summaryrefslogtreecommitdiffstats
path: root/source/utils/pdbedit.c
Commit message (Collapse)AuthorAgeFilesLines
* Fix obvious compiler warnings.Jeremy Allison2003-05-121-1/+0
| | | | Jeremy.
* And finally IDMAP in 3_0Simo Sorce2003-05-121-35/+25
| | | | | | | | | | | | | | | | | | | | We really need idmap_ldap to have a good solution with ldapsam, porting it from the prvious code is beeing made, the code is really simple to do so I am confident it is not a problem to commit this code in. Not committing it would have been worst. I really would have been able to finish also the group code, maybe we can put it into a followin release after 3.0.0 even if it may be an upgrade problem. The code has been tested and seem to work right, more testing is needed for corner cases. Currently winbind pdc (working only for users and not for groups) is disabled as I was not able to make a complete group code replacement that works somewhat in a week (I have a complete patch, but there are bugs) Simo.
* Make it possible to actually use --user-SID and --group-SID on a standard ↵Andrew Bartlett2003-05-121-2/+2
| | | | | | command line. Andrew Bartlett
* Reverse previous patch from Stefan and me after comments by Andrew BartlettJelmer Vernooij2003-05-101-3/+0
|
* Patch from metze and me that adds dummy smb_register_*() functions soJelmer Vernooij2003-05-101-0/+3
| | | | | that is now possible to, for example, load a module which contains an auth method into a binary without the auth/ subsystem built in.
* Use a common function to create the SAM_ACCOUNT being used to add accountsAndrew Bartlett2003-04-291-12/+4
| | | | | | | | to the system. This means that we always run Get_Pwnam(), and can never add FOO when foo exists on the system (the idea is to instead add foo into the passdb, using it's full name, RID etc). Andrew Bartlett
* back port from HEADSimo Sorce2003-04-261-5/+74
|
* Merge Jelmer's popt updates from HEAD.Tim Potter2003-04-141-5/+4
|
* Implement abartlet's suggestion to add attribs to ldap if theyVolker Lendecke2003-03-231-6/+0
| | | | | | | | | are 'SET' when adding the account. I really don't like passing flags down to inner routines and complicated if/else conditions, but this time he might be right. ;-) Volker
* This does two things:Volker Lendecke2003-03-231-1/+37
| | | | | | | | | | | | | | | | | | | | | | * pdbedit -i -e sets all SAM_ACCOUNT elements to CHANGED to satisfy the new pdb_ldap.c handling * pdbedit -g transfers group mappings. I made this separate from the user database, as current installations have to live with a split backend. So, if you are running 3_0 alphas with LDAP as a backend and upgrade to the next 3_0 alpha, you should call pdbedit -i tdbsam -e ldapsam -g to transfer your group mapping database to LDAP. You certainly have to have all your groups as posixGroup objects in LDAP and adapt the LDAP schema before this call. Volker
* Jeremy merged across my string parinoia fixes, but forgot to enable them! :-)Andrew Bartlett2003-03-181-10/+12
| | | | | | | | | | This patch catches up on the rest of the work - as much string checking as is possible is done at compile time, and the rest at runtime. Lots of code converted to pstrcpy() etc, and other code reworked to correctly call sizeof(). Andrew Bartlett
* Invert flag testingVolker Lendecke2003-02-071-3/+5
|
* merge from HEADVolker Lendecke2003-02-061-4/+22
|
* Fix memory leak. Thanks, Herb!Volker Lendecke2003-01-071-0/+1
| | | | Volker
* Merge from HEAD.Volker Lendecke2003-01-071-4/+14
| | | | Volker
* Merge from HEAD - make Samba compile with -Wwrite-strings without additionalAndrew Bartlett2003-01-031-12/+16
| | | | | | warnings. (Adds a lot of const). Andrew Bartlett
* Revert by Simo's request. HEAD and 3.0 should be in sync forJeremy Allison2002-12-281-10/+2
| | | | | this except for the modules load. Jeremy.
* Patch for coredump with missing arg from "Bradley W. Langhorst" ↵Jeremy Allison2002-12-281-1/+8
| | | | | | <brad@langhorst.com> Jeremy.
* Removed global_myworkgroup, global_myname, global_myscope. Added liberalJeremy Allison2002-11-121-13/+4
| | | | | | dashes of const. This is a rather large check-in, some things may break. It does compile though :-). Jeremy.
* Merge passdb from HEAD -> 3.0Andrew Bartlett2002-11-021-15/+15
| | | | | | | | | | | | | | | | | The work here includes: - metze' set/changed patch, which avoids making changes to ldap on unmodified attributes. - volker's group mapping in passdb patch - volker's samsync stuff - volkers SAMR changes. - mezte's connection caching patch - my recent changes (fix magic root check, ldap ssl) Andrew Bartlett
* sync with head...Jelmer Vernooij2002-10-281-19/+13
|
* sync with HEADGerald Carter2002-09-261-13/+13
|
* sync'ing up for 3.0alpha20 releaseGerald Carter2002-09-251-1/+12
|
* sync 3.0 branch with HEADJelmer Vernooij2002-08-171-90/+226
|
* updated the 3.0 branch from the head branch - ready for alpha18Andrew Tridgell2002-07-151-351/+187
|
* second step to gain free uid<->rid mappingSimo Sorce2002-03-191-0/+2
| | | | we still need to free gid<->rid mapping and few other stuff
* more verbose checking in talloc and util_pwSimo Sorce2002-03-181-9/+10
| | | | | fixed tdbsam memory corruption (and segfault) reducing calls to pdb_uid_to_user_rid and countrary to 0 to move to a non alghoritmic rid allocation with some passdb modules.
* Initialise some SAM_ACCOUNT structs to NULL, and add some more error checking.Andrew Bartlett2002-01-311-6/+14
| | | | Andrew Bartlett
* Removed version number from file header.Tim Potter2002-01-301-2/+1
| | | | Changed "SMB/Netbios" to "SMB/CIFS" in file header.
* Give pdbedit a -D paramater for setting the DEBUGLEVEL (makes debugging passdbAndrew Bartlett2002-01-271-5/+10
| | | | | | | | | much saner :-). Change to pdb_init_sam()/pdb_free_sam() loop rather than reset based due to the talloc basis. Andrew Bartlett
* Try to get the compiler not to complain about assignments and truth values...Andrew Bartlett2002-01-261-2/+1
| | | | Andrew Bartlett
* getpwnam -> getpwnam_alloc.Andrew Bartlett2002-01-231-6/+10
| | | | idra has promised not to revert these this time :-)
* This is another *BIG* change...Andrew Bartlett2002-01-201-35/+26
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Samba now features a pluggable passdb interface, along the same lines as the one in use in the auth subsystem. In this case, only one backend may be active at a time by the 'normal' interface, and only one backend per passdb_context is permitted outside that. This pluggable interface is designed to allow any number of passdb backends to be compiled in, with the selection at runtime. The 'passdb backend' paramater has been created (and documented!) to support this. As such, configure has been modfied to allow (for example) --with-ldap and the old smbpasswd to be selected at the same time. This patch also introduces two new backends: smbpasswd_nua and tdbsam_nua. These two backends accept 'non unix accounts', where the user does *not* exist in /etc/passwd. These accounts' don't have UIDs in the unix sense, but to avoid conflicts in the algroitmic mapping of RIDs, they use the values specified in the 'non unix account range' paramter - in the same way as the winbind ranges are specifed. While I was at it, I cleaned up some of the code in pdb_tdb (code copied directly from smbpasswd and not really considered properly). Most of this was to do with % macro expansion on stored data. It isn't easy to get the macros into the tdb, and the first password change will 'expand' them. tdbsam needs to use a similar system to pdb_ldap in this regard. This patch only makes minor adjustments to pdb_nisplus and pdb_ldap, becouse I don't have the test facilities for these. I plan to incoroprate at least pdb_ldap into this scheme after consultation with Jerry. Each (converted) passdb module now no longer has any 'static' variables, and only exports 1 init function outside its .c file. The non-unix-account support in this patch has been proven! It is now possible to join a win2k machine to a Samba PDC without an account in /etc/passwd! Other changes: Minor interface adjustments: pdb_delete_sam_account() now takes a SAM_ACCOUNT, not a char*. pdb_update_sam_account() no longer takes the 'override' argument that was being ignored so often (every other passdb backend). Extra checks have been added in some places. Minor code changes: smbpasswd no longer attempts to initialise the passdb at startup, this is now done on first use. pdbedit has lost some of its 'machine account' logic, as this behaviour is now controlled by the passdb subsystem directly. The samr subsystem no longer calls 'local password change', but does the pdb interactions directly. This allow the ACB_ flags specifed to be transferred direct to the backend, without interference. Doco: I've updated the doco to reflect some of the changes, and removed some paramters no longer applicable to HEAD.
* Change the passdb interface to use allocated strings.Andrew Bartlett2002-01-151-1/+1
| | | | | | | | | | | | | | | | | | | | | | These strings are allocated using talloc(), either using its own memory context stored on the SAM_ACCOUNT or one supplied by the caller. The pdb_init_sam() and pdb_free_sam() function have been modifed so that a call to pdb_free_sam() will either clean up (remove hashes from memory) and destroy the TALLOC_CTX or just clean up depending on who supplied it. The pdb_init_sam and pdb_free_sam functions now also return an NTSTATUS, and I have modified the 3 places that actually checked these returns. The only nasty thing about this patch is the small measure needed to maintin interface compatability - strings set to NULL are actually set to "". This is becouse there are too many places in Samba that do strlen() on these strings without checking if they are NULL pointers. A supp patch will follow to set all strings to "" in pdb_default_sam(). Andrew Bartlett
* merge changes from 2.2 branch to prevent smb.conf from changing debug levelHerb Lewis2002-01-071-0/+4
| | | | of commands when specified on command line.
* Actually enforce the passdb API.Andrew Bartlett2002-01-021-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | Thou shalt not reference SAM_ACCOUNT members directly - always use pdb_get/pdb_set. This is achived by making the whole of SAM_ACCOUNT have a .private member, where the real members live. This caught a pile of examples, and these have beeen fixed. The pdb_get..() functions are 'const' (have been for some time) and this required a few small changes to constify other functions. I've also added some debugs to the pdb get and set, they can be removed if requested. I've rewritten the copy_id2x_to_sam_pass() functions to use the new passdb interface, but I need the flags info to do it properly. The pdb_free_sam() funciton now blanks out the LM and NT hashes, and as such I have removed many extra 'samr_clear_sam_passwd(smbpass)' calls as a result. Finally, any and all testing is always appriciated - but the basics seem to work. Andrew Bartlett
* reverted to 1.24 and manually merged in changes from 2.2Gerald Carter2001-12-311-194/+71
|
* fix compile errorGerald Carter2001-12-311-1/+3
|
* some merges from 2.2. Still need to merge in changes from pdb_tdb.cGerald Carter2001-12-311-74/+199
| | | | | but it will take more time as I don't want to loose any fixes that are only in HEAD.
* moving SAM_ACCOUNT to include a bit field for initializedGerald Carter2001-12-271-9/+9
| | | | | | | | | | | | | | | | | | | | members (such as uid and gid). This way we will be able to keep ourselves from writing out default smb.conf settings when the admin doesn't want to, That part is not done yet. Tested compiles with ldap/tdb/smbpasswd. Tested connection with smbpasswd backend. oh...and smbpasswd doesn'y automatically expire accounts after 21 days from the last password change either now. Just ifdef'd out that code in build_sam_account(). Will merge updates into 2.2 as they are necessary. jerry
* Minor typosVolker Lendecke2001-11-251-2/+2
|
* Removed TimeInit() call from every client program (except for one placeTim Potter2001-11-231-2/+0
| | | | | in smbd/process.c where the timezone is reinitialised. Was replaced with check for a static is_initialised boolean.
* Store some path names in global variables initialized to configureMartin Pool2001-11-191-3/+2
| | | | default, rather than in preprocessor macros.
* Fix up pdbedit so that it at least compiles without warnings.Andrew Bartlett2001-11-041-92/+61
| | | | | | - Basic functionality intact - Now adds machine accounts without a uid. (using the machine uid range to avoid conflict with real uid based accounts)
* Added NT_USER_TOKEN into server_info to fix extra groups problem.Jeremy Allison2001-11-031-4/+4
| | | | | Got "medieval on our ass" about const warnings (as many as I could :-). Jeremy.
* clear errno before a call, tdbsam will not update it.Simo Sorce2001-10-291-1/+1
| | | | just a hack to make things work.
* Removed 'extern int DEBUGLEVEL' as it is now in the smb.h header.Tim Potter2001-10-021-1/+0
|
* Don't try to write the LM password in the NT password feild.Andrew Bartlett2001-09-301-1/+0
|
* Fix up a number of intertwined issues:Andrew Bartlett2001-09-291-18/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The big one is a global change to allow us to NULLify the free'ed pointer to a former passdb object. This was done to allow idra's SAFE_FREE() macro to do its magic, and to satisfy the input test in pdb_init_sam() for a NULL pointer to start with. This NULL pointer test was what was breaking the adding of accounts up until now, and this code has been reworked to avoid duplicating work - I hope this will avoid a similar mess-up in future. Finally, I fixed a few nasty bugs where the pdb_ fuctions's return codes were being ignored. Some of these functions malloc() and are permitted to fail. Also, this caught a nasty bug where pdb_set_lanman_password(sam, NULL) acheived precisely didilly-squat, just returning False. Now that we check the returns this bug was spotted. This could allow different LM and NT passwords. - the pdbedit code needs to start checking these too, but I havn't had a chance to fix it. I have also fixed up where some of the password changing code was using the pdb_set functions to store *internal* data. I assume this is from a previous lot of mass conversion work... Most likally (and going on past experience) I have missed somthing, probably in the LanMan password change code which I havn't yet been able to test, but this lot is in much better shape than it was before. If all this is too much to swallow (particularly for 2.2.2) then just adding a sam_pass = NULL to the particular line of passdb.c should do the trick for the ovbious bug. Andrew Bartlett
* Removed smbpasswd_XX call (how did this get re-added, I removed allJeremy Allison2001-09-271-1/+1
| | | | | these yesterday ?). Jeremy.
generated by cgit (git 2.34.1) at 2025-09-26 02:31:00 +0000