=== SSSD 1.12 Beta 2 === The SSSD team is proud to announce the second beta release of version 1.12 of the System Security Services Daemon.
As always, the source is available from https://fedorahosted.org/sssd. RPM packages will be made available for Fedora rawhide shortly. The SSSD 1.12.0 release is scheduled for the end of June. Our goal is to stabilize the release and focus solely on bug fixes until the final 1.12.0 release. At the same time, the SSSD is string-frozen until the release of 1.12.0. == Feedback == Please provide comments, bugs and other feedback via the sssd-devel or sssd-users mailing lists: https://lists.fedorahosted.org/mailman/listinfo/sssd-devel https://lists.fedorahosted.org/mailman/listinfo/sssd-users == Highlights == * This releases merges the enhancements that were included in 1.11.6 and stabilizes the strings before releasing 1.12.0. With this beta2, SSSD enters a string freeze period before the final 1.12.0 release * Several patches that improve portability of SSSD, especially with consideration of BSD systems have been included * The sss_usermod tool was enhanced to add or modify custom attributes for entries in domains configured with id_provider=local. This feature is mostly useful for testing the InfoPipe responder without having to configure a remote server. * Fixed unit tests on big-endian architectures == Documentation Changes == * A new option ldap_use_tokengroups was added. Setting this option to False disables the support for tokenGroups, which is useful for environments that wish to restrict the group nesting level. Doing so with tokenGroups enabled is nontrivial since the tokenGroups attribute flattens the group memberships. * A new option homedir_substring makes it possible to substitute a templatized home directory attribute for a client-side defined value == Tickets Fixed == https://fedorahosted.org/sssd/ticket/2182 [RFE] Add the possibility to add custom attributes for the local provider https://fedorahosted.org/sssd/ticket/2308 document that simple access provider supports group nesting == Detailed Changelog == Jakub Hrozek (6): * Updating the version to 1.12beta2 * TOOLS: Allow adding and modifying custom attributes with sss_usermod * TESTS: fgetc returns int, not char * MAN: Fix a typo in the ldap_id_mapping page * LDAP: Fix DEBUG message * Updating the translations for the 1.12beta2 release Lukas Slebodnik (14): * UTIL: Add function sss_parse_name_const * NSS: Refactor expand_homedir_template * NSS: Add option to expand homedir template format * TEST: Add test for expand homedir * PAM: Include header file security/pam_appl.h * MAKE: Remove PAM libraries from libsss_simple * CONFIGURE: Enhance detection of pam * PAM: Fix compilation of pam_test_client with openpam * PAM: Use fallback version of some pam macros * PAM: Define compatible macros for some functions. * PAM: add ignore_authinfo_unavail option * SDAP: Use portable constant as level in setsockopt * Unify usage of function gethostname * MAN: Add reference to manual page sssd-sudo Pavel Březina (1): * man: clarify refresh_expired_interval Pavel Reichl (5): * LDAP: fix - find primary group by gid * MAN: Detailed ldap_group_nesting_level option * SDAP: Make nesting_level = 0 to ignore nested groups * SDAP: Add option to disable use of Token-Groups * MAN: hint nested groups by simple access provider _______________________________________________ Freeipa-interest mailing list Freeipa-interest@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-interest
