diff options
Diffstat (limited to 'nslcd/cfg.h')
-rw-r--r-- | nslcd/cfg.h | 54 |
1 files changed, 0 insertions, 54 deletions
diff --git a/nslcd/cfg.h b/nslcd/cfg.h index 2fade8b..5fc3147 100644 --- a/nslcd/cfg.h +++ b/nslcd/cfg.h @@ -26,12 +26,7 @@ #ifndef NSLCD__CFG_H #define NSLCD__CFG_H -#include <unistd.h> -#include <sys/types.h> -#include <lber.h> -#include <ldap.h> #include <regex.h> -#include <time.h> #include "compat/attrs.h" #include "common/set.h" @@ -49,12 +44,6 @@ /* maximum number of pam_authz_search options */ #define NSS_LDAP_CONFIG_MAX_AUTHZ_SEARCHES 8 -enum ldap_ssl_options { - SSL_OFF, - SSL_LDAPS, - SSL_START_TLS -}; - /* selectors for different maps */ enum ldap_map_selector { LM_ALIASES, @@ -72,52 +61,12 @@ enum ldap_map_selector { LM_NONE }; -struct myldap_uri { - char *uri; - /* time of first failed operation */ - time_t firstfail; - /* time of last failed operation */ - time_t lastfail; -}; - struct ldap_config { int threads; /* the number of threads to start */ char *uidname; /* the user name specified in the uid option */ uid_t uid; /* the user id nslcd should be run as */ gid_t gid; /* the group id nslcd should be run as */ - struct myldap_uri uris[NSS_LDAP_CONFIG_MAX_URIS + 1]; /* NULL terminated list of URIs */ - int ldap_version; /* LDAP protocol version */ - char *binddn; /* bind DN */ - char *bindpw; /* bind cred */ - char *rootpwmoddn; /* bind DN for password modification by root */ - char *rootpwmodpw; /* bind password for password modification by root */ - - char *sasl_mech; /* SASL mechanism */ - char *sasl_realm; /* SASL realm */ - char *sasl_authcid; /* SASL authentication identity */ - char *sasl_authzid; /* SASL authorization identity */ - char *sasl_secprops; /* SASL security properties */ -#ifdef LDAP_OPT_X_SASL_NOCANON - int sasl_canonicalize; /* whether host name should be canonicalised */ -#endif /* LDAP_OPT_X_SASL_NOCANON */ - - const char *bases[NSS_LDAP_CONFIG_MAX_BASES]; /* search bases */ - int scope; /* scope for searches */ - int deref; /* dereference aliases/links */ - int referrals; /* chase referrals */ - - int bind_timelimit; /* bind timelimit */ - int timelimit; /* search timelimit */ - int idle_timelimit; /* idle timeout */ - int reconnect_sleeptime; /* seconds to sleep; doubled until max */ - int reconnect_retrytime; /* maximum seconds to sleep */ - -#ifdef LDAP_OPT_X_TLS - /* SSL enabled */ - enum ldap_ssl_options ssl; -#endif /* LDAP_OPT_X_TLS */ - int pagesize; /* set to a greater than 0 to enable handling of paged results with the specified size */ SET *nss_initgroups_ignoreusers; /* the users for which no initgroups() searches should be done */ uid_t nss_min_uid; /* minimum uid for users retrieved from LDAP */ @@ -128,9 +77,6 @@ struct ldap_config { char *pam_authz_searches[NSS_LDAP_CONFIG_MAX_AUTHZ_SEARCHES]; /* the searches that should be performed to do autorisation checks */ char *pam_password_prohibit_message; /* whether password changing should be denied and user prompted with this message */ char reconnect_invalidate[LM_NONE]; /* set to 1 if the corresponding map should be invalidated */ - - time_t cache_dn2uid_positive; - time_t cache_dn2uid_negative; }; /* this is a pointer to the global configuration, it should be available |