mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-05-18 06:53:55 +02:00
Code Issues Actions10 Packages Projects Releases Wiki Activity
2217 commits 17 branches 66 tags 259 MiB
Commit graph

16 commits

Author SHA1 Message Date
Doridian 15410a7830 Simplify logic 2024-12-30 00:04:02 -08:00
Doridian 685746796e Add and implement basic NssGroupsByMember call 2024-12-29 21:29:28 -08:00
James Hodgkinson 516874460b
Canonicalize path for user shell check () 2024-12-04 11:55:30 +10:00
Firstyear 8bbdf6bd6a
Clear invalid tokens from unix resolver () 2024-11-30 06:32:10 +00:00
Firstyear 52987ab8b2
Display account_id during success/deny paths in unixd () 2024-11-30 13:57:01 +10:00
Firstyear ce0ad8f854
Harden transport in pam unixd () 
In some cases if the transport drops out from underneath unixd,
it can be difficult to diagnose and leads to inconsistent errors
and output such as prompting for a password multiple times when
it can't succeed.

This makes it clearer that the transport had an error, and it
denies the inflight authsession to prevent spurious password
prompts.
 2024-11-21 07:43:14 +00:00
Firstyear c96e9772c7
Resolve pam services not always having a tty () 2024-11-05 00:49:33 +00:00
Firstyear ea1fcf59e5
Resolve incorrect handling of rhost in pam () 2024-11-03 00:13:26 +00:00
George Wu d2c329f330
Change to text input and use numeric mode for TOTP prompts. () 
* Change to text input and use inputmode numeric for TOTP prompts.

* Fix some typos.
 2024-10-27 23:57:28 +00:00
Firstyear 4c2eeeb135
Update docs, improve locking () 2024-10-25 09:42:52 +10:00
Firstyear 20b2d40215
Add support for group extension () 2024-10-03 06:33:56 +00:00
Firstyear cf63c6b98b
Complete the implementation of the posix account cache () 
Allow caching and checking of shadow entries (passwords)
    Cache and serve system id's
    improve some security warnings
    prepare for multi-resolver
    Allow the kanidm provider to be not configured
    Allow group extension
 2024-10-02 02:12:13 +00:00
Firstyear b1099dfa3b
Foundations of pam/nss multi resolver 
This starts the support for multi-resolver operation as well as a system level nss resolver.

In future we'll add the remaining support to auth system users with pam too.
 2024-08-15 23:54:35 +00:00
Firstyear 7bbb193cdf
20240725 allow connection to older servers () 
Co-authored-by: James Hodgkinson <james@terminaloutcomes.com>
 2024-07-25 16:11:14 +10:00
Firstyear 0836118443
20240716 check mkdir () 2024-07-17 01:11:11 +00:00
Firstyear 0ce333ff5a
Allow providers to be box dyn () 
* Allow providers to be box dyn in kanidm_unixd
* Massive refactor
 2024-06-16 22:21:25 +00:00
Renamed from unix_integration/src/resolver.rs (Browse further)