summaryrefslogtreecommitdiffstats
path: root/source4/dsdb
Commit message (Collapse)AuthorAgeFilesLines
* s4:dsdb/common/util.c - provide a better implementation of the ↵Matthias Dieter Wallnöfer2010-06-061-28/+90
| | | | | | | "samdb_msg_add_(add/del)val" calls This supports now also coexisting add and delete message elements with the same attribute name.
* s4:ridalloc LDB module - add more "talloc_free"s where usefulMatthias Dieter Wallnöfer2010-06-061-0/+3
| | | | Some were missing on failure return branches.
* s4:acl LDB module - fix counter types where appropriateMatthias Dieter Wallnöfer2010-06-061-2/+4
|
* s4:descriptor LDB module - cosmetic fixupMatthias Dieter Wallnöfer2010-06-061-4/+4
|
* s4: check the sacl and dacl pointers on the old sdAnatoliy Atanasov2010-06-011-2/+2
|
* s4-cracknames: Fix typo in debug message.Karolin Seeger2010-06-011-1/+1
| | | | Karolin
* s4:samldb LDB module - start on a sequential trigger implementationMatthias Dieter Wallnöfer2010-05-311-10/+26
| | | | This is a start to allow the triggers to be called sequentially.
* s4:dsdb_load_udv_v1 - "uint32_t" counter type fits better than "unsigned int"Matthias Dieter Wallnöfer2010-05-311-1/+1
|
* ldb: Fix dependencies when building with system ldb.Jelmer Vernooij2010-05-311-1/+1
|
* s4:samldb LDB module - deny delete operations on some important attributesMatthias Dieter Wallnöfer2010-05-301-3/+12
| | | | | | | | Add operations are denied since these are single-valued - only replace is allowed. This is only provisorily at the moment - we need to implement the triggers specified in MS-ADTS.
* s4:samldb LDB module - rework the group change code to be again synchronousMatthias Dieter Wallnöfer2010-05-301-309/+71
|
* s4:dsdb/samdb/ldb_modules/util.c - make sure to always free temporary dataMatthias Dieter Wallnöfer2010-05-301-1/+6
|
* s4:dsdb_module_search_dn - add code to handle NULL format stringMatthias Dieter Wallnöfer2010-05-301-3/+13
|
* s4:dsdb/common/util.c - fix a counter variableMatthias Dieter Wallnöfer2010-05-301-1/+1
|
* s4:dsdb_enum_group_mem - use "unsigned" countersMatthias Dieter Wallnöfer2010-05-241-2/+3
| | | | | | "size_t" counters aren't really needed here (we don't check data lengths). And we save the result in a certain "num_sids" variable which is of type "unsigned".
* s4:dsdb_lookup_rids - "unsigned" counters fit better than "signed" in this caseMatthias Dieter Wallnöfer2010-05-241-2/+2
|
* s4:dsdb_add_user - check the "cn"/"account_name" length (should be >= 1)Matthias Dieter Wallnöfer2010-05-241-7/+12
| | | | | | | This needed by the "cn_name_len"-1 accesses. And use a "size_t"-typed variable for storing it (length specificators should always be stored using "size_t" variables).
* s4:samr Push most of samr_LookupRids into a helper functionAndrew Bartlett2010-05-241-0/+66
| | | | | | | | | | This is a rewrite of the lookup_rids code, using a query based on the extended DN for a clearer interface. By splitting this out, the logic is able to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
* s4:samr Push most of samr_QueryGroupMember into a helper functionAndrew Bartlett2010-05-241-0/+67
| | | | | | | | | | | This is a rewrite of the group membership lookup code, using the stored extended DNs to avoid doing the lookup into each member to find the SID By splitting this out, the logic is able to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
* s4:samr Move most of samr_CreateDomAlias into a helper functionAndrew Bartlett2010-05-241-0/+73
| | | | | | | This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
* s4:samr Split most of samr_CreateDomainGroup into a helper functionAndrew Bartlett2010-05-241-0/+79
| | | | | | | This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
* s4:samr Split the guts of samr_CreateUser2 into a helper functionAndrew Bartlett2010-05-242-1/+250
| | | | | | | This allows this logic to be shared, rather than copied, into a passdb wrapper. Andrew Bartlett
* s4:dsdb Allow a NULL search expression in dsdb_search()Andrew Bartlett2010-05-241-2/+5
| | | | | | | The NULL search expression expands to (objectClass=*), but %s expands NULL to (NULL) which doesn't parse... Andrew Bartlett
* s4:libcli/ldap Rename ldap.h to libcli_ldap.hAndrew Bartlett2010-05-211-1/+0
| | | | | | | It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett
* s4:operational LDB module - fix warnings (missing parameters, unused variable)Matthias Dieter Wallnöfer2010-05-201-3/+5
|
* s4:auth Change auth_generate_session_info to take flagsAndrew Bartlett2010-05-202-25/+56
| | | | | | | | | | | | | | This allows us to control what groups should be added in what use cases, and in particular to more carefully control the introduction of the 'authenticated' group. In particular, in the 'service_named_pipe' protocol, we do not have control over the addition of the authenticated users group, so we key of 'is this user the anonymous SID'. This also takes more care to allocate the right length ptoken->sids Andrew Bartlett
* s4:auth Add dependency from the operational module onto authAndrew Bartlett2010-05-202-2/+5
| | | | | | | We had to split up the auth module into a module loaded by main deamon and a subsystem we manually init in the operational module. Andrew Bartlett
* s4:auth Allow the operational module to get a user's tokenGroups from authAndrew Bartlett2010-05-203-82/+68
| | | | | | | | This creates a new interface to the auth subsystem, to allow an auth_context to be created from the ldb, and then tokenGroups to be calculated in the same way that the auth subsystem would. Andrew Bartlett
* s4:auth Move BUILTIN group addition into session.cAndrew Bartlett2010-05-201-2/+9
| | | | | | | | The group list in the PAC does not include 'enterprise DCs' and BUILTIN groups, so we should generate it on each server, not in the list we pass around in the PAC or SamLogon reply. Andrew Bartlett
* s4:dsdb disable tokenGroups until end of rewriteAndrew Bartlett2010-05-201-1/+2
| | | | | | I need to change the functions this calls Andrew Bartlett
* s4/metadata: fix whitespacesKamen Mazdrashki2010-05-191-71/+71
|
* s3: Fix some more iconv convenience usages.Jelmer Vernooij2010-05-181-1/+1
|
* Remove more usages of iconv_convenience in files which were apparently not ↵Jelmer Vernooij2010-05-181-3/+1
| | | | recompiled by waf.
* s3: Remove use of iconv_convenience.Jelmer Vernooij2010-05-182-4/+1
|
* Finish removal of iconv_convenience in public API's.Jelmer Vernooij2010-05-1816-91/+47
|
* s4-rodc: Cache am_rodc flagAnatoliy Atanasov2010-05-172-0/+51
|
* s4:repl_meta_data LDB module - fix counter typesMatthias Dieter Wallnöfer2010-05-141-1/+1
|
* s4:dsdb_cache LDB module - fix a typoMatthias Dieter Wallnöfer2010-05-141-1/+1
|
* s4:samldb LDB module - remove unused variablesMatthias Dieter Wallnöfer2010-05-141-2/+0
|
* s4: Do not display by default the message Failed to send DsReplicaSync is ↵Matthieu Patou2010-05-131-1/+6
| | | | | | other host is just unreachable Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4:dsdb: fix samdb_result_logon_hours() and don't hardcode units_per_weekStefan Metzmacher2010-05-131-4/+11
| | | | metze
* s4:dsdb: cached results of samdb_rodc()Stefan Metzmacher2010-05-111-1/+29
| | | | metze
* Revert "s4-rodc: Fix provision warnings by creating ntds objectGUID in ↵Anatoliy Atanasov2010-05-111-23/+0
| | | | | | | provision" This reverts commit c3cbb846d0bfbaa11fd255bada7fa5fe502d4d96. The fix is not correct, we should cache a bool to answer amIRODC
* Revert "s4:password_hash LDB module - don't break the provision"Stefan Metzmacher2010-05-111-3/+0
| | | | | | | | This reverts commit 6276343ce1b7dd7d217e5a419c09f209f5f87379. This is not needed anymore. metze
* Revert "s4:password hash LDB module - check that password hashes are != NULL ↵Stefan Metzmacher2010-05-111-10/+6
| | | | | | | | | | before copying them" This reverts commit fa87027592f71179c22f132e375038217bc9d36a. This check is done one level above now. metze
* s4:dsdb/password_hash: only try to handle a hash in the unicodePwd field if ↵Stefan Metzmacher2010-05-111-2/+2
| | | | | | | | it's given Sorry, I removed this logic while cleaning up indentation levels... metze
* s4:password_hash LDB module - we might not have a cleartext password at allMatthias Dieter Wallnöfer2010-05-101-26/+29
| | | | | When we don't have the cleartext of the new password then don't check it using "samdb_check_password".
* s4:password_hash LDB module - quiet a warningMatthias Dieter Wallnöfer2010-05-101-1/+1
|
* s4:password hash LDB module - check that password hashes are != NULL before ↵Matthias Dieter Wallnöfer2010-05-101-6/+10
| | | | copying them
* s4:password_hash LDB module - don't break the provisionMatthias Dieter Wallnöfer2010-05-101-0/+3
| | | | | This is to don't break the provision process at the moment. We need to find a better solution.
generated by cgit (git 2.34.1) at 2025-09-28 03:05:19 +0000