summaryrefslogtreecommitdiffstats
path: root/source4/scripting
Commit message (Collapse)AuthorAgeFilesLines
...
* s4:dns.py: reproducer for (bug #9184)Stefan Metzmacher2012-09-221-0/+29
| | | | | | | metze Autobuild-User(master): Stefan Metzmacher <metze@samba.org> Autobuild-Date(master): Sat Sep 22 06:08:05 CEST 2012 on sn-devel-104
* Correct command help messageDaniele Dario2012-09-201-1/+1
| | | | | Autobuild-User(master): Volker Lendecke <vl@samba.org> Autobuild-Date(master): Thu Sep 20 16:55:17 CEST 2012 on sn-devel-104
* s4-python: Formatting fixes, break lines.Jelmer Vernooij2012-09-1614-50/+69
| | | | | Autobuild-User(master): Jelmer Vernooij <jelmer@samba.org> Autobuild-Date(master): Sun Sep 16 15:58:04 CEST 2012 on sn-devel-104
* samba.netcmd: Formatting fixes, break lines.Jelmer Vernooij2012-09-168-194/+209
|
* samba.provision.common: Fix formatting.Jelmer Vernooij2012-09-161-2/+0
|
* samba.provision.sambadns: Fix formatting.Jelmer Vernooij2012-09-161-57/+126
|
* samba.provision.backend: Fix formatting.Jelmer Vernooij2012-09-161-0/+1
|
* samba.provision: Fix formatting, NameErrors.Jelmer Vernooij2012-09-161-68/+80
|
* s4 provision: Ask for the dns forwarder IP address during interactive provisionKai Blin2012-09-122-10/+50
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s4:samba_upgradedns: delete dns-HOSTNAME account if using the internal dns ↵Stefan Metzmacher2012-09-121-0/+28
| | | | | | server metze
* s4:upgradehelpers.py: don't require a dns-$HOSTNAME accountStefan Metzmacher2012-09-121-3/+0
| | | | metze
* s4:provision: don't add the dns-HOSTNAME account if we use the internal dns ↵Stefan Metzmacher2012-09-121-6/+10
| | | | | | server metze
* s4 dns: use the internal DNS server per defaultKai Blin2012-09-123-18/+18
|
* s4 dns: Run python tests in fl2003dc envKai Blin2012-09-121-19/+19
|
* s4:scripting: rename upgradeprovision -> samba_upgradeprovisionStefan Metzmacher2012-09-123-2/+2
| | | | metze
* smbd-posix_acls: Use a IDL union to store the ACL entryAndrew Bartlett2012-09-121-41/+11
| | | | | | | This is a clearer, long-term-stable structure we can hash without risking it changing. Andrew Bartlett
* provision: Only give the "no posix ACLs" exception if we could not set the SDAndrew Bartlett2012-09-111-6/+6
| | | | | | | This will allow us to run make test on all platforms again, as we emululate the posix ACLs using the fake_acls module. By then testing smbd.have_posix_acls() we gain a more specific error message. Andrew Bartlett
* s4:scripting: install samba_kcc to SBINDIRStefan Metzmacher2012-09-111-2/+2
| | | | | | | It's use as "%s/samba_kcc", dyn_SCRIPTSBINDIR" similar to samba_spnupdate and samba_dnsupdate. metze
* s4:scripting: use the 'sbin_files' variableStefan Metzmacher2012-09-111-1/+1
| | | | metze
* s4:samba-tool: add 'samba-tool domain provision'Stefan Metzmacher2012-09-111-1/+264
| | | | | | This is mostly a copy of the standalone source4/setup/provision. metze
* s4:python/netcmd: give the Commad implementations access to the raw argumentsStefan Metzmacher2012-09-111-0/+8
| | | | metze
* s4:samba-tool: remove unused code in testparm.pyStefan Metzmacher2012-09-111-5/+0
| | | | metze
* s4:samba-tool: allow sys.exit(ret) to control the exit codeStefan Metzmacher2012-09-111-1/+1
| | | | | | | Some subcommands may use sys.exit(0), which shouldn't be reported as an error to the caller. metze
* join.py: Only replicate DNS zones if the source DC had DNS zonesAndrew Bartlett2012-09-061-7/+18
| | | | | | | | | This avoid folks needing to specify --dns-backend=NONE Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Thu Sep 6 04:48:55 CEST 2012 on sn-devel-104
* selftest: Add python blackbox tests for samba-tool ntacl get/setAndrew Bartlett2012-09-051-2/+67
| | | | | Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Wed Sep 5 15:47:55 CEST 2012 on sn-devel-104
* samba_tool: Improve samba-tool ntacl get/set to use the local sam.ldb SIDAndrew Bartlett2012-09-051-19/+53
| | | | | | | | | This gets the SID for the local machine correctly. We also add options for --use-ntvfs and --use-s3fs to help control exactly which database is being read and written. Andrew Bartlett
* samba_tool: Fix ntacl get to correctly output in sddlAndrew Bartlett2012-09-051-3/+3
|
* s4-provision: Fix error message to contain the string SSDL of the ↵Andrew Bartlett2012-09-051-2/+2
| | | | failed-to-match ACL
* s4-selftest: Try a more complex ACL - this example from a GPOAndrew Bartlett2012-09-041-0/+14
| | | | | | | Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Sep 4 11:30:17 CEST 2012 on sn-devel-104
* s4-selftest: Try to make ntacl unit tests better match their namesAndrew Bartlett2012-09-041-5/+5
| | | | | | | We are trying to test combinations of setting and getting via the VFS and directly to the underlying DB. Andrew Bartlett
* s4-samba-tool: Ensure we also sync the SACL as well as the DACL during ↵Andrew Bartlett2012-09-041-1/+1
| | | | sysvolreset
* s3-passdb: Rename pdb_samba4 to samba_dsdb and autoconfigure when we are a AD DCAndrew Bartlett2012-09-042-13/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | The name samba_dsdb is not ideal, but it matches the primary ldb module we use, and more importantly it avoids having '4' in the name. We should slowly avoid using the term samba4 in long-term places like the smb.conf because it is confusing to users given we are shipping Samba 4.0 as an AD DC as well as all the other supported roles (domain member/standalone server/classic DC) Additionally, samba4 will be an odd name when we eventually release Samba 5.0! samba4 remains accepted as an alias to ensure existing smb.conf files load, but to allow changes here in the future, we set the value during the smb.conf load, and not during the provision when we are an AD DC. This simplifies the default smb.conf for the vast majority of our users and reduces the number of things listed in smb.conf files that we later have to work around if we wish to change the name/implementation of the passdb glue module again. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Sep 4 04:45:16 CEST 2012 on sn-devel-104
* s4-classicupgrade: Show more clearly what is wrong with the Adminstrator SIDAndrew Bartlett2012-09-031-0/+1
|
* s3-classicupgrade: Fix import from ldapAndrew Bartlett2012-08-281-2/+2
| | | | | | | | | | We must not reference result before provision(), and do not need session_info and lp for reading a normal ldap backend anyway. Andrew Bartlett Autobuild-User(master): Andrew Bartlett <abartlet@samba.org> Autobuild-Date(master): Tue Aug 28 09:49:39 CEST 2012 on sn-devel-104
* s4-classicupgrade: Do the setting of the sysvol ACLs last, after idmap is ↵Andrew Bartlett2012-08-282-7/+14
| | | | | | | | | | | configured This will allow files to be correctly owned by the idmap that is imported. This appears to fix an issue that came up after s3fs-compatible ACLs were merged into provision. Andrew Bartlett
* s3-passdb: Allow reload of the static passdb from pythonAndrew Bartlett2012-08-281-0/+2
| | | | | | This is then used in provision when the passdb backend is forced. Andrew Bartlett
* s4-dsdb: Add secrets_tdb_sync - an ldb module to keep secrets.tdb in syncAndrew Bartlett2012-08-283-2/+4
| | | | | | | | | | | secrets_tdb_sync is a new ldb module designed to sync secrets.ldb entries with the secrets.tdb file. While not ideal to keep two copies of this data, this routine will assist in allowing the samba-tool domain join code to operate correctly in most cases where winbindd and smbd are used. Andrew Bartlett
* s4-classicupgrade: Read WINS DB before the provisionAndrew Bartlett2012-08-281-6/+7
|
* s4-classicupgrade: Do all the queries of data before the provision()Andrew Bartlett2012-08-281-35/+35
| | | | | | This allows provision to change the s3 smb.conf settings if required. Andrew Bartlett
* s4-classicupgrade: Use s3param.get_context() instead of result.lpAndrew Bartlett2012-08-281-1/+1
| | | | | | | We should not need the guessed values here, but by changing to using the s3 loadparm context we can move this block to before the provision. Andrew Bartlett
* s4-selftest: Add test for samba-tool ntacl sysvolcheckAndrew Bartlett2012-08-231-0/+26
|
* s4-samba-tool: Add samba-tool ntacl sysvolcheck commandAndrew Bartlett2012-08-232-1/+143
| | | | | | | | | This command verifies that the current on-disk ACLs match the directory and the defaults from provision. Unlike sysvolreset, this does not change any of the permissions. Andrew Bartlett
* s3-smbd: Add security_info_wanted argument to get_nt_acl_no_snumAndrew Bartlett2012-08-231-1/+1
| | | | | | | I need to get at the owner, group, DACL and SACL when testing correct ACL storage. Andrew Bartlett
* s4-selftest: Add testing of samba-tool ntacl sysvolresetAndrew Bartlett2012-08-231-0/+44
|
* s4-provision: Fix internal documentationAndrew Bartlett2012-08-231-0/+1
|
* s3-pysmbd: Allow a mode to be specified for the simple ACLAndrew Bartlett2012-08-231-1/+1
| | | | | | The additional group for the ACL is now optional. Andrew Bartlett
* s4-samba-tool: Add 'samba-tool ntacl sysvolreset' toolAndrew Bartlett2012-08-231-1/+73
| | | | | | | This will reset the NT ACL on the sysvol share to the default from provision, with GPO objects matching the LDAP ACL (as required). Andrew Bartlett
* selftest: Cope with the multiple possible representations of -1 in posixacl.pyAndrew Bartlett2012-08-231-28/+29
|
* selftest: Extend posixacl test to check the actual ACLAndrew Bartlett2012-08-231-2/+274
| | | | | | | | | | | | | | | | | | | | Needing to be able to write this test is the primary reason I have been reworking the VFS and posix ACL layer over the past few weeks. By exposing the POSIX ACL as a IDL object we can eaisly manipulate it in python, and then verify that the ACL was handled correctly. This ensures the when we write an ACL in provision, that it will indeed allow that access at the FS layer. We need to extend this beyond just the critical two ACLs set during provision, to also include some special (hard) cases involving the merging of ACE entries, as this is the most delicate part of the ACL transfomation. A similar test should also be written to read the posix ACL and the mapped NT ACL on a file that has never had an NT ACL set. Andrew Bartlett
* selftest: Add a test of the NT ACL -> posix ACL mapping layerAndrew Bartlett2012-08-231-0/+131
| | | | | | | This is the start of what will be a series of tests confirming exactly how some NT ACLs are mapped to posix ACLs. Andrew Bartlett
generated by cgit (git 2.34.1) at 2025-06-17 01:56:48 +0000