summaryrefslogtreecommitdiffstats
path: root/source4/auth
Commit message (Collapse)AuthorAgeFilesLines
* s4:auth/gensec_gssapi: add "gensec_gssapi:requested_life_time" optionStefan Metzmacher2012-05-171-1/+6
| | | | metze
* s4:auth/gensec: implement gensec_gssapi_expire_time()Stefan Metzmacher2012-05-171-0/+13
| | | | metze
* s4:auth/gensec_gssapi: add missing 'break' statementsStefan Metzmacher2012-05-171-0/+2
| | | | metze
* s4:auth/gensec_gssapi: remember the expire timeStefan Metzmacher2012-05-172-2/+9
| | | | metze
* s4:auth: remove unused auth_server.cStefan Metzmacher2012-05-152-245/+0
| | | | metze
* s4-auth: Use smb_krb5_make_pac_checksum.Andreas Schneider2012-05-081-54/+24
| | | | Signed-off-by: Simo Sorce <idra@samba.org>
* s4:auth/kerberos: don't do tracing in MIT buildAlexander Bokovoy2012-05-041-17/+0
| | | | Signed-off-by: Simo Sorce <idra@samba.org>
* auth-session: MIT doesn't have import/export cred yetSimo Sorce2012-05-041-3/+5
| | | | | | | For now let's just loose this functionality with the MIT build. gss_import/export_cred should be availa ble when MIT 1.11 is released and this code is used only in some proxy scenario. Not normally needed for common configurations.
* s4-auth-krb: Make srv_keytab.c build against MIT KerberosSimo Sorce2012-05-041-8/+11
|
* Fix incompatible assignment warningSimo Sorce2012-05-041-1/+1
|
* Fix compiler warningSimo Sorce2012-05-041-1/+1
|
* s4-auth-krb: Use compat code to initialize keyblock contentsSimo Sorce2012-05-041-1/+1
|
* s4-auth-krb: Disable code in MIT buildSimo Sorce2012-05-041-1/+4
| | | | | | Unfortunately these functions are not available in MIT and there is no easy workaround or compat funciton I can see at this stage. Will fix properly once MIT gets the necessary functions or if another workaround can be found.
* Move keytab_copy to krb5samba libSimo Sorce2012-05-042-231/+1
| | | | | This is a helper fucntion that uses purely krb5 code, so it belongs to krb5samba which is the krb5 wrapper for samba.
* Fix keytab_copy to compile with MIT librariues tooSimo Sorce2012-05-041-10/+12
|
* keytab_copy: Fix style, whitespacesSimo Sorce2012-05-041-8/+17
|
* kerberos_pac: Fix code to work with MIT tooSimo Sorce2012-05-041-3/+3
|
* s4-auth-krb: smb_rd_req_return_stuff is used only in gensec_krb5Simo Sorce2012-05-045-2/+13
| | | | | | | Make it clearly a gensec_krb5 accessory file. This function should never be used anywhere else. This function was copied out from the Heimdal tree and is kept in a separate file for clarity and to keep the original license boilerplate.
* Split normal kinit from s4u2 flavored kinitSimo Sorce2012-05-041-7/+21
| | | | | | | This makes it simpler to slowly integrate MIT support and also amkes it somewhat clearer what operation is really requested. The 24u2 part is really only used by the cifs proxy code so we can temporarily disable it in the MIT build w/o major consequences.
* Move kerberos_kinit_password_cc to krb5samba libSimo Sorce2012-05-043-427/+1
|
* Move kerberos_kinit_keyblock_cc to krb5samba libSimo Sorce2012-05-042-55/+0
| | | | | Make it also work with MIT where krb5_get_in_tkt_with_keyblock is not available.
* krb-init: define out heimdal specific stuff in mitkrb buildSimo Sorce2012-05-041-3/+12
|
* s4-auth-krb: avoid useless conditionSimo Sorce2012-05-041-1/+1
| | | | Code bails out with ENOMEM 2 lines a bove if config_file is NULL anyways
* lib/replace: split out GSSAPI from lib/replace/system/kerberos.h into ↵Alexander Bokovoy2012-04-253-4/+3
| | | | | | | | | | | | | | lib/replace/system/gssapi.h With waf build include directories are defined by dependencies specified to subsystems. Without proper dependency <gssapi/gssapi.h> cannot be found for embedded Heimdal builds when there are no system-wide gssapi/gssapi.h available. Split out GSSAPI header includes in a separate replacement header and use that explicitly where needed. Autobuild-User: Alexander Bokovoy <ab@samba.org> Autobuild-Date: Wed Apr 25 00:18:33 CEST 2012 on sn-devel-104
* Make krb5 wrapper library common so they can be used all overSimo Sorce2012-04-232-4/+5
|
* For now just disable this Heindal specific stuff in the MIT buildSimo Sorce2012-04-235-3/+29
|
* Make krb5 context initialization not heimdal specificSimo Sorce2012-04-232-22/+54
| | | | | Turn the logging data to an opaque pointer. Ifdef code and use MIT logging function when built against system MIT.
* Fix Error messagesSimo Sorce2012-04-191-4/+2
|
* s4-auth: Make sure ldb context is initialized even if not passed by Python codeAlexander Bokovoy2012-04-141-1/+1
| | | | | Autobuild-User: Alexander Bokovoy <ab@samba.org> Autobuild-Date: Sat Apr 14 00:21:00 CEST 2012 on sn-devel-104
* srv_keytab: Pass krb5_context directly, it's all we use anyways.Simo Sorce2012-04-121-16/+11
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* auth-krb: Move pac related util functions in a single place.Simo Sorce2012-04-123-0/+3
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* auth-krb: Make functions static.Simo Sorce2012-04-121-0/+71
| | | | | | | The remaining gssapi_parse functions were used exclusively in gensec_krb5. Move them there and make them static. Signed-off-by: Andreas Schneider <asn@samba.org>
* auth-krb: Nove oid packet check to gensec_util.Simo Sorce2012-04-122-43/+3
| | | | | | | | This is clearly a utiliy function generic to gensec. Also the 3 callers had identical implementations. Provide a generic implementation for all of them and avoid duplicating the code everywhere. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Remove dependency on credentials too.Simo Sorce2012-04-122-11/+5
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Remove unneded dependency on kerberos_util.Simo Sorce2012-04-123-40/+54
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Simplify salt_princ handling.Simo Sorce2012-04-124-287/+187
| | | | | | | | This allows us to make parse_principal static in kerbeors_util again and avoid a silly game where we alloc containers and set destrcutors only to release the whole thing at the end of the function. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Move function to db-glue.c and make it static.Simo Sorce2012-04-122-20/+0
| | | | | | | kerberos_enctype_to_bitmap is not used anywhere else, so just move it there and make it static, one less dependency to worry about. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Move keytab functions in a separate file.Simo Sorce2012-04-124-707/+749
| | | | | | Confine ldb dependency. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Streamline and cleanup code to make it readable.Simo Sorce2012-04-121-190/+256
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: streamline and rename enctype functionsSimo Sorce2012-04-121-11/+12
| | | | better express what is being done in the function name.
* s4-auth-krb: Make kerberos_enctype_bitmap_to_enctype static.Simo Sorce2012-04-122-3/+1
| | | | | | It's a helper function not used anywhere else. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Make kerberos_enctype_bitmap_to_enctypes static.Simo Sorce2012-04-121-1/+7
| | | | | | It is not used anywhere else. Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Move function into more appropriate header.Simo Sorce2012-04-121-0/+8
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s4-auth-krb: Make impersonate_principal_from_credentials static.Simo Sorce2012-04-121-0/+1
| | | | | | It's not used anywhere else. Signed-off-by: Andreas Schneider <asn@samba.org>
* gensec_gssapi: keep private header file close to the actual codeSimo Sorce2012-04-122-1/+70
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* krb5_wrap: remove duplicate declaration and dead ifdefSimo Sorce2012-04-121-4/+0
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s4:auth/gensec/schannel: initialize struct schannel_state to zeroStefan Metzmacher2012-03-021-2/+1
| | | | metze
* s4:auth/gensec/schannel: make a copy of netlogon_creds_CredentialState in ↵Stefan Metzmacher2012-03-021-1/+8
| | | | | | | | the client This is really a copy for the lifetime of the rpc connection. metze
* auth: Rename some elements of auth4_contextAndrew Bartlett2012-02-241-3/+3
| | | | | | These operate on NTLM authentication, so make that clear. Andrew Bartlett
* pygensec: Fix whitespace.Jelmer Vernooij2012-02-181-8/+8
|
generated by cgit (git 2.34.1) at 2024-11-07 17:31:30 +0000