diff options
| author | Arthur de Jong <arthur@arthurdejong.org> | 2008-06-15 13:43:41 +0000 |
|---|---|---|
| committer | Arthur de Jong <arthur@arthurdejong.org> | 2008-06-15 13:43:41 +0000 |
| commit | 9ea3c9677f2b3c7718d016fa22cc2af775aecfed (patch) | |
| tree | e6534d1a0d579efb429c38df280fcd2706ff51dc /TODO | |
| parent | 52ff94bdd89425aca68c28d12512ec72b0986e2f (diff) | |
get files ready for 0.6.3 release
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@767 ef36b2f9-881f-0410-afb5-c4e39611909c
Diffstat (limited to 'TODO')
| -rw-r--r-- | TODO | 19 |
1 files changed, 7 insertions, 12 deletions
@@ -1,25 +1,15 @@ probably before we can call this stable --------------------------------------- -* fix race condition when setting signal mask in common/tio.c - (using pthread_sigmask() adds a dependency on the pthread library, - we should probably just do locking) * find problem with reachability of LDAP server -* find out why HAVE_GSSPAI is not always set to what configure outputs -* have the daemon run under a special uid/gid +* do not require ssl on if ldaps:// URLs are used other items ----------- -* set up (test) connection to LDAP server before creating socket -* Debian packaging: maybe remove stuff from /etc/nsswitch.conf on remove or - purge (maybe prompt?) * probably document that you should use libpam-ldap for authentication without exposing the passwords through NSS * document test suite (instructions for setting up environment (server), LDIF file, nsswitch.conf and nss-ldapd.conf) * write more unit tests -* maybe support bootparams (check README also) -* maybe support publickey (check README also) -* maybe support netmasks (check README also) * maybe implement a connection object in the myldap module that is shared by different sessions (sessions need to be cleaned up) * add sanity checking code (e.g. not too large buffer allocation and checking @@ -54,5 +44,10 @@ other items install NSS library in system path * only parse configuration options if they are available on the platform * have some more general mechanism to disable NSS module in nslcd -* do not use LDAP_DEPRECATED enabled functions * support searchbase autodetection +* start the LDAP search and connection in myldap_get_entry() instead of + in myldap_search() +* maybe use datagram sockets for NSS/nslcd communication +* support multiple search bases +* support memberOf attribute in passwd entries that map to groups +* get tls_checkpeer working in combination with ssl on |