summaryrefslogtreecommitdiffstats
path: root/source4/auth/credentials
Commit message (Collapse)AuthorAgeFilesLines
* s4-test: we need to import testtools before subunit/pythonAndrew Tridgell2010-11-131-1/+1
| | | | | | | subunit/python depends on testtools Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Sat Nov 13 02:02:45 UTC 2010 on sn-devel-104
* s4/test: Expand BindTestAnatoliy Atanasov2010-11-111-20/+60
| | | | | | | The test now binds with user@realm, domain\user, user dn, computer dn Autobuild-User: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> Autobuild-Date: Thu Nov 11 16:15:30 UTC 2010 on sn-devel-104
* credentials: Lowercase library name,Jelmer Vernooij2010-11-071-10/+10
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Nov 7 01:48:44 UTC 2010 on sn-devel-104
* s4/test: Added test for simple bind with machine accountAnatoliy Atanasov2010-11-051-0/+116
| | | | | Samba4 returns error on simple bind, when we do it using openldap simple_bind_s api.
* s4: Remove the old perl/m4/make/mk-based build system.Jelmer Vernooij2010-10-311-20/+0
| | | | | | | | The new waf-based build system now has all the same functionality, and the old build system has been broken for quite some time. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sun Oct 31 02:01:44 UTC 2010 on sn-devel-104
* s4-cmdline: make cmdline-credentials a private libraryAndrew Tridgell2010-10-301-1/+1
|
* s4-credentials: make a private library from CREDENTIALS subsystemAndrew Tridgell2010-10-301-8/+9
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* auth/credentials Give a sensible behaviour for resetting the krb5 contextAndrew Bartlett2010-10-271-3/+8
| | | | | | | | | | | This extra code isn't used at the moment, but I noticed the old API was rather supprising in it's behaviour, and might catch someone out at some later time. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Wed Oct 27 05:24:22 UTC 2010 on sn-devel-104
* talloc: change pytalloc-util to be a public library.Jelmer Vernooij2010-10-261-1/+1
|
* s4: Drop duplicate 'lib' prefix for private libraries.Jelmer Vernooij2010-10-261-1/+1
|
* s4: Rename LIBSAMBA-* to libsamba-*Jelmer Vernooij2010-10-241-1/+1
|
* s4: Rename LIBSECURITY{_SESSION,} to libsecurity{_session,}Jelmer Vernooij2010-10-241-1/+1
|
* s4: Rename LIBEVENTS to libevents.Jelmer Vernooij2010-10-231-1/+1
|
* s4:"util_ldb" - remove some really unused dependanciesMatthias Dieter Wallnöfer2010-10-182-2/+1
|
* Revert "s4:remove "util_ldb" submodule and integrate the three gendb_* calls ↵Matthias Dieter Wallnöfer2010-10-172-1/+2
| | | | | | | | | | | | in "dsdb/common/util.c"" This reverts commit 8a2ce5c47cee499f90b125ebde83de5f9f1a9aa0. Jelmer pointed out that these are also in use by other LDB databases - not only SAMDB ones. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sun Oct 17 13:37:16 UTC 2010 on sn-devel-104
* s4:remove "util_ldb" submodule and integrate the three gendb_* calls in ↵Matthias Dieter Wallnöfer2010-10-172-2/+1
| | | | | | | | | "dsdb/common/util.c" They're only in use by SAMDB code. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sun Oct 17 09:40:13 UTC 2010 on sn-devel-104
* s4-credentials Allocate ldb result on correct memory contextAndrew Bartlett2010-10-121-1/+1
|
* s4-credentials Add explicit event context handling to Kerberos calls (only)Andrew Bartlett2010-10-115-42/+24
| | | | | | | | | | | | | | By setting the event context to use for this operation (only) onto the krb5_context just before we call that operation, we can try and emulate the specification of an event context to the actual send_to_kdc() This eliminates the specification of an event context to many other cli_credentials calls, and the last use of event_context_find() Special care is taken to restore the event context in the event of nesting in the send_to_kdc function. Andrew Bartlett
* s4-param Refactor secrets code to not require an event context.Andrew Bartlett2010-10-111-1/+1
| | | | | | | | A new event context is constructed by LDB when required for secrets.ldb This will be essentially unused, as LDB on TDB will only trigger 'fake' events, and blocks on transactions and lock operations anyway. Andrew Bartlett
* credentials: Avoid unnecessary includes.Jelmer Vernooij2010-10-111-2/+0
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Oct 11 13:01:36 UTC 2010 on sn-devel-104
* credentials: Fix the build.Jelmer Vernooij2010-10-115-2/+7
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Oct 11 02:47:50 UTC 2010 on sn-devel-104
* credentials: Split up into several subsystems.Jelmer Vernooij2010-10-112-5/+17
|
* kerberos_util: Put into separate subsystem.Jelmer Vernooij2010-10-112-2/+3
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Mon Oct 11 00:34:56 UTC 2010 on sn-devel-104
* credentials: Move code that doesn't need any external dependencies intoJelmer Vernooij2010-10-103-144/+147
| | | | credentials.c.
* Add missing dependencies for com_err.Jelmer Vernooij2010-10-051-1/+1
|
* heimdal: Fix library name of gssapi.Jelmer Vernooij2010-10-051-1/+1
|
* s4-pycredentials: avoid a tallloc_free on refAndrew Tridgell2010-09-251-1/+1
| | | | with the new py object structure, we need to unlink not free
* s4-kerberos Move 'set key into keytab' code out of credentials.Andrew Bartlett2010-09-243-69/+5
| | | | | | | | This code never really belonged in the credentials layer, and is easier done with direct access to the ldb_message that is in secrets.ldb. Andrew Bartlett
* s4-selftest: Move credentials tests to standard python directory.Jelmer Vernooij2010-09-221-100/+0
|
* s4-param: Fix more memory leaks, invalid memory context.Jelmer Vernooij2010-09-221-10/+38
|
* s4-param: Check type when converting python object to lp_ctx, fix someJelmer Vernooij2010-09-221-2/+7
| | | | memory leaks.
* s4-pycredentials: expose forwardable setting via pythonAndrew Tridgell2010-09-161-0/+16
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-credentials: added ability to control forwardable attribute on krb5 ticketsAndrew Tridgell2010-09-162-0/+24
| | | | | | | with the latest bind9 nsupdate, we need to be able to control if the ticket we use is forwardable Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-credentials: get all attributes in cli_credentials_set_secrets()Andrew Tridgell2010-09-111-17/+1
| | | | | This ensures we get whenChanged, which is needed by the s3 winbind code to ensure we don't repeatedly try to change the password
* s4:credentials_krb5.c - quiet a Solaris warningMatthias Dieter Wallnöfer2010-08-271-1/+2
|
* s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell2010-07-164-18/+18
| | | | | | | this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4-python: python is not always in /usr/binAndrew Tridgell2010-06-241-1/+1
| | | | | | | | Using "#!/usr/bin/env python" is more portable. It still isn't ideal though, as we should really use the python path found at configure time. We do that in many places already, but some don't. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* python: Use samba.tests.TestCase, make sure base class tearDown andJelmer Vernooij2010-06-191-2/+4
| | | | setUp methods are called, fix formatting.
* s4:auth/credentials/credentials.c - initialise "password_last_changed_time"Matthias Dieter Wallnöfer2010-05-301-0/+2
| | | | Otherwise it could remain uninitialised.
* s4:credentials Add in tracking of the password last set timeAndrew Bartlett2010-05-183-1/+33
| | | | | | | | We perhaps need a more general API here, but for now extend the credentials API to return the password last changed time that the s3compat layer will need. Andrew Bartlett
* s4:credentials Allow setting of an empty Kerberos CCACHEAndrew Bartlett2010-05-141-18/+12
| | | | | | | This allows us to tell the credentials code where we want the credentials put. Andrew Bartlett
* s4:credentials Make the CCACHE in credentials depend on the things that built itAndrew Bartlett2010-05-023-20/+81
| | | | | | | | | This means that we consider the ccache only as reliable as the least specified of the inputs we used. This means that we will regenerate the ccache if any of the inputs change. Andrew Bartlett
* s4:kerberos Give a better error message than "Could not allocate memory"Andrew Bartlett2010-04-271-3/+3
| | | | Andrew Bartlett
* pytalloc: ensure talloc_ctx is directly after PyObject_HEADAndrew Tridgell2010-04-201-1/+1
| | | | | | | | | | | | | | | | | | | | | | the talloc python interface for tp_alloc and tp_dealloc relies on a cast to a py_talloc_Object to find the talloc_ctx (see py_talloc_dealloc). This means we rely on the talloc_ctx for the object being directly after the PyObject_HEAD This fixes the talloc free with references bug in samba_dnsupdate The actual problem was the tp_alloc() call in PyCredentialCacheContainer_from_ccache_container() which used a cast from a py_talloc_Object to a PyCredentialCacheContainerObject. That case effectively changed the parent/child relationship between the talloc_ctx and the ccc ptr. This patch changes all the structures that follow this pattern to put the TALLOC_CTX directly after the PyObject_HEAD, to ensure that if anyone else decides to do a dangerous cast like this that it won't cause the same sort of subtle breakage. Pair-Programmed-With: Rusty Russell <rusty@samba.org>
* s4-python: PyErr_SetString() will crash on NULL stringsAndrew Tridgell2010-04-191-1/+1
| | | | use nt_errstr() when no error available
* s4:credentials Add the functions needed to do S4U2Self with cli_credentialsAndrew Bartlett2010-04-103-0/+47
| | | | | | A torture test to demonstrate will be added soon. Andrew Bartlett
* s4:credentials talloc_free() any previous salt_principalAndrew Bartlett2010-04-102-1/+2
| | | | | | | This isn't used often, but it is generally better not to leak it onto what may be a longer-term context. Andrew Bartlett
* pynet: Create a net class.Jelmer Vernooij2010-04-081-6/+17
|
* s4-waf: removed the AUTOGENERATED markersAndrew Tridgell2010-04-061-4/+0
| | | | we won't be using the mk -> wscript generator again
* s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵Andrew Tridgell2010-04-061-0/+2
| | | | them
generated by cgit (git 2.34.1) at 2026-01-30 00:51:18 +0000