summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* s4:samldb LDB module - move "samldb_prim_group_users_check" more down to see ↵Matthias Dieter Wallnöfer2010-09-121-41/+41
| | | | | | | that it is only in use by the delete operation add and modify helpers will stay on the top of the add and modify operation since they will likely be shared as much as possible.
* s4:samldb LDB module - add a comment to mark the beginning of the extended ↵Matthias Dieter Wallnöfer2010-09-121-0/+2
| | | | operation handler
* s4:samldb LDB module - refactor "samldb_find_for_defaultObjectCategory" to ↵Matthias Dieter Wallnöfer2010-09-121-94/+22
| | | | | | be again synchronous Also to make it easier to comprehend
* s4:samldb LDB module - refactor the "primaryGroupID" check on user creationMatthias Dieter Wallnöfer2010-09-121-137/+39
| | | | This looks more straight-forward now.
* s4:samldb LDB module - get rid of the SID context variableMatthias Dieter Wallnöfer2010-09-121-20/+17
| | | | | Since we get more and more rid of async stuff we don't need this in the context anymore.
* s4:samldb LDB module - use also here the real attribute denomination ↵Matthias Dieter Wallnöfer2010-09-121-1/+1
| | | | | | "sAMAccountName" Purely cosmetic - but nicer to read
* s4:samldb LDB module - rename "check_SamAccountType" into "check_sAMAccountType"Matthias Dieter Wallnöfer2010-09-121-5/+4
| | | | | And a small cosmetic change. I like to have the real attribute names in the function denominations
* s4:samldb LDB module - make "samldb_check_sAMAccountName" synchronous againMatthias Dieter Wallnöfer2010-09-121-71/+19
| | | | To make it more understandable
* s4:fsmo.py - fix an obvious typoMatthias Dieter Wallnöfer2010-09-121-1/+1
|
* s3: Remove a nesting level in winbindd_dual_pam_chauthtokVolker Lendecke2010-09-121-18/+19
|
* s4:unittest: Test wbinfo --group-info and --gid-infoMatthieu Patou2010-09-111-3/+11
| | | | Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
* test_wbinfo.c - count more possible failuresMatthias Dieter Wallnöfer2010-09-111-1/+2
|
* ldb:tools/cmdline.c - reorganise importsMatthias Dieter Wallnöfer2010-09-111-6/+2
|
* s4:param/secrets.c - reorganise importsMatthias Dieter Wallnöfer2010-09-111-4/+0
|
* s4:rpc_server/common/common.h - introduce two forward declarations to ↵Matthias Dieter Wallnöfer2010-09-111-0/+3
| | | | | | suppress parameter declaration warnings Always Tru64 in file "param/loadparm.c" and possibly others.
* ldb:tools/cmdline.c - make a counter unsigned where appropriateMatthias Dieter Wallnöfer2010-09-111-1/+1
|
* s4:ldb_register_samba_handlers - fix up and convert result codes to LDB/LDAP ↵Matthias Dieter Wallnöfer2010-09-116-12/+12
| | | | results
* lib/replace/wscript:Tru64 build - Better use version 600 for _XOPEN_SOURCEMatthias Dieter Wallnöfer2010-09-111-2/+2
| | | | | | | | | | | | | | This means we request the "Single UNIX Specification, Version 3" with C99 compatibility as the Python 2.5 release on the system. This prevents redefinitions with different values. > [ 451/1918] Compiling scripting/python/pyglue.c > cc: Warning: /usr/local/include/python2.5/pyconfig.h, line 951: The redefinition of the macro "_XOPEN_SOURCE" conflicts with a current definition because the replacement lists differ. The redefinition is now in effect. (macroredef) > #define _XOPEN_SOURCE 600 > ----------------------^ > cc: Warning: default/source4/include/config.h, line 54: The redefinition of the macro "_XOPEN_SOURCE" conflicts with a current definition because the replacement lists differ. The redefinition is now in effect. (macroredef) > #define _XOPEN_SOURCE 500 > ----------------------^
* s4:dcesrv_samr_GetGroupsForUser - also universal group memberships are ↵Matthias Dieter Wallnöfer2010-09-111-2/+3
| | | | | | | returned here Tested using User Manager for Domains against Windows Server 2008. MS-SAMR 3.1.5.9.1 is wrong in this case therefore I've informed the dochelp team.
* s4-privs Fix enum privileges in LSARPC serverAndrew Bartlett2010-09-111-1/+1
| | | | | | We were returning the index, not the LUID value Andrew Bartlett
* s3-auth Fix typo in commentAndrew Bartlett2010-09-111-1/+1
|
* nss-waf: use the right winbind pipe pathAndrew Tridgell2010-09-111-0/+1
| | | | s4 uses a different location for the winbind pipe to s3
* winbind-waf: the installed name is libnss_winbind.so.2Andrew Tridgell2010-09-111-1/+1
| | | | the .2 is what libc adds to the name for this version of the nss API
* s4:gensec Put the "NTLM" string for NTLMSSP's SASL name in a headerAndrew Bartlett2010-09-112-1/+3
|
* s4-param: removed the lp_ varients of the functionsAndrew Tridgell2010-09-111-18/+9
| | | | | these made debugging much harder. We should replace these with generated macros
* s4-param: move back to auto-generation of loadparm prototypesAndrew Tridgell2010-09-113-161/+7
|
* s4-credentials: get all attributes in cli_credentials_set_secrets()Andrew Tridgell2010-09-111-17/+1
| | | | | This ensures we get whenChanged, which is needed by the s3 winbind code to ensure we don't repeatedly try to change the password
* security.idl Clarify that this is not a network structureAndrew Bartlett2010-09-111-0/+1
|
* libcli/auth/schannel_state_tdb.c - fix includesMatthias Dieter Wallnöfer2010-09-111-3/+1
| | | | Otherwise we get a "declared inside parameter list" warning.
* lib/replace:wscript - additional attempt to fix the build on Tru64Matthias Dieter Wallnöfer2010-09-111-1/+3
| | | | | Obviously we really need both definitions ("socklen_t" has been found by "_XOPEN_SOURCE"=500). But now FIONREAD wasn't accessible.
* libcli/security Use talloc_zero when making a struct security_tokenAndrew Bartlett2010-09-112-7/+1
|
* libcli/privileges Fix commentAndrew Bartlett2010-09-111-1/+1
|
* s4-privs Seperate rights and privilegesAndrew Bartlett2010-09-116-82/+137
| | | | | | | | | These are related, but slightly different concepts. The biggest difference is that rights are not enumerated as a system-wide list. This moves the rights to security.idl due to dependencies. Andrew Bartlett
* s3-krb5 Fix Kerberos on FreeBSD with Samba4 DCsAndrew Bartlett2010-09-111-3/+1
| | | | | | | | | | | | | The idea of this patch is: Don't support a mix of different kerberos features. Either we should prepare a GSSAPI (8003) checksum and mark the request as such, or we should use the old behaviour (a normal kerberos checksum of 0 data). Sending the GSSAPI checksum data, but without marking it as GSSAPI broke Samba4, and seems well outside the expected behaviour, even if Windows accepts it. Andrew Bartlett
* libcli/security Remove unused SE_NONE defineAndrew Bartlett2010-09-111-1/+0
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Move 'private' privileges functions to another headerAndrew Bartlett2010-09-114-24/+43
| | | | | | | | | These functions work on the bitmap, and are only exposed because the source3/ privileges storage uses the bitmap in account_policy.tdb Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-samr Explian better the use of two privileges in this callAndrew Bartlett2010-09-111-0/+4
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove 'always true' return from se_priv_put_all_privilegesAndrew Bartlett2010-09-113-6/+3
| | | | | | Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-util_sid Tidy up global struct security_tokenAndrew Bartlett2010-09-114-16/+8
| | | | | | | | | This no longer needs to be global, and should be const. We now also init it with the C99 style initialisers. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-rpc_server Put all 'logon failure' messages at the same debug level 4Andrew Bartlett2010-09-111-4/+6
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/auth Failure to find the cached session key for SCHANNEL isn't level 0Andrew Bartlett2010-09-111-1/+1
| | | | | | | | | This happens all the time, particularly now that we don't keep the db around after a reboot. Don't scare the admins with the level 0. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Add constAndrew Bartlett2010-09-112-6/+6
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Remove extra pointer on privilege maskAndrew Bartlett2010-09-111-4/+4
| | | | | | Now that this is a scalar, this isn't required. Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privileges: add handling of both old and new formats in databaseAndrew Tridgell2010-09-111-28/+48
| | | | | | | | | | We update privileges on a per-record basis instead of all at once, as this maintains maximum compatibility is someone uses old tools with a new version of Samba. The also auto-detects the byte order of the old entries in the database, and copes with either native or reversed byte order. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-lsa: privilege IDs should use the enum, not an intAndrew Tridgell2010-09-111-1/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* privileges: privilege luids are not all below 64Andrew Tridgell2010-09-111-3/+0
| | | | | | the ones brought across from s3 have higher values Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* libcli/security Make sec_privilege_from_index() return SEC_PRIV_INVALID on ↵Andrew Bartlett2010-09-112-2/+2
| | | | | | | | | | failure This is clearer and more consistent than using a magic -1 return Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Remove unused declarations from privileges.hAndrew Bartlett2010-09-111-51/+1
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Remove unused functionAndrew Bartlett2010-09-112-31/+0
| | | | Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Overhaul PRIVILEGE_SET handling, avoid dealing with the bitmapAndrew Bartlett2010-09-113-106/+36
| | | | | | | | | | This avoids us dealing with the privilege bitmap in the LSA server, and overhauls much of the rest of the handling to be currnet with the modern world of talloc. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
generated by cgit (git 2.34.1) at 2025-09-25 21:15:49 +0000