summaryrefslogtreecommitdiffstats
path: root/source3/passdb
Commit message (Collapse)AuthorAgeFilesLines
* s3: Fix EnumDomainAliases when no aliases are in LDAPVolker Lendecke2010-06-101-6/+4
| | | | | | | We used to return NT_STATUS_ACCESS_DENIED, now we just return 0 entries, just like W2k8 does. usrmgr.exe was pretty unhappy with the NT_STATUS_ACCESS_DENIED
* s3:pdb_ldap: fix bug 7505 - init_sam_from_ldap stores group in sid2uid cacheMichael Adam2010-06-101-1/+1
|
* s3-passdb: Fix typo in comment.Karolin Seeger2010-06-101-1/+1
| | | | Karolin
* s3: Fix bug 7253Volker Lendecke2010-06-091-1/+8
| | | | | | | | | acct_ctrl is 32 bit in LOGIN_CACHE, but "w" as a format specifier for tdb_unpack only writes 16 bits. Okay on x86, not okay on Solaris. Thanks to Vladimir.Marek@Sun.COM! Volker
* s3:passdb Export function to calculate the proper primary group sidSimo Sorce2010-06-072-86/+132
| | | | | | | | Don't keep it buried in passdb, this function need to be available for use in places where we do not want to construct an artificial samu struct just to play tricks. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s3: Allow previous password to be stored and use it to check ticketsMatthieu Patou2010-06-021-4/+77
| | | | | | | | This patch is to fix bug 7099. It stores the current password in the previous password key when the password is changed. It also check the user ticket against previous password. Signed-off-by: Günther Deschner <gd@samba.org>
* s3-build: only use ndr_security.h where needed.Günther Deschner2010-05-311-0/+1
| | | | Guenther
* s3:passdb Fix memory leakSimo Sorce2010-05-291-0/+1
| | | | | We were allocating this passwd structure on sampass, but never freeing it nor assigning it to unix_pw where it could be reused.
* s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett2010-05-2115-221/+221
| | | | | | | | | | This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3:passdb Remove use of uint8 uint16 and uint32 in favour of C99 typesAndrew Bartlett2010-05-215-229/+229
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-passdb: move get_logon_hours_from_pdb() into samr server.Günther Deschner2010-05-181-23/+0
| | | | Guenther
* s3:split secrets.c to put machine account secrets in a new fileAndrew Bartlett2010-05-182-366/+398
| | | | | | | | | | | | | This helps the s3compat effort by allowing these functions to be replaced by functions that query the cli_credentials and secrets.ldb APIs. Also, this changes a couple of DOM_SID to struct dom_sid along the way. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Remove use of iconv_convenience.Jelmer Vernooij2010-05-182-11/+11
|
* s3-tldap: only include tldap when actually needed.Günther Deschner2010-05-181-0/+2
| | | | Guenther
* security: merge builtin rid tables.Günther Deschner2010-05-181-18/+18
| | | | Guenther
* s3-rpc_misc: clean out include/rpc_misc.h.Günther Deschner2010-05-185-13/+13
| | | | | | | Well known rids don't really belong into an rpc header, just use the ones defined in security.idl. Guenther
* s3-passdb: moving account_pol.c into passdb.Günther Deschner2010-05-081-0/+453
| | | | Guenther
* s3-pdb_ldap: fix memleak.Günther Deschner2010-04-291-2/+2
| | | | Guenther
* s3: Make a debug msg more readableVolker Lendecke2010-04-281-1/+1
|
* s3:passdb: avoid sid_to_gid() if the sid is "domain users"Stefan Metzmacher2010-03-251-3/+7
| | | | | | If the call fails we would use the "domain users" sid anyway. metze
* Fix some nonempty blank linesVolker Lendecke2010-03-251-3/+3
|
* s3-builtin: Add missing builtin groups.Karolin Seeger2010-03-231-0/+8
| | | | Karolin
* s3-builtin: Add some builtin groups.Karolin Seeger2010-03-231-1/+8
| | | | Karolin
* s3: Make login_cache_write take a pointerVolker Lendecke2010-03-162-7/+8
|
* s3: Make login_cache_read take a pointer, avoid a mallocVolker Lendecke2010-03-162-24/+16
|
* s3: Remove a typedefVolker Lendecke2010-03-162-6/+7
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-03-161-7/+7
|
* s3-passdb: Fix typo in debug message.Karolin Seeger2010-03-101-1/+1
| | | | Karolin
* s3:schannel streamline interfaceSimo Sorce2010-02-231-131/+0
| | | | | Make calling schannel much easier by removing the need to explicitly open the database. Let the abstraction do it instead.
* s3-passdb: Remove obsolete signal type cast.Andreas Schneider2010-02-231-3/+3
|
* s3: Fix bug 5198 -- parse chfn(1)-change gecos fieldVolker Lendecke2010-02-131-1/+34
|
* s3: change ldap filter to what really was intendedBjörn Jacke2010-02-101-1/+1
|
* s3:passdb: only use gid_to_sid() result if the result is a group of our ↵Stefan Metzmacher2010-02-091-4/+16
| | | | | | | | local sam Otherwise retry with pdb_gid_to_sid(). metze
* s3:pdb_ldap: don't search for the users primary group, if we already know itStefan Metzmacher2010-02-081-31/+35
| | | | metze
* s3:pdb_ldap: optimize ldapsam_alias_memberships() and cache ldap searches.Stefan Metzmacher2010-02-081-7/+29
| | | | | | | | | ldapsam_alias_memberships() does the same LDAP search twice, triggered via add_aliases() from create_local_nt_token(). This happens when no domain aliases are used. metze
* s3:pdb_ldap: try to build the full unix_pw structure with ldapsam:trusted ↵Stefan Metzmacher2010-02-081-5/+85
| | | | | | | | support And also store the gid_to_sid mappings in the idmap_cache. metze
* s3:passdb: speed up pdb_get_group_sid()Stefan Metzmacher2010-02-081-5/+28
| | | | | | | | | | Use the cached version gid_to_sid() instead of pdb_gid_to_sid(). And also avoid the expensive lookup_sid() call for wellkown domain groups. metze
* s3: Make pdb_copy_sam_account also copy the group sidVolker Lendecke2010-02-081-0/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3: shortcut gid_to_sid when "ldapsam:trusted = yes"Stefan Metzmacher2010-02-081-0/+71
| | | | | | | | | | | | | | The normal gid_to_sid behaviour is to call sys_getgrgid() to get the name for the given gid and then call the getsamgrnam passdb method for the resulting name. In the ldapsam:trusted case we can reduce the gid_to_sid operation to one simple search for the gidNumber attribute and only get the sambaSID attribute from the correspoinding LDAP object. This reduces the number of ldap roundtrips for this operation. metze
* s3: Make use of ZERO_STRUCTPVolker Lendecke2010-02-051-1/+2
|
* s3: Remove a pointless if-statementVolker Lendecke2010-02-051-1/+1
|
* s3: Make guest_user_info() staticVolker Lendecke2010-02-051-1/+1
|
* s3: Hide some uses of pdb_get_init_flags (which I would love to remove...)Volker Lendecke2010-02-052-2/+2
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-02-052-35/+34
|
* s3:passdb: fix a type Domain Users has RID -513Stefan Metzmacher2010-02-041-1/+1
| | | | metze
* Second part of fix for bug #7072 - Accounts can't be unlocked from ldap.Jeremy Allison2010-01-271-1/+2
| | | | | | Missed read of entry_timestamp (was entry->entry_timestamp). Jeremy.
* Fix bug #7072 - Accounts can't be unlocked from ldap.Jeremy Allison2010-01-271-7/+15
| | | | | | | | | | | | Fix suggested by Andy Hanton <andyhanton@gmail.com>. The LOGIN_CACHE struct contains two time_t entries, but was being written to and read from via tdb_pack/tdb_unpack functions using explicit 32-bit int specifiers. This would break on machines with a 64-bit time_t. Use correct int sizes for tdb_pack/tdb_unpack. We have to fix this properly before 2037 :-). Jeremy.
* s3: Remove some pointless uses of string_sid_tallocVolker Lendecke2010-01-231-8/+6
|
* s3:pdb_ldap: Fix large paged search.Volker Lendecke2010-01-211-0/+1
| | | | | Fix bug #6981 (Paged Search with DirX LDAP server broken). (cherry picked from commit 0a3b576c0a4298cbe600ad8943e401e3a0639359)
* s3:pdb_ldap: restore Samba 3.0.x behavior and use the first "uid" value.Stefan Metzmacher2010-01-141-1/+1
| | | | | | | | | See bug #6157 for more details. metze Signed-off-by: Stefan Metzmacher <metze@samba.org> (cherry picked from commit 25806f43ddee7e2653e907eea2c6fcc075960fa1)
generated by cgit (git 2.34.1) at 2025-09-25 13:43:22 +0000