is_control_supported(sh, ctrl_oid) \
607  sdap_check_sup_list(&((sh)->supported_controls), ctrl_oid)
608 
609 #define sdap_is_extension_supported(sh, ext_oid) \
610  sdap_check_sup_list(&((sh)->supported_extensions), ext_oid)
611 
612 bool sdap_sasl_mech_needs_kinit(const char *mech);
613 
614 int build_attrs_from_map(TALLOC_CTX *memctx,
615  struct sdap_attr_map *map,
616  size_t size,
617  const char **filter,
618  const char ***_attrs,
619  size_t *attr_count);
620 
621 int sdap_control_create(struct sdap_handle *sh, const char *oid, int iscritical,
622  struct berval *value, int dupval, LDAPControl **ctrlp);
623 
624 int sdap_replace_id(struct sysdb_attrs *entry, const char *attr, id_t val);
625 
626 errno_t sdap_get_group_primary_name(TALLOC_CTX *memctx,
627  struct sdap_options *opts,
628  struct sysdb_attrs *attrs,
629  struct sss_domain_info *dom,
630  const char **_group_name);
631 
632 errno_t sdap_get_user_primary_name(TALLOC_CTX *memctx,
633  struct sdap_options *opts,
634  struct sysdb_attrs *attrs,
635  struct sss_domain_info *dom,
636  const char **_user_name);
637 
638 errno_t sdap_get_netgroup_primary_name(TALLOC_CTX *memctx,
639  struct sdap_options *opts,
640  struct sysdb_attrs *attrs,
641  struct sss_domain_info *dom,
642  const char **_netgroup_name);
643 
645  struct sdap_options *opts,
646  struct sdap_domain *sdom);
647 int sdap_get_server_opts_from_rootdse(TALLOC_CTX *memctx,
648  const char *server,
649  struct sysdb_attrs *rootdse,
650  struct sdap_options *opts,
651  struct sdap_server_opts **srv_opts);
652 void sdap_steal_server_opts(struct sdap_id_ctx *id_ctx,
653  struct sdap_server_opts **srv_opts);
654 
655 char *sdap_make_oc_list(TALLOC_CTX *mem_ctx, struct sdap_attr_map *map);
656 
657 size_t sdap_steal_objects_in_dom(struct sdap_options *opts,
658  struct sysdb_attrs **dom_objects,
659  size_t offset,
660  struct sss_domain_info *dom,
661  struct sysdb_attrs **all_objects,
662  size_t count,
663  bool filter);
664 
666  struct sysdb_attrs *obj,
667  struct sss_domain_info *dom);
668 
669 bool sdap_object_in_domain(struct sdap_options *opts,
670  struct sysdb_attrs *obj,
671  struct sss_domain_info *dom);
672 
674  struct sdap_domain *from);
675 
676 #endif /* _SDAP_H_ */
SDAP_PWMODIFY_MODE
@ SDAP_PWMODIFY_MODE
Definition: sdap.h:179
SDAP_IDMAP_AUTORID_COMPAT
@ SDAP_IDMAP_AUTORID_COMPAT
Definition: sdap.h:228
SDAP_AT_NETGROUP_MEMBER
@ SDAP_AT_NETGROUP_MEMBER
Definition: sdap.h:320
sdap_options::sudorule_map
struct sdap_attr_map * sudorule_map
Definition: sdap.h:477
sdap_copy_map_entry
errno_t sdap_copy_map_entry(const struct sdap_attr_map *src_map, struct sdap_attr_map *dst_map, int entry_index)
Definition: sdap.c:32
sdap_handle::ldap
LDAP * ldap
Definition: sdap.h:77
SDAP_AT_GROUP_GID
@ SDAP_AT_GROUP_GID
Definition: sdap.h:305
SDAP_SASL_REALM
@ SDAP_SASL_REALM
Definition: sdap.h:193
SDAP_KRB5_CANONICALIZE
@ SDAP_KRB5_CANONICALIZE
Definition: sdap.h:200
SDAP_USER_SEARCH_BASE
@ SDAP_USER_SEARCH_BASE
Definition: sdap.h:159
sdap_options::autofs_entry_map
struct sdap_attr_map * autofs_entry_map
Definition: sdap.h:479
sss_ldap.h
sdap_domain::search_bases
struct sdap_search_base ** search_bases
Definition: sdap.h:421
SDAP_SUDO_USE_HOST_FILTER
@ SDAP_SUDO_USE_HOST_FILTER
Definition: sdap.h:171
sdap_attr_map
Definition: sdap.h:382
sysdb_attrs
Definition: sysdb.h:328
sdap_handle::ops
struct sdap_op * ops
Definition: sdap.h:90
SDAP_KRB5_KINIT
@ SDAP_KRB5_KINIT
Definition: sdap.h:196
SDAP_OC_GROUP_ALT
@ SDAP_OC_GROUP_ALT
Definition: sdap.h:302
sdap_handle::destructor_lock
bool destructor_lock
Definition: sdap.h:94
sdap_domain::service_search_bases
struct sdap_search_base ** service_search_bases
Definition: sdap.h:427
SDAP_AD_USE_TOKENGROUPS
@ SDAP_AD_USE_TOKENGROUPS
Definition: sdap.h:232
fd_event_item::next
struct fd_event_item * next
Definition: sdap.h:59
sdap_server_opts::server_id
char * server_id
Definition: sdap.h:508
sdap_handle::page_size
ber_int_t page_size
Definition: sdap.h:81
sdap_options::SDAP_SCHEMA_RFC2307BIS
@ SDAP_SCHEMA_RFC2307BIS
Definition: sdap.h:484
SDAP_MIN_ID
@ SDAP_MIN_ID
Definition: sdap.h:235
sdap_user_attrs
sdap_user_attrs
Definition: sdap.h:252
sdap_op::sh
struct sdap_handle * sh
Definition: sdap.h:44
sdap_options::dp
struct data_provider * dp
Definition: sdap.h:461
sdap_server_opts::max_group_value
char * max_group_value
Definition: sdap.h:512
sdap_ext_member_ctx::pvt
void * pvt
Definition: sdap.h:451
SDAP_AT_SUDO_OC
@ SDAP_AT_SUDO_OC
Definition: sdap.h:329
SDAP_IDMAP_RANGESIZE
@ SDAP_IDMAP_RANGESIZE
Definition: sdap.h:227
sdap_domain::head
struct sdap_domain ** head
Definition: sdap.h:432
SDAP_SUDO_INCLUDE_REGEXP
@ SDAP_SUDO_INCLUDE_REGEXP
Definition: sdap.h:175
sdap_sudorule_attrs
sdap_sudorule_attrs
Definition: sdap.h:327
sdap_extend_map
int sdap_extend_map(TALLOC_CTX *memctx, struct sdap_attr_map *src_map, size_t num_entries, char **extra_attrs, struct sdap_attr_map **_map, size_t *_new_size)
Add attributes to a map.
Definition: sdap.c:150
SDAP_SUDO_SMART_REFRESH_INTERVAL
@ SDAP_SUDO_SMART_REFRESH_INTERVAL
Definition: sdap.h:170
data_provider
Definition: dp_private.h:76
SDAP_AT_USER_FULLNAME
@ SDAP_AT_USER_FULLNAME
Definition: sdap.h:262
sdap_domain
Definition: sdap.h:416
DS_BEHAVIOR_WIN2000
@ DS_BEHAVIOR_WIN2000
Definition: sdap.h:407
SDAP_AT_USER_PRINC
@ SDAP_AT_USER_PRINC
Definition: sdap.h:261
SDAP_ENUM_SEARCH_TIMEOUT
@ SDAP_ENUM_SEARCH_TIMEOUT
Definition: sdap.h:218
SDAP_NESTING_LEVEL
@ SDAP_NESTING_LEVEL
Definition: sdap.h:210
sdap_extend_map_with_list
int sdap_extend_map_with_list(TALLOC_CTX *mem_ctx, const struct sdap_options *opts, int extra_attr_index, struct sdap_attr_map *src_map, size_t num_entries, struct sdap_attr_map **_map, size_t *_new_size)
Definition: sdap.c:228
sdap_host_attrs
sdap_host_attrs
Definition: sdap.h:346
SDAP_OC_NETGROUP
@ SDAP_OC_NETGROUP
Definition: sdap.h:318
sdap_options::SDAP_SCHEMA_AD
@ SDAP_SCHEMA_AD
Definition: sdap.h:486
SDAP_CHPASS_UPDATE_LAST_CHANGE
@ SDAP_CHPASS_UPDATE_LAST_CHANGE
Definition: sdap.h:217
SDAP_IDMAP_LOWER
@ SDAP_IDMAP_LOWER
Definition: sdap.h:225
sdap_server_opts::last_usn
unsigned long last_usn
Definition: sdap.h:510
dp_option
Definition: data_provider.h:201
SDAP_WILDCARD_LIMIT
@ SDAP_WILDCARD_LIMIT
Definition: sdap.h:238
sdap_handle::supported_extensions
struct sup_list supported_extensions
Definition: sdap.h:88
sdap_domain::dom
struct sss_domain_info * dom
Definition: sdap.h:417
DS_BEHAVIOR_WIN2016
@ DS_BEHAVIOR_WIN2016
Definition: sdap.h:413
sdap_server_opts
Definition: sdap.h:507
SDAP_KRB5_BACKUP_KDC
@ SDAP_KRB5_BACKUP_KDC
Definition: sdap.h:198
SDAP_DEFAULT_AUTHTOK_TYPE
@ SDAP_DEFAULT_AUTHTOK_TYPE
Definition: sdap.h:153
SDAP_AT_AUTOFS_MAP_NAME
@ SDAP_AT_AUTOFS_MAP_NAME
Definition: sdap.h:369
sdap_deref_attrs
Definition: sdap.h:524
SDAP_OC_SUDORULE
@ SDAP_OC_SUDORULE
Definition: sdap.h:328
SDAP_PAGE_SIZE
@ SDAP_PAGE_SIZE
Definition: sdap.h:220
sdap_ppolicy_data::expire
int expire
Definition: sdap.h:108
sdap_options::idmap_ctx
struct sdap_idmap_ctx * idmap_ctx
Definition: sdap.h:471
SDAP_OC_AUTOFS_MAP
@ SDAP_OC_AUTOFS_MAP
Definition: sdap.h:368
sdap_op_callback_t
void() sdap_op_callback_t(struct sdap_op *op, struct sdap_msg *, int, void *)
Definition: sdap.h:37
SDAP_USER_SEARCH_FILTER
@ SDAP_USER_SEARCH_FILTER
Definition: sdap.h:161
SDAP_AT_USER_CERT
@ SDAP_AT_USER_CERT
Definition: sdap.h:290
sdap_domain::pvt
void * pvt
Definition: sdap.h:434
sdap_get_server_opts_from_rootdse
int sdap_get_server_opts_from_rootdse(TALLOC_CTX *memctx, const char *server, struct sysdb_attrs *rootdse, struct sdap_options *opts, struct sdap_server_opts **srv_opts)
Definition: sdap.c:1282
sss_domain_info
Data structure storing all of the basic features of a domain.
Definition: confdb.h:340
SDAP_AT_AD_USER_ACCOUNT_CONTROL
@ SDAP_AT_AD_USER_ACCOUNT_CONTROL
Definition: sdap.h:281
SDAP_AT_USER_UUID
@ SDAP_AT_USER_UUID
Definition: sdap.h:264
sdap_inherit_options
void sdap_inherit_options(char **inherit_opt_list, struct sdap_options *parent_sdap_opts, struct sdap_options *child_sdap_opts)
Definition: sdap.c:313
SDAP_GROUP_SEARCH_SCOPE
@ SDAP_GROUP_SEARCH_SCOPE
Definition: sdap.h:164
ldap_cb_data::sh
struct sdap_handle * sh
Definition: sdap.h:66
SDAP_OPT_TIMEOUT
@ SDAP_OPT_TIMEOUT
Definition: sdap.h:157
SDAP_AT_SUDO_RUNASGROUP
@ SDAP_AT_SUDO_RUNASGROUP
Definition: sdap.h:337
SDAP_ACCOUNT_CACHE_EXPIRATION
@ SDAP_ACCOUNT_CACHE_EXPIRATION
Definition: sdap.h:205
SDAP_AT_SUDO_NOTAFTER
@ SDAP_AT_SUDO_NOTAFTER
Definition: sdap.h:339
SDAP_OFFLINE_TIMEOUT
@ SDAP_OFFLINE_TIMEOUT
Definition: sdap.h:180
SDAP_TLS_KEY
@ SDAP_TLS_KEY
Definition: sdap.h:187
sdap_service::sockaddr
struct sockaddr_storage * sockaddr
Definition: sdap.h:103
SDAP_AT_KP_EXPIRATION
@ SDAP_AT_KP_EXPIRATION
Definition: sdap.h:277
fd_event_item::fde
struct tevent_fd * fde
Definition: sdap.h:62
sdap_basic_opt
sdap_basic_opt
Definition: sdap.h:148
SDAP_KRB5_KEYTAB
@ SDAP_KRB5_KEYTAB
Definition: sdap.h:195
SDAP_AT_SERVICE_PROTOCOL
@ SDAP_AT_SERVICE_PROTOCOL
Definition: sdap.h:362
sdap_options::sdap_certmap_ctx
struct sdap_certmap_ctx * sdap_certmap_ctx
Definition: sdap.h:504
SDAP_ACCOUNT_EXPIRE_POLICY
@ SDAP_ACCOUNT_EXPIRE_POLICY
Definition: sdap.h:212
SDAP_AT_USER_HOME
@ SDAP_AT_USER_HOME
Definition: sdap.h:259
SDAP_DEREF
@ SDAP_DEREF
Definition: sdap.h:211
sdap_object_in_domain
bool sdap_object_in_domain(struct sdap_options *opts, struct sysdb_attrs *obj, struct sss_domain_info *dom)
Definition: sdap.c:1736
SDAP_ACCESS_FILTER
@ SDAP_ACCESS_FILTER
Definition: sdap.h:208
SDAP_NETGROUP_SEARCH_BASE
@ SDAP_NETGROUP_SEARCH_BASE
Definition: sdap.h:209
SDAP_AT_LAST_USN
@ SDAP_AT_LAST_USN
Definition: sdap.h:245
sdap_copy_map
int sdap_copy_map(TALLOC_CTX *memctx, struct sdap_attr_map *src_map, int num_entries, struct sdap_attr_map **_map)
Definition: sdap.c:49
sdap_create_search_base
errno_t sdap_create_search_base(TALLOC_CTX *mem_ctx, const char *unparsed_base, int scope, const char *filter, struct sdap_search_base **_base)
Definition: sdap.c:1069
SDAP_AT_NDS_LOGIN_ALLOWED_TIME_MAP
@ SDAP_AT_NDS_LOGIN_ALLOWED_TIME_MAP
Definition: sdap.h:287
SDAP_OPTS_BASIC
@ SDAP_OPTS_BASIC
Definition: sdap.h:240
SDAP_AT_GROUP_MODSTAMP
@ SDAP_AT_GROUP_MODSTAMP
Definition: sdap.h:309
sdap_options::SDAP_PWMODIFY_LDAP
@ SDAP_PWMODIFY_LDAP
Definition: sdap.h:492
DS_BEHAVIOR_WIN2003
@ DS_BEHAVIOR_WIN2003
Definition: sdap.h:408
SDAP_SUDO_IP
@ SDAP_SUDO_IP
Definition: sdap.h:173
SDAP_AT_USER_MEMBEROF
@ SDAP_AT_USER_MEMBEROF
Definition: sdap.h:263
SDAP_AT_KP_LASTCHANGE
@ SDAP_AT_KP_LASTCHANGE
Definition: sdap.h:276
sdap_get_user_primary_name
errno_t sdap_get_user_primary_name(TALLOC_CTX *memctx, struct sdap_options *opts, struct sysdb_attrs *attrs, struct sss_domain_info *dom, const char **_user_name)
Definition: sdap.c:1664
SDAP_AT_SUDO_NAME
@ SDAP_AT_SUDO_NAME
Definition: sdap.h:330
SDAP_AT_GROUP_TYPE
@ SDAP_AT_GROUP_TYPE
Definition: sdap.h:311
sdap_handle
Definition: sdap.h:76
sdap_op::next
struct sdap_op * next
Definition: sdap.h:43
SDAP_IDMAP_DEFAULT_DOMAIN_SID
@ SDAP_IDMAP_DEFAULT_DOMAIN_SID
Definition: sdap.h:230
SDAP_ID_TLS
@ SDAP_ID_TLS
Definition: sdap.h:189
sdap_op::callback
sdap_op_callback_t * callback
Definition: sdap.h:49
SDAP_AT_SP_MAX
@ SDAP_AT_SP_MAX
Definition: sdap.h:271
SDAP_AT_AUTOFS_ENTRY_VALUE
@ SDAP_AT_AUTOFS_ENTRY_VALUE
Definition: sdap.h:377
sdap_options::basic
struct dp_option * basic
Definition: sdap.h:460
DS_BEHAVIOR_WIN2008
@ DS_BEHAVIOR_WIN2008
Definition: sdap.h:409
sdap_check_sup_list
bool sdap_check_sup_list(struct sup_list *l, const char *val)
Definition: sdap.c:919
SDAP_DISABLE_AUTH_TLS
@ SDAP_DISABLE_AUTH_TLS
Definition: sdap.h:219
SDAP_AT_SP_INACT
@ SDAP_AT_SP_INACT
Definition: sdap.h:273
ext_member_recv_fn_t
errno_t(* ext_member_recv_fn_t)(TALLOC_CTX *mem_ctx, struct tevent_req *req, enum sysdb_member_type *member_type, struct sss_domain_info **_dom, struct sysdb_attrs **_member)
Definition: sdap.h:443
SDAP_PWD_POLICY
@ SDAP_PWD_POLICY
Definition: sdap.h:203
sup_list::num_vals
int num_vals
Definition: sdap.h:72
SDAP_DEREF_THRESHOLD
@ SDAP_DEREF_THRESHOLD
Definition: sdap.h:221
SDAP_PWDLOCKOUT_DN
@ SDAP_PWDLOCKOUT_DN
Definition: sdap.h:237
errno_t
int errno_t
Definition: hbac_evaluator.c:36
SDAP_AT_AUTHORIZED_RHOST
@ SDAP_AT_AUTHORIZED_RHOST
Definition: sdap.h:284
sdap_group_attrs
sdap_group_attrs
Definition: sdap.h:300
SDAP_KRB5_USE_KDCINFO
@ SDAP_KRB5_USE_KDCINFO
Definition: sdap.h:201
sdap_domain::next
struct sdap_domain * next
Definition: sdap.h:430
SDAP_FORCE_UPPER_CASE_REALM
@ SDAP_FORCE_UPPER_CASE_REALM
Definition: sdap.h:181
SDAP_KRB5_TICKET_LIFETIME
@ SDAP_KRB5_TICKET_LIFETIME
Definition: sdap.h:207
SDAP_EXPIRE_TIMEOUT
@ SDAP_EXPIRE_TIMEOUT
Definition: sdap.h:223
sdap_options::gen_map
struct sdap_attr_map * gen_map
Definition: sdap.h:462
SDAP_USER_SEARCH_SCOPE
@ SDAP_USER_SEARCH_SCOPE
Definition: sdap.h:160
sdap_search_base::basedn
const char * basedn
Definition: sdap.h:391
sdap_handle::sdap_fd_events
struct sdap_fd_events * sdap_fd_events
Definition: sdap.h:84
sdap_options::sdom
struct sdap_domain * sdom
Definition: sdap.h:496
SDAP_AT_USER_GID
@ SDAP_AT_USER_GID
Definition: sdap.h:257
SDAP_ENUM_REFRESH_TIMEOUT
@ SDAP_ENUM_REFRESH_TIMEOUT
Definition: sdap.h:182
sdap_options::host_map
struct sdap_attr_map * host_map
Definition: sdap.h:467
SDAP_AT_GROUP_NAME
@ SDAP_AT_GROUP_NAME
Definition: sdap.h:303
SDAP_OPTS_GROUP
@ SDAP_OPTS_GROUP
Definition: sdap.h:314
SDAP_IDMAP_UPPER
@ SDAP_IDMAP_UPPER
Definition: sdap.h:226
sdap_options::group_map
struct sdap_attr_map * group_map
Definition: sdap.h:465
setup_tls_config
errno_t setup_tls_config(struct dp_option *basic_opts)
Definition: sdap.c:819
sdap_get_map
int sdap_get_map(TALLOC_CTX *memctx, struct confdb_ctx *cdb, const char *conf_path, struct sdap_attr_map *def_map, int num_entries, struct sdap_attr_map **_map)
Definition: sdap.c:326
confdb_ctx
Definition: confdb_private.h:25
SDAP_AT_HOST_UUID
@ SDAP_AT_HOST_UUID
Definition: sdap.h:353
sdap_msg::next
struct sdap_msg * next
Definition: sdap.h:31
SDAP_SASL_AUTHID
@ SDAP_SASL_AUTHID
Definition: sdap.h:192
sdap_options::support_matching_rule
bool support_matching_rule
Definition: sdap.h:499
sdap_replace_id
int sdap_replace_id(struct sysdb_attrs *entry, const char *attr, id_t val)
Definition: sdap.c:1576
sdap_attr_map::def_name
const char * def_name
Definition: sdap.h:384
sdap_handle::connected
bool connected
Definition: sdap.h:78
SDAP_AT_USER_GECOS
@ SDAP_AT_USER_GECOS
Definition: sdap.h:258
SDAP_SEARCH_BASE
@ SDAP_SEARCH_BASE
Definition: sdap.h:151
sup_list
Definition: sdap.h:71
sdap_attr_map_info::map
struct sdap_attr_map * map
Definition: sdap.h:520
SDAP_AT_SUDO_COMMAND
@ SDAP_AT_SUDO_COMMAND
Definition: sdap.h:331
SDAP_OPTS_AUTOFS_MAP
@ SDAP_OPTS_AUTOFS_MAP
Definition: sdap.h:371
SDAP_DEFAULT_BIND_DN
@ SDAP_DEFAULT_BIND_DN
Definition: sdap.h:152
sdap_netgroup_attrs
sdap_netgroup_attrs
Definition: sdap.h:317
SDAP_AT_SP_MIN
@ SDAP_AT_SP_MIN
Definition: sdap.h:270
sdap_options::SDAP_SCHEMA_IPA_V1
@ SDAP_SCHEMA_IPA_V1
Definition: sdap.h:485
SDAP_AT_SP_LSTCHG
@ SDAP_AT_SP_LSTCHG
Definition: sdap.h:269
sdap_op::done
bool done
Definition: sdap.h:47
SDAP_AT_NDS_LOGIN_DISABLED
@ SDAP_AT_NDS_LOGIN_DISABLED
Definition: sdap.h:285
sdap_set_rootdse_supported_lists
int sdap_set_rootdse_supported_lists(struct sysdb_attrs *rootdse, struct sdap_handle *sh)
Definition: sdap.c:961
SDAP_DISABLE_RANGE_RETRIEVAL
@ SDAP_DISABLE_RANGE_RETRIEVAL
Definition: sdap.h:234
SDAP_AT_USER_MODSTAMP
@ SDAP_AT_USER_MODSTAMP
Definition: sdap.h:267
sdap_handle::supported_saslmechs
struct sup_list supported_saslmechs
Definition: sdap.h:86
SDAP_SASL_MECH
@ SDAP_SASL_MECH
Definition: sdap.h:191
SDAP_SEARCH_TIMEOUT
@ SDAP_SEARCH_TIMEOUT
Definition: sdap.h:155
SDAP_AT_NETGROUP_TRIPLE
@ SDAP_AT_NETGROUP_TRIPLE
Definition: sdap.h:321
SDAP_KRB5_KDCINFO_LOOKAHEAD
@ SDAP_KRB5_KDCINFO_LOOKAHEAD
Definition: sdap.h:202
DS_BEHAVIOR_WIN2012R2
@ DS_BEHAVIOR_WIN2012R2
Definition: sdap.h:412
SDAP_AT_NETGROUP_MODSTAMP
@ SDAP_AT_NETGROUP_MODSTAMP
Definition: sdap.h:322
sdap_options::service_map
struct sdap_attr_map * service_map
Definition: sdap.h:468
SDAP_RFC2307_FALLBACK_TO_LOCAL_USERS
@ SDAP_RFC2307_FALLBACK_TO_LOCAL_USERS
Definition: sdap.h:233
sdap_options::SDAP_SCHEMA_RFC2307
@ SDAP_SCHEMA_RFC2307
Definition: sdap.h:483
SDAP_AT_USER_EMAIL
@ SDAP_AT_USER_EMAIL
Definition: sdap.h:291
sdap_domain::sudo_search_bases
struct sdap_search_base ** sudo_search_bases
Definition: sdap.h:426
sdap_domain::user_search_bases
struct sdap_search_base ** user_search_bases
Definition: sdap.h:422
sdap_op::list
struct sdap_msg * list
Definition: sdap.h:53
sdap_options::schema_basedn
const char * schema_basedn
Definition: sdap.h:501
SDAP_AT_HOST_SSH_PUBLIC_KEY
@ SDAP_AT_HOST_SSH_PUBLIC_KEY
Definition: sdap.h:352
SDAP_AT_AUTHORIZED_HOST
@ SDAP_AT_AUTHORIZED_HOST
Definition: sdap.h:283
SDAP_AT_SUDO_NOTBEFORE
@ SDAP_AT_SUDO_NOTBEFORE
Definition: sdap.h:338
sdap_domain::autofs_search_bases
struct sdap_search_base ** autofs_search_bases
Definition: sdap.h:428
sdap_options::SDAP_PWMODIFY_EXOP
@ SDAP_PWMODIFY_EXOP
Definition: sdap.h:491
SDAP_AT_GROUP_EXT_MEMBER
@ SDAP_AT_GROUP_EXT_MEMBER
Definition: sdap.h:312
SDAP_AT_SERVICE_USN
@ SDAP_AT_SERVICE_USN
Definition: sdap.h:363
sdap_domain_copy_search_bases
void sdap_domain_copy_search_bases(struct sdap_domain *to, struct sdap_domain *from)
Definition: sdap.c:1784
sdap_options::schema_type
schema_type
Definition: sdap.h:482
SDAP_OC_HOST
@ SDAP_OC_HOST
Definition: sdap.h:347
SDAP_CHPASS_DNS_SERVICE_NAME
@ SDAP_CHPASS_DNS_SERVICE_NAME
Definition: sdap.h:216
SDAP_AT_SUDO_USER
@ SDAP_AT_SUDO_USER
Definition: sdap.h:333
SDAP_MAX_ID
@ SDAP_MAX_ID
Definition: sdap.h:236
SDAP_SASL_CANONICALIZE
@ SDAP_SASL_CANONICALIZE
Definition: sdap.h:222
SDAP_AT_USER_NAME
@ SDAP_AT_USER_NAME
Definition: sdap.h:254
SDAP_AUTOFS_MAP_MASTER_NAME
@ SDAP_AUTOFS_MAP_MASTER_NAME
Definition: sdap.h:177
sdap_autofs_entry_attrs
sdap_autofs_entry_attrs
Definition: sdap.h:374
SDAP_AT_USER_PWD
@ SDAP_AT_USER_PWD
Definition: sdap.h:255
sdap_options::autofs_mobject_map
struct sdap_attr_map * autofs_mobject_map
Definition: sdap.h:478
DS_BEHAVIOR_WIN2008R2
@ DS_BEHAVIOR_WIN2008R2
Definition: sdap.h:410
SDAP_OPTS_NETGROUP
@ SDAP_OPTS_NETGROUP
Definition: sdap.h:324
sdap_sasl_mech_needs_kinit
bool sdap_sasl_mech_needs_kinit(const char *mech)
Definition: sdap.c:909
sup_list::vals
char ** vals
Definition: sdap.h:73
SDAP_AT_PWD_ATTRIBUTE
@ SDAP_AT_PWD_ATTRIBUTE
Definition: sdap.h:278
ldap_cb_data
Definition: sdap.h:65
sdap_make_oc_list
char * sdap_make_oc_list(TALLOC_CTX *mem_ctx, struct sdap_attr_map *map)
Definition: sdap.c:1697
sdap_attr_map::opt_name
const char * opt_name
Definition: sdap.h:383
sdap_handle::disable_deref
bool disable_deref
Definition: sdap.h:82
backend.h
SDAP_AT_GENERAL
@ SDAP_AT_GENERAL
Definition: sdap.h:247
SDAP_OPTS_SERVICES
@ SDAP_OPTS_SERVICES
Definition: sdap.h:364
ldap_cb_data::fd_list
struct fd_event_item * fd_list
Definition: sdap.h:68
SDAP_SCHEMA
@ SDAP_SCHEMA
Definition: sdap.h:178
SDAP_AT_NDS_LOGIN_EXPIRATION_TIME
@ SDAP_AT_NDS_LOGIN_EXPIRATION_TIME
Definition: sdap.h:286
sdap_attr_map::name
char * name
Definition: sdap.h:386
SDAP_AT_SERVICE_NAME
@ SDAP_AT_SERVICE_NAME
Definition: sdap.h:360
SDAP_AT_SUDO_USN
@ SDAP_AT_SUDO_USN
Definition: sdap.h:341
sdap_server_opts::supports_usn
bool supports_usn
Definition: sdap.h:509
sdap_autofs_map_attrs
sdap_autofs_map_attrs
Definition: sdap.h:367
sdap_op::prev
struct sdap_op * prev
Definition: sdap.h:43
sdap_options::netgroup_map
struct sdap_attr_map * netgroup_map
Definition: sdap.h:466
SDAP_GROUP_SEARCH_BASE
@ SDAP_GROUP_SEARCH_BASE
Definition: sdap.h:163
sdap_steal_objects_in_dom
size_t sdap_steal_objects_in_dom(struct sdap_options *opts, struct sysdb_attrs **dom_objects, size_t offset, struct sss_domain_info *dom, struct sysdb_attrs **all_objects, size_t count, bool filter)
Definition: sdap.c:1750
SDAP_OPTS_AUTOFS_ENTRY
@ SDAP_OPTS_AUTOFS_ENTRY
Definition: sdap.h:379
sdap_server_opts::max_user_value
char * max_user_value
Definition: sdap.h:511
SDAP_AT_HOST_NAME
@ SDAP_AT_HOST_NAME
Definition: sdap.h:348
SDAP_AT_GROUP_PWD
@ SDAP_AT_GROUP_PWD
Definition: sdap.h:304
fd_event_item::fd
int fd
Definition: sdap.h:61
sdap_service::kinit_service_name
char * kinit_service_name
Definition: sdap.h:102
sdap_ppolicy_data
Definition: sdap.h:106
SDAP_DNS_SERVICE_NAME
@ SDAP_DNS_SERVICE_NAME
Definition: sdap.h:206
SDAP_USER_EXTRA_ATTRS
@ SDAP_USER_EXTRA_ATTRS
Definition: sdap.h:162
sdap_deref_attrs::map
struct sdap_attr_map * map
Definition: sdap.h:525
SDAP_OC_GROUP
@ SDAP_OC_GROUP
Definition: sdap.h:301
SDAP_SERVICE_SEARCH_BASE
@ SDAP_SERVICE_SEARCH_BASE
Definition: sdap.h:167
SDAP_SASL_MINSSF
@ SDAP_SASL_MINSSF
Definition: sdap.h:194
SDAP_AT_NS_ACCOUNT_LOCK
@ SDAP_AT_NS_ACCOUNT_LOCK
Definition: sdap.h:282
SDAP_DISABLE_PAGING
@ SDAP_DISABLE_PAGING
Definition: sdap.h:224
SDAP_TLS_CIPHER_SUITE
@ SDAP_TLS_CIPHER_SUITE
Definition: sdap.h:188
sdap_ext_member_ctx::ext_member_resolve_send
ext_member_send_fn_t ext_member_resolve_send
Definition: sdap.h:453
SDAP_AT_AUTH_SVC
@ SDAP_AT_AUTH_SVC
Definition: sdap.h:279
SDAP_AT_GROUP_MEMBER
@ SDAP_AT_GROUP_MEMBER
Definition: sdap.h:306
SDAP_URI
@ SDAP_URI
Definition: sdap.h:149
sdap_get_netgroup_primary_name
errno_t sdap_get_netgroup_primary_name(TALLOC_CTX *memctx, struct sdap_options *opts, struct sysdb_attrs *attrs, struct sss_domain_info *dom, const char **_netgroup_name)
Definition: sdap.c:1686
SDAP_TLS_REQCERT
@ SDAP_TLS_REQCERT
Definition: sdap.h:158
sysdb_member_type
sysdb_member_type
Definition: sysdb.h:354
sdap_server_opts::max_sudo_value
char * max_sudo_value
Definition: sdap.h:514
sss_certmap.h
SDAP_TLS_CACERT
@ SDAP_TLS_CACERT
Definition: sdap.h:184
sdap_msg
Definition: sdap.h:30
sdap_op::msgid
int msgid
Definition: sdap.h:46
SDAP_IDMAP_EXTRA_SLICE_INIT
@ SDAP_IDMAP_EXTRA_SLICE_INIT
Definition: sdap.h:231
SDAP_OPTS_HOST
@ SDAP_OPTS_HOST
Definition: sdap.h:355
SDAP_ACCESS_ORDER
@ SDAP_ACCESS_ORDER
Definition: sdap.h:213
SDAP_KRB5_KDC
@ SDAP_KRB5_KDC
Definition: sdap.h:197
sdap_options
Definition: sdap.h:459
sdap_options::user_map_cnt
size_t user_map_cnt
Definition: sdap.h:464
sdap_control_create
int sdap_control_create(struct sdap_handle *sh, const char *oid, int iscritical, struct berval *value, int dupval, LDAPControl **ctrlp)
Definition: sdap.c:1555
dc_functional_level
dc_functional_level
Definition: sdap.h:406
sdap_domain::netgroup_search_bases
struct sdap_search_base ** netgroup_search_bases
Definition: sdap.h:424
sdap_service_attrs
sdap_service_attrs
Definition: sdap.h:358
sdap_options::dc_functional_level
enum dc_functional_level dc_functional_level
Definition: sdap.h:500
SDAP_AT_SUDO_RUNASUSER
@ SDAP_AT_SUDO_RUNASUSER
Definition: sdap.h:336
sdap_parse_deref
errno_t sdap_parse_deref(TALLOC_CTX *mem_ctx, struct sdap_attr_map_info *minfo, size_t num_maps, LDAPDerefRes *dref, struct sdap_deref_attrs ***_deref_res)
Definition: sdap.c:655
SDAP_AT_USER_PRIMARY_GROUP
@ SDAP_AT_USER_PRIMARY_GROUP
Definition: sdap.h:266
SDAP_AT_GROUP_USN
@ SDAP_AT_GROUP_USN
Definition: sdap.h:310
sdap_attr_map_info::num_attrs
int num_attrs
Definition: sdap.h:521
SDAP_AT_ENTRY_USN
@ SDAP_AT_ENTRY_USN
Definition: sdap.h:244
SDAP_AT_USER_UID
@ SDAP_AT_USER_UID
Definition: sdap.h:256
SDAP_DEFAULT_AUTHTOK
@ SDAP_DEFAULT_AUTHTOK
Definition: sdap.h:154
SDAP_REFERRALS
@ SDAP_REFERRALS
Definition: sdap.h:204
SDAP_AT_SP_WARN
@ SDAP_AT_SP_WARN
Definition: sdap.h:272
sdap_steal_server_opts
void sdap_steal_server_opts(struct sdap_id_ctx *id_ctx, struct sdap_server_opts **srv_opts)
Definition: sdap.c:1463
sdap_deref_attrs::attrs
struct sysdb_attrs * attrs
Definition: sdap.h:526
SDAP_BACKUP_URI
@ SDAP_BACKUP_URI
Definition: sdap.h:150
SDAP_OC_SERVICE
@ SDAP_OC_SERVICE
Definition: sdap.h:359
sdap_ext_member_ctx
Definition: sdap.h:449
sdap_parse_entry
int sdap_parse_entry(TALLOC_CTX *memctx, struct sdap_handle *sh, struct sdap_msg *sm, struct sdap_attr_map *map, int attrs_num, struct sysdb_attrs **_attrs, bool disable_range_retrieval)
Definition: sdap.c:392
SDAP_AT_USER_OBJECTSID
@ SDAP_AT_USER_OBJECTSID
Definition: sdap.h:265
SDAP_AT_HOST_SERVERHOSTNAME
@ SDAP_AT_HOST_SERVERHOSTNAME
Definition: sdap.h:350
DS_BEHAVIOR_WIN2012
@ DS_BEHAVIOR_WIN2012
Definition: sdap.h:411
sdap_options::user_map
struct sdap_attr_map * user_map
Definition: sdap.h:463
SDAP_TLS_CACERTDIR
@ SDAP_TLS_CACERTDIR
Definition: sdap.h:185
SDAP_CHPASS_URI
@ SDAP_CHPASS_URI
Definition: sdap.h:214
SDAP_OPTS_USER
@ SDAP_OPTS_USER
Definition: sdap.h:293
ldap_cb_data::ev
struct tevent_context * ev
Definition: sdap.h:67
SDAP_TLS_CERT
@ SDAP_TLS_CERT
Definition: sdap.h:186
sdap_domain::basedn
char * basedn
Definition: sdap.h:419
SDAP_AT_GROUP_OBJECTSID
@ SDAP_AT_GROUP_OBJECTSID
Definition: sdap.h:308
SDAP_AT_AUTOFS_ENTRY_KEY
@ SDAP_AT_AUTOFS_ENTRY_KEY
Definition: sdap.h:376
sdap_attr_map_info
Definition: sdap.h:519
SDAP_SUDO_FULL_REFRESH_INTERVAL
@ SDAP_SUDO_FULL_REFRESH_INTERVAL
Definition: sdap.h:169
sdap_search_base::filter
const char * filter
Definition: sdap.h:393
fd_event_item
Definition: sdap.h:57
SDAP_AT_SP_EXPIRE
@ SDAP_AT_SP_EXPIRE
Definition: sdap.h:274
SDAP_AT_AD_ACCOUNT_EXPIRES
@ SDAP_AT_AD_ACCOUNT_EXPIRES
Definition: sdap.h:280
sdap_handle::supported_controls
struct sup_list supported_controls
Definition: sdap.h:87
sdap_ext_member_ctx::ext_member_resolve_recv
ext_member_recv_fn_t ext_member_resolve_recv
Definition: sdap.h:454
sdap_domain::prev
struct sdap_domain * prev
Definition: sdap.h:430
SDAP_AT_HOST_FQDN
@ SDAP_AT_HOST_FQDN
Definition: sdap.h:349
SDAP_OPTS_SUDO
@ SDAP_OPTS_SUDO
Definition: sdap.h:343
sdap_handle::release_memory
bool release_memory
Definition: sdap.h:96
sdap_ppolicy_data::grace
int grace
Definition: sdap.h:107
SDAP_PURGE_CACHE_TIMEOUT
@ SDAP_PURGE_CACHE_TIMEOUT
Definition: sdap.h:183
SDAP_AT_USER_SSH_PUBLIC_KEY
@ SDAP_AT_USER_SSH_PUBLIC_KEY
Definition: sdap.h:288
sdap_options::pwmodify_mode
pwmodify_mode
Definition: sdap.h:490
sdap_get_object_domain
struct sss_domain_info * sdap_get_object_domain(struct sdap_options *opts, struct sysdb_attrs *obj, struct sss_domain_info *dom)
Definition: sdap.c:1710
sdap_server_opts::max_service_value
char * max_service_value
Definition: sdap.h:513
sdap_handle::expire_time
time_t expire_time
Definition: sdap.h:80
SDAP_AT_SP_FLAG
@ SDAP_AT_SP_FLAG
Definition: sdap.h:275
ext_member_send_fn_t
struct tevent_req *(* ext_member_send_fn_t)(TALLOC_CTX *mem_ctx, struct tevent_context *ev, const char *ext_member, void *pvt)
Definition: sdap.h:438
sdap_gen_attrs
sdap_gen_attrs
Definition: sdap.h:243
SDAP_CHPASS_BACKUP_URI
@ SDAP_CHPASS_BACKUP_URI
Definition: sdap.h:215
SDAP_AT_HOST_MEMBER_OF
@ SDAP_AT_HOST_MEMBER_OF
Definition: sdap.h:351
SDAP_KRB5_REALM
@ SDAP_KRB5_REALM
Definition: sdap.h:199
sdap_service
Definition: sdap.h:99
sdap_set_config_options_with_rootdse
errno_t sdap_set_config_options_with_rootdse(struct sysdb_attrs *rootdse, struct sdap_options *opts, struct sdap_domain *sdom)
Definition: sdap.c:1184
sdap_domain::host_search_bases
struct sdap_search_base ** host_search_bases
Definition: sdap.h:425
sdap_search_base
Definition: sdap.h:390
sdap_search_base::scope
int scope
Definition: sdap.h:392
sdap_domain::group_search_bases
struct sdap_search_base ** group_search_bases
Definition: sdap.h:423
SDAP_AT_USER_AUTH_TYPE
@ SDAP_AT_USER_AUTH_TYPE
Definition: sdap.h:289
SDAP_AT_SUDO_HOST
@ SDAP_AT_SUDO_HOST
Definition: sdap.h:332
SDAP_AT_NETGROUP_NAME
@ SDAP_AT_NETGROUP_NAME
Definition: sdap.h:319
SDAP_AT_SUDO_RUNAS
@ SDAP_AT_SUDO_RUNAS
Definition: sdap.h:335
sdap_msg::msg
LDAPMessage * msg
Definition: sdap.h:32
SDAP_GROUP_SEARCH_FILTER
@ SDAP_GROUP_SEARCH_FILTER
Definition: sdap.h:165
SDAP_AT_SUDO_OPTION
@ SDAP_AT_SUDO_OPTION
Definition: sdap.h:334
sdap_get_group_primary_name
errno_t sdap_get_group_primary_name(TALLOC_CTX *memctx, struct sdap_options *opts, struct sysdb_attrs *attrs, struct sss_domain_info *dom, const char **_group_name)
Definition: sdap.c:1675
SDAP_IDMAP_DEFAULT_DOMAIN
@ SDAP_IDMAP_DEFAULT_DOMAIN
Definition: sdap.h:229
sdap_certmap_ctx
Definition: sdap_certmap.c:28
SDAP_AT_USER_SHELL
@ SDAP_AT_USER_SHELL
Definition: sdap.h:260
fd_event_item::prev
struct fd_event_item * prev
Definition: sdap.h:58
SDAP_AT_SERVICE_PORT
@ SDAP_AT_SERVICE_PORT
Definition: sdap.h:361
sdap_service::uri
char * uri
Definition: sdap.h:101
sdap_attr_map::sys_name
const char * sys_name
Definition: sdap.h:385
sdap_options::ext_ctx
struct sdap_ext_member_ctx * ext_ctx
Definition: sdap.h:474
SDAP_OC_USER
@ SDAP_OC_USER
Definition: sdap.h:253
SDAP_ID_MAPPING
@ SDAP_ID_MAPPING
Definition: sdap.h:190
SDAP_HOST_SEARCH_BASE
@ SDAP_HOST_SEARCH_BASE
Definition: sdap.h:166
SDAP_SUDO_SEARCH_BASE
@ SDAP_SUDO_SEARCH_BASE
Definition: sdap.h:168
SDAP_AT_USER_USN
@ SDAP_AT_USER_USN
Definition: sdap.h:268
SDAP_NETWORK_TIMEOUT
@ SDAP_NETWORK_TIMEOUT
Definition: sdap.h:156
sdap_service::name
char * name
Definition: sdap.h:100
sdap_fd_events
Definition: sdap_fd_events.c:28
SDAP_SUDO_INCLUDE_NETGROUPS
@ SDAP_SUDO_INCLUDE_NETGROUPS
Definition: sdap.h:174
SDAP_AT_GROUP_UUID
@ SDAP_AT_GROUP_UUID
Definition: sdap.h:307
sdap_op
Definition: sdap.h:42
sdap_op::last
struct sdap_msg * last
Definition: sdap.h:54
sdap_op::ev
struct tevent_context * ev
Definition: sdap.h:52
sdap_idmap_ctx
Definition: sdap_idmap.h:32
sdap_op::data
void * data
Definition: sdap.h:50
SDAP_OC_AUTOFS_ENTRY
@ SDAP_OC_AUTOFS_ENTRY
Definition: sdap.h:375
SDAP_SUDO_HOSTNAMES
@ SDAP_SUDO_HOSTNAMES
Definition: sdap.h:172
SDAP_AT_SUDO_ORDER
@ SDAP_AT_SUDO_ORDER
Definition: sdap.h:340
build_attrs_from_map
int build_attrs_from_map(TALLOC_CTX *memctx, struct sdap_attr_map *map, size_t size, const char **filter, const char ***_attrs, size_t *attr_count)
Definition: sdap.c:1505
SDAP_AUTOFS_SEARCH_BASE
@ SDAP_AUTOFS_SEARCH_BASE
Definition: sdap.h:176
sdap_id_ctx
Definition: ldap_common.h:64