summaryrefslogtreecommitdiffstats
path: root/source3/auth
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-waf: move RPC_CLIENT_SCHANNEL into a subsystem.Günther Deschner2010-10-201-0/+1
| | | | Guenther
* s3-rpc_server: Make auth_serversupplied_info const.Andreas Schneider2010-10-151-1/+1
|
* s3-auth Use security_token_debug() from common codeAndrew Bartlett2010-10-142-27/+1
| | | | | | | | | This prints the security token including the privileges as strings instead of just a bitmap. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-auth use security_token_has_sid() from the common codeAndrew Bartlett2010-10-141-9/+2
| | | | | | | | | The wrapper call is left here to avoid changing semantics for the NULL parameter case. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett2010-10-123-3/+3
| | | | | | | | | | | | | | This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
* s3-waf: slowly getting modules to match how they look like in old build.Günther Deschner2010-10-081-19/+19
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Oct 8 09:31:01 UTC 2010 on sn-devel-104
* s3-waf: add AUTH_SCRIPT module to AUTH subsystem (which is build as sharedGünther Deschner2010-09-281-0/+7
| | | | | | module by default). Guenther
* s3-waf: fix dependencies in most of our module subsystems.Günther Deschner2010-09-281-6/+2
| | | | Guenther
* s3-auth_util: make sure the system server info actually contains S-1-5-18.Günther Deschner2010-09-281-0/+9
| | | | | | | | | Without this, all security descriptor checks for the winreg spoolss backend fail and make our spoolss system in its current shape basically unusable. Andreas, please check. Guenther
* s3-waf: move auth subsystem to auth/wscript_build.Günther Deschner2010-09-271-0/+84
| | | | Guenther
* s3: Remove talloc_autofree_context() from get_root_nt_token()Volker Lendecke2010-09-261-1/+1
| | | | The memcache_add_talloc() later on steals it anyway
* s3: Lift talloc_autofree_context() from make_auth_context_fixed()Volker Lendecke2010-09-261-3/+4
|
* s3: Lift talloc_autofree_context() from make_auth_context_subsystem()Volker Lendecke2010-09-263-6/+11
|
* s3: Lift talloc_autofree_context() from make_auth_context_text_list()Volker Lendecke2010-09-261-3/+6
|
* s3: Lift talloc_autofree_context() from make_auth_context()Volker Lendecke2010-09-261-3/+7
|
* s3: Fix a memleak in make_new_server_info_system()Volker Lendecke2010-09-261-0/+1
|
* s3: Remove talloc_autofree_context() from init_system_info()Volker Lendecke2010-09-261-1/+2
|
* s3: Fix a typoVolker Lendecke2010-09-251-1/+1
|
* s3-util: use shared dom_sid_dup.Günther Deschner2010-09-202-6/+7
| | | | Guenther
* s3-util_sid: use shared dom_sid_compare_auth and dom_sid_equal_X functions.Günther Deschner2010-09-202-4/+5
| | | | Guenther
* libcli/auth/ntlmssp Be clear about talloc parents for session keysAndrew Bartlett2010-09-161-9/+16
| | | | | | | | | | The previous API was not clear as to who owned the returned session key. This fixes a valgrind-found use-after-free in the NTLMSSP key derivation code, and avoids making allocations - we steal and zero instead. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Call security_token_set_privilege() rather than manual assignmentAndrew Bartlett2010-09-111-1/+1
| | | | | | | | This avoids as much direct modifiction of the bitmask as possible. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-privs Inline dump_se_priv into callers now that it's just a uint64_tAndrew Bartlett2010-09-111-1/+1
| | | | | | | | The previous 128 bit structure needed this helper function. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3:auth Remove NT_USER_TOKENAndrew Bartlett2010-09-112-8/+8
| | | | | | | | | The all UPPER case typedef is no longer the preferred Samba style and this makes it easier to see that this is the IDL-derivied structure Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-auth Change struct nt_user_token -> struct security_tokenAndrew Bartlett2010-09-111-14/+14
| | | | | | | | This common structure is defined in security.idl Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-auth Change type of num_sids to uint32_tAndrew Bartlett2010-09-111-5/+7
| | | | | | | | | | | | | | size_t is overkill here, and in struct security_token in the num_sids is uint32_t. This includes a change to the prototype of add_sid_to_array() and add_sid_to_array_unique(), which has had a number of consequnetial changes as I try to sort out all the callers using a pointer to the number of sids. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s3-auth: Added get_server_info_system function.Andreas Schneider2010-09-091-0/+5
|
* s3-auth: fix uninitialized error code in get_guest_info3().Günther Deschner2010-09-011-2/+1
| | | | Guenther
* s3-auth: remove global include of krb5pac.h.Günther Deschner2010-08-312-0/+2
| | | | Guenther
* s3-auth: remove unused variable in check_sam_security().Günther Deschner2010-08-311-1/+1
| | | | Guenther
* s3-auth Rename NT_USER_TOKEN privileges -> privilege_maskAndrew Bartlett2010-08-311-3/+3
| | | | | | This is closer to the struct security_token from security.idl Andrew Bartlett
* s3-auth Rename NT_USER_TOKEN user_sids -> sidsAndrew Bartlett2010-08-312-29/+29
| | | | This is closer to the struct security_token from security.idl
* s3-auth: The unlock of the account is now done by the get_sampwnam call.Andreas Schneider2010-08-301-5/+2
| | | | Signed-off-by: Simo Sorce <idra@samba.org>
* s3-auth: Use SamInfo3_for_guest to create guest server_info.Andreas Schneider2010-08-301-19/+70
| | | | Signed-off-by: Simo Sorce <idra@samba.org>
* s3-auth: add helper to get server_info out of kerberos infoSimo Sorce2010-08-301-0/+100
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-auth: Add helper function to retrieve the unix user from a kerberos ticketSimo Sorce2010-08-301-0/+172
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Remove a use of smbd_server_fdVolker Lendecke2010-08-291-1/+1
| | | | | This disables different socket options per user for ntlmssp authentiation, a change in behaviour which is exotic enough I believe.
* s3: Remove smbd_server_conn() from check_unix_securityVolker Lendecke2010-08-281-7/+2
|
* s3: Lift smbd_server_fd() from pass_check()Volker Lendecke2010-08-282-7/+8
|
* s3: Lift smbd_server_fd() from password_check()Volker Lendecke2010-08-281-11/+13
|
* s3: Fix some nonempty blank linesVolker Lendecke2010-08-281-15/+15
|
* s3: Fix smb_pam_passcheckVolker Lendecke2010-08-281-2/+2
|
* s3: Those functions are no macros anymore :-)Volker Lendecke2010-08-281-4/+0
|
* s3: Lift smbd_server_fd() from smb_pam_passcheckVolker Lendecke2010-08-272-8/+10
|
* s3: Lift smbd_server_fd() from smb_pam_startVolker Lendecke2010-08-271-16/+9
| | | | | smb_pam_passcheck() is the only caller that fills in NULL, all other callers now properly fill rhost
* s3: Pass "private_data" through string_combinations()Volker Lendecke2010-08-271-12/+24
|
* s3: Pass rhost through to smb_pam_passchangeVolker Lendecke2010-08-271-2/+3
|
* s3: Fix typosVolker Lendecke2010-08-261-2/+2
|
* s3-build: only include nsswitch header where needed.Günther Deschner2010-08-261-0/+1
| | | | Guenther
* s3-build: only include memcache.h where needed.Günther Deschner2010-08-261-0/+1
| | | | Guenther
generated by cgit (git 2.34.1) at 2025-09-26 21:29:53 +0000