summaryrefslogtreecommitdiffstats
path: root/source/libads
Commit message (Collapse)AuthorAgeFilesLines
* - Support building all auth modules as .so'sJelmer Vernooij2003-03-252-38/+38
| | | | - Change 2 variable names to avoid conflicts (patch by Stephan Kulow <coolo@kde.org>)
* Changes to help the kerberos change password code work on systems thatAndrew Bartlett2003-03-161-37/+29
| | | | | | | | | have some of the labels 'duplicated' (ie, the defines double-up). Also, to an ads_connect() to try and find our KDC. (So we don't segfualt *every* time) Andrew Bartlett
* - Fix a double-free (I can't say I understand the code, but it matches the ↵Andrew Bartlett2003-03-121-6/+5
| | | | | | | | | | other cases and keeps valgrind quiet). - Add static Andrew Bartlett
* More const fixes.Jeremy Allison2003-03-051-2/+2
| | | | Jeremy.
* tokenGroups are SIDs, so dump them as such.Andrew Bartlett2003-02-251-0/+1
|
* Patch from Luke Howard to add mutual kerberos authentication, and SMB sessionAndrew Bartlett2003-02-241-6/+26
| | | | | | keys for kerberos authentication. Andrew Bartlett
* Always initialiseAndrew Bartlett2003-02-241-2/+2
|
* Fix a DEBUG() formatting, add some more debug to our SID pulling code andAndrew Bartlett2003-02-221-18/+33
| | | | | | | | | inline the call to prs_copy_all_data_out() so that we can know we are not overrunning our buffer. Also check more return values. Andrew Bartlett
* libads/krb5_setpw.cJim McDonough2003-02-191-1/+2
|
* Fix segv in net ads join...an extra & was the culpritJim McDonough2003-02-191-1/+1
|
* Check return values of various join-related functions, and ensure we alwaysAndrew Bartlett2003-02-191-9/+16
| | | | | | compare push_* returns with (size_t)-1, not < 0. Andrew Bartlett
* Try to get heimdal working with HEAD.Jim McDonough2003-02-191-20/+7
| | | | | | | | | | | - Provide generic functions for - get valid encryption types - free encryption types - Add encryption type parm to generic function create_kerberos_key_from_string() - Try to merge the two versions (between HEAD and SAMBA_3_0) of kerberos_verify.c I think this should work for both MIT and heimdal, in HEAD. If all goes smooth, I'll move it over to 3.0 soon...
* Fix of two warnings.Rafal Szczesniak2003-02-181-5/+3
| | | | | | | | pull_ucs2_talloc function takes char** pointer, not (here explicitly casted) void** one. Rafal
* Antti Andreimann <Antti.Andreimann@mail.ee> has done some changes to enableAndrew Bartlett2003-02-154-132/+337
| | | | | | | | | | | | | | | | | | | | | | | | | users w/o full administrative access on computer accounts to join a computer into AD domain. The patch and detailed changelog is available at: http://www.itcollege.ee/~aandreim/samba This is a list of changes in general: 1. When creating machine account do not fail if SD cannot be changed. setting SD is not mandatory and join will work perfectly without it. 2. Implement KPASSWD CHANGEPW protocol for changing trust password so machine account does not need to have reset password right for itself. 3. Command line utilities no longer interfere with user's existing kerberos ticket cache. 4. Command line utilities can do kerberos authentication even if username is specified (-U). Initial TGT will be requested in this case. I've modified the patch to share the kinit code, rather than copying it, and updated it to current CVS. The other change included in the original patch (local realms) has been left out for now. Andrew Bartlett
* Ensure that only parse_prs.c access internal members of the prs_struct.Jeremy Allison2003-02-141-5/+11
| | | | | Needed to move to disk based i/o later. Jeremy.
* add a note about a better method for finding netbios name of workgroupAndrew Tridgell2003-02-121-0/+7
| | | | (not implemented yet)
* Mem alloc failure checks.Jeremy Allison2003-02-043-23/+59
| | | | Jeremy.
* Always escape ldap filter strings. Escaping code was from pam_ldap, but I'm toAndrew Bartlett2003-02-013-10/+39
| | | | | | | | blame for the realloc() stuff. Plus a couple of minor updates to libads. Andrew Bartlett
* More fixes getting us closer to full Heimdal compile....Jeremy Allison2003-01-211-11/+7
| | | | Jeremy.
* sanity checks from Ken CrossGerald Carter2003-01-212-3/+7
|
* * removed unused variable from rpcclient codeGerald Carter2003-01-151-5/+5
| | | | | * added container option to net command (patch from SuSE) * Makefile patch for examples/VFS from SuSE
* Patch from Nik Conwell <nik@bu.edu>. Don't reference free()ed data when tryingAndrew Bartlett2003-01-111-1/+3
| | | | | | to figure out if we have got our ticket yet. Andrew Bartlett
* BIG patch...Andrew Bartlett2003-01-023-8/+8
| | | | | | | | | | | | | | | | This patch makes Samba compile cleanly with -Wwrite-strings. - That is, all string literals are marked as 'const'. These strings are always read only, this just marks them as such for passing to other functions. What is most supprising is that I didn't need to change more than a few lines of code (all in 'net', which got a small cleanup of net.h and extern variables). The rest is just adding a lot of 'const'. As far as I can tell, I have not added any new warnings - apart from making all of tdbutil.c's function const (so they warn for adding that const string to struct). Andrew Bartlett
* Catching up with old patches. Add define for VERITAS quota support.Jeremy Allison2002-12-301-0/+2
| | | | | Check return in ldap. Jeremy.
* Forward port the change to talloc_init() to make all talloc contextsJeremy Allison2002-12-202-9/+9
| | | | | named. Ensure we can query them. Jeremy.
* More printer publishing code.Jim McDonough2002-12-131-0/+26
| | | | | | | | - Add published attribute to info2, needed for win clients to work properly - Return proper info on getprinter 7 This means you can now look at the sharing tab of a printer and get correct info about whether it is published or not, and change it.
* More printer data to publishJim McDonough2002-12-051-0/+1
|
* Stop using hardcoded key/value strings, be more forgiving of ↵Jim McDonough2002-12-031-70/+74
| | | | dsspooler/dsdriver info existence.
* [merge from APP_HEAD]Gerald Carter2002-11-231-1/+2
| | | | | | | | | | | | | 90% fix for CR 1076. The password server parameter will no take things like password server = DC1 * which means to contact DC1 first and the go to auto lookup if it fails. jerry
* Don't pass a function to ADS_ERR_OK().Jim McDonough2002-11-181-6/+13
|
* Next step of printer publishing.Jim McDonough2002-11-181-106/+242
| | | | | | | | net ads printer publish <printername> [servername] Will retreive the DsSpooler and DsDriver info by rpc for a remote server then publish it. Next comes doing it within smbd
* Include the hostname we are trying to match with $@, to allow easier debugging.Andrew Bartlett2002-11-151-1/+1
|
* Removed global_myworkgroup, global_myname, global_myscope. Added liberalJeremy Allison2002-11-124-27/+26
| | | | | | dashes of const. This is a rather large check-in, some things may break. It does compile though :-). Jeremy.
* make sure that if kerberos fails we can fall back on NTLMSSP for SASLAndrew Tridgell2002-11-101-2/+5
|
* Merge of get_dc_list() api change. This was slightly more intrusiveTim Potter2002-11-061-12/+7
| | | | than the version in APPLIANCE so watch out for boogs.
* Re-enable use of existing kerberos tickets.Jim McDonough2002-10-311-2/+6
|
* fixed a possible segv when dealing with a blank passwordAndrew Tridgell2002-10-231-2/+6
|
* Format objectGUIDs on ads dumps.Jim McDonough2002-10-181-1/+18
|
* only set UF_USE_DES_KEY_ONLY if we are using krb5 libraries that can'tAndrew Tridgell2002-10-041-3/+7
| | | | do type 23
* support all permitted encoding types in tickets. This allows us toAndrew Tridgell2002-10-041-15/+29
| | | | | decode a type 23 ticket when the machine account is setup for non-DES tickets
* .NET likes both forms of servicePrincipalName in the machine accountAndrew Tridgell2002-10-031-1/+8
| | | | record
* Try to compile as much as possible with only ldap, but not kerberos.Andrew Bartlett2002-09-284-36/+35
|
* Add the beginings of sam_ads to the tree.Andrew Bartlett2002-09-284-3/+46
| | | | | | | | | | | | | | | | This module, primarilly the work of "Stefan (metze) Metzmacher" <metze@metzemix.de>, uses the Active Directory schema to store the user/group/other information. I've been testing it against a real AD server, and it is intended to work with OpenLDAP as well. I've moved a few functions around in our other libads code, which has made it easier to tap into that existing code. Also, I've made some changes to the SAM interface, I hope there are not too many objections... To ensure we don't get silly bugs in the skel module, it is now in the default compile. This way you should not forget to update it :-) Andrew Bartlett
* This needs to be #ifdef HAVE_LDAP.Andrew Bartlett2002-09-281-0/+3
|
* Move a number of ADS related functions out into utility libs, so that thingsAndrew Bartlett2002-09-275-31/+332
| | | | | | | | like metze's sam_ads can also use them. Also add error checking etc to a few more functions. Andrew Bartlett
* Some small cleanups to the libads code (mainly error checking), and give aAndrew Bartlett2002-09-272-5/+28
| | | | | | sane prototype for the push_utf8_allocate code. Andrew Bartlett
* Another patch from metze, towards his work on sam_ads.Andrew Bartlett2002-09-252-2/+98
| | | | See mx-ldap.sf.net for his current progress.
* Avoid a segfault in net join when you have not done an kinit, and it's fallingAndrew Bartlett2002-09-251-0/+5
| | | | | | | back to NTLMSSP. We need to get the password out of the user, and this eventually does. Andrew Bartlett
* Add clock skew handling to our kerberos code. This allows us to cope withAndrew Tridgell2002-09-175-22/+75
| | | | the DC being out of sync with the local machine.
* another const cleanupAndrew Tridgell2002-09-171-1/+1
|
generated by cgit (git 2.34.1) at 2025-09-23 06:50:24 +0000