summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* s4-drs: bring us much closer to the docs for DRS secret replicationAndrew Tridgell2010-08-201-9/+241
| | | | | | | | | | | | | | | The rules for when a RODC can replicate secrets are: - it can always replicate its own acct - it can also replicate its krbtgt acct - it can't replicate other krbtgt accts - it can't replicate interdomain trust accounts - it can't replicate users in the denied group list - it can replicate users in the allowed group list otherwise it can't replicate Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed dsdb_get_extended_dn_sid()Andrew Tridgell2010-08-201-1/+1
| | | | | | it should honor the component_name Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* idl: added the RODC allow/deny secrets RIDsAndrew Tridgell2010-08-201-0/+2
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: implement RODC attribute filtering overrideAndrew Tridgell2010-08-202-39/+79
| | | | | | | | When a RODC uses extended getncchanges operation DRSUAPI_EXOP_REPL_SECRET it gets an override on the ability to replicate the secret attributes. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-drs: added sam_ctx_system on DRS bind stateAndrew Tridgell2010-08-202-0/+20
| | | | | | | | The getncchanges call needs to be able to access the sam as the system user for RODC clients. To do this it needs a sam_ctx connection with system credentials Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s3:loadparm: make lp_load_ex static. We have wrappers for external callers.Michael Adam2010-08-202-14/+7
|
* s3-libsmbclient Convert dos error codes to NTstatus in async libsmbclient.Jim McDonough2010-08-192-8/+2
| | | | | | | | | DOS error codes were being lost with the conversion to async libsmbclient. If we're passing around NTSTATUS internally, let's just convert it when we get it. DOS ACCESS_DENIED on nautilus was not prompting for other credentials, because it was not being mapped.
* s3-ads: Fix wrong test in if statementSimo Sorce2010-08-192-1/+3
|
* s3-waf: fix the build.Günther Deschner2010-08-191-1/+1
| | | | Guenther
* s3-ldapsam: add samba.ldif LDAP schema.Günther Deschner2010-08-191-0/+185
| | | | | | | | This one is suiteable for cn=config setups and should be added via ldapadd. Thanks to Sumit Bose <sbose@redhat.com> for providing it. Guenther
* s3-cli: fix uninitialized variable.Günther Deschner2010-08-191-1/+1
| | | | | | Volker, please check. Guenther
* s3-idmap: fix uninitialized variable in idmap_tdb_sids_to_unixids_action().Günther Deschner2010-08-191-1/+1
| | | | | | Michael, please check. Guenther
* s4 provision: POLICY_ACL is already an FS acl no need to translate itMatthieu Patou2010-08-191-2/+1
|
* s4 provision: Add some documentation to GPO related functionsMatthieu Patou2010-08-192-15/+58
|
* unit tests: debug to ease locating pb, remove dir if exists to avoid errorMatthieu Patou2010-08-191-2/+8
|
* s4 upgradeprovision: exit with a non null return code so that it can be ↵Matthieu Patou2010-08-191-0/+1
| | | | trapped in blackbox tests
* s4 upgradeprovision: add more attrbutes the ignore listMatthieu Patou2010-08-192-5/+20
| | | | Also format in a pretty way the int64 ranges
* s4 upgradeprovision: Deal with bootstrap indexing attribute to avoid useless ↵Matthieu Patou2010-08-191-13/+65
| | | | reindexing
* s4 upgradeprovision: Add a function for schema reloadingMatthieu Patou2010-08-191-1/+31
| | | | | | Full schema reloading is needed when we modify exisiting elements that have attributes that comes from not from the default schema (ie. openchange schema, user schema ..)
* s4 upgradeprovision: upgrade_delta_samdb return a msg_diff of @ATTRIBUTESMatthieu Patou2010-08-191-9/+14
| | | | | This is used by upgradeprovision to readd this delta just before loading a merged schema
* s4 upgradeprovision: Fixes for increment_keyversionMatthieu Patou2010-08-193-3/+22
| | | | fix
* s4 upgradeprovision: fix a typo and pass correct parameter to ↵Matthieu Patou2010-08-192-4/+5
| | | | increment_calculated_keyversion
* s3-libsmb: fix some uninitialized variables.Günther Deschner2010-08-191-2/+2
| | | | | | Volker, please check. Guenther
* -ENOTSUP translates to NT_STATUS_NOT_SUPPORTEDSurbhi Palande2010-08-191-1/+3
| | | | | | | | | | https://launchpad.net/bugs/276472 This patch adds the translation of Unix Error code -ENOTSUP to NT Error Code NT_STATUS_NOT_SUPPORTED. The absense of this translation wrongly sends back to the client a STATUS_DENIED message in samba3. Signed-off-by: Surbhi Palande <surbhi.palande@canonical.com>
* s3: Remove smb_pam_accountcheck from the auth modulesVolker Lendecke2010-08-193-32/+4
| | | | | We go through the same check in auth/auth.c line 287 after the module has done its job. So we don't have to do that check twice.
* s4-drs: ATTIDs for deleted attributes should be based on msDs-IntId value if ↵Kamen Mazdrashki2010-08-192-3/+4
| | | | it exists
* s4-test: make better error message for ATTID checksKamen Mazdrashki2010-08-191-4/+20
|
* s4-test: Change attribute syntax and value for readabilityKamen Mazdrashki2010-08-191-3/+3
| | | | | When it comes to read logs and dumping data received Octet String syntax comes in handy
* s4-test: Enable drs.rpc.msdsintid test case - it should be passing nowKamen Mazdrashki2010-08-191-1/+0
|
* s4-dsdb: No need for dsdb_syntax_one_DN_drsuapi_to_ldb() to be publicKamen Mazdrashki2010-08-191-3/+3
| | | | It is intended to be used in schema_syntax.c module
* s4-drs: GetNCChanges() to return correct (in AD-way) ATTIDsKamen Mazdrashki2010-08-191-3/+16
| | | | | | | | | | Depending on which NC is being replicated, GetNCChanges() returns either ATTID based on local prefixMap or msDs-IntId value of the attributeSchema class for the attribute being replicated. If set, msDs-IntId value is always returned when replicating object form NC other than Schema NC. Objects in Schema NC replica always use prefixMap based ATTIDs.
* s4-dsdb-syntax: ATTID should be msDs-IntId value for the attributeSchema objectKamen Mazdrashki2010-08-192-14/+55
| | | | | in case object replicated is not in Schema NC and attributeSchema object has msDs-IntId attribute value set
* s4: fix few comment typosKamen Mazdrashki2010-08-192-3/+3
|
* s4-schema_syntax.c: Fix white spaces and alignmentKamen Mazdrashki2010-08-191-55/+56
|
* s4-dsdb: Use dsdb_syntax_ctx in *_drsuapi_to_ldb functionsKamen Mazdrashki2010-08-194-57/+45
|
* s4-dsdb: Use dsdb_syntax_ctx in *_ldb_to_drsuapi functionsKamen Mazdrashki2010-08-194-55/+47
|
* s4-dsdb: Use dsdb_syntax_ctx in *_validate_ldb functionsKamen Mazdrashki2010-08-193-62/+41
|
* s4-dsdb: Add context structure for dsdb_syntax conversion functionsKamen Mazdrashki2010-08-192-0/+19
| | | | | | | | | | | This structure is intended to hold context-dependent data. Syntax-conversion and object-conversion functions need that data to convert objects and attributes from drs-to-ldb and ldb-to-drs correctly. For instance: ATTID value depends on whether we are converting object from partition different that Schema partition.
* s4-test-dssync: remove unused variableKamen Mazdrashki2010-08-191-1/+0
|
* Fix bug 7626 - Typo in configure samba_cv__CC_NEGATIVE_ENUM_VALUES two ↵Jeremy Allison2010-08-181-1/+1
| | | | | | underscores. Noticed by bj@sernet.de.
* Fix bug 7563 - Creation of symlink using smbclient is buggy.Jeremy Allison2010-08-181-13/+9
| | | | | | | Fix semantics of symlink. "oldpath" should be an untouched blob, "newpath" should fit the share path semantics. Jeremy.
* s3: Remove an unused variableVolker Lendecke2010-08-181-1/+0
|
* librpc/rpc: call do_ndr_print hook in dcerpc_binding_handle_call*()Stefan Metzmacher2010-08-181-0/+10
| | | | metze
* s3-ads: Remove unused wrapper and make function staticSimo Sorce2010-08-182-35/+12
|
* s3: async cli_listVolker Lendecke2010-08-185-422/+721
|
* s3: Add cli_flushVolker Lendecke2010-08-182-0/+90
|
* s3-ads: cleanup ads_keytab_list()Simo Sorce2010-08-181-13/+16
|
* s3-ads: cleanup ads_keytab_create_default()Simo Sorce2010-08-181-113/+136
|
* s3-ads: cleanup ads_keytab_add_entry()Simo Sorce2010-08-181-57/+80
|
* s3-ads: Split, simplify and cleanup keytab functionsSimo Sorce2010-08-181-169/+172
| | | | | add helper function for both smb_krb5_kt_add_entry_ext() and ads_keytab_flush()
generated by cgit (git 2.34.1) at 2025-09-26 07:27:18 +0000