diff options
| author | Arthur de Jong <arthur@arthurdejong.org> | 2009-07-12 20:47:14 +0000 |
|---|---|---|
| committer | Arthur de Jong <arthur@arthurdejong.org> | 2009-07-12 20:47:14 +0000 |
| commit | b2d5fca90d5b28f7832324c3caef8f0f6d8cfda2 (patch) | |
| tree | 7b1e3d03408a351fb4dcc9aa5621156cc5d5fc32 /TODO | |
| parent | db04d0dfadfb832f651cf85d1d96c54ed495aeea (diff) | |
get files ready for 0.6.11 release
git-svn-id: http://arthurdejong.org/svn/nss-pam-ldapd/nss-ldapd@966 ef36b2f9-881f-0410-afb5-c4e39611909c
Diffstat (limited to 'TODO')
| -rw-r--r-- | TODO | 15 |
1 files changed, 5 insertions, 10 deletions
@@ -1,6 +1,4 @@ * test reachability problems with LDAP server more -* document test suite (instructions for setting up environment (server), LDIF - file, nsswitch.conf and nss-ldapd.conf) * write more unit tests * maybe implement a connection object in the myldap module that is shared by different sessions (sessions need to be cleaned up) @@ -9,6 +7,7 @@ * log some statistics: "passwd=100 shadow=10 host=20 rpc=10" (10 req/minute) * in the server: once the request is done pass the flushing of the buffers to a separate thread so our workers are available to handle new requests + (test whether this actually improves performace) * tune the filter and parameter buffer sizes * split out idle checking into separate function so we may be able to call it periodically from elsewhere (e.g. the main loop) @@ -16,14 +15,13 @@ chroot jails) * make I/O timeout between NSS lib and daemon configurable with configure * ethers: also look in ipHostNumber attribute to look up an IPv4 (IPv6) - address and return it as an alternative entry + address and return it as an alternative entry (investigate whether this is + sane) * protocols/rpc: the description attribute should be used as an alias? * do more checks with failing LDAP connections (e.g. killing connections) * maybe make myldap code thread-safe (use locking) * review changes in nss_ldap and merge any useful changes * maybe rate-limit LDAP entry warnings -* consider returning the canonical value as it is stored in LDAP, not - the requested value (they can differ in case) * test non-ASCII characters in fields (mostly cn) * implement attribute defaults (for when they're missing from the directory) * implement attribute overrides (to always return a specific value, no matter @@ -32,12 +30,9 @@ install NSS library in system path * only parse configuration options if they are available on the platform * have some more general mechanism to disable NSS lookups from nslcd -* support searchbase autodetection -* support multiple search bases -* support memberOf attribute in passwd entries that map to groups +* maybe support memberOf attribute in passwd entries that map to groups * setnetgrent() may need to return an error if the netgroup is undefined * handle repeated calls to getent() better (see http://bugzilla.padl.com/show_bug.cgi?id=376) -* make it possible to start nslcd really early in the boot process and have +* make it possible to start nslcd real early in the boot process and have it become available when it determines it can (other timeout/retry mechanism on startup) -* make lookups case-sensitive |