summaryrefslogtreecommitdiffstats
path: root/source3/include/passdb.h
Commit message (Collapse)AuthorAgeFilesLines
* passdb: Allow a passdb module to do idmap for everythingAndrew Bartlett2014-06-161-1/+4
| | | | | | | | | | | | | | | | | | | | | This patch seems odd, but the pdb_samba_dsdb module has exactly this semantics. That is, the pdb_samba_dsdb is responsible for all IDMAP values, due to backing on to the idmap.ldb allocator. This option is added so we can continue to support the mappings written into that database even when switching winbindd implementations - the source4/ winbind code would only ask the idmap_ldb code, no matter what the SID. Almost all of the behaviour for this is already in winbindd, but we need this extra flag function so as to avoid (currently intentional) errors at startup due to not having a per-domain allocation configured in the smb.conf. Andrew Bartlett Change-Id: I6b0d7a1463fe28dfd36715af0285911ecc07585c Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Kamen Mazdrashki <kamenim@samba.org>
* s3:passdb add a gid argument to pdb_create_builtin_aliasChristian Ambach2013-06-211-1/+1
| | | | | | | | make it possible to skip the allocation of a new gid from winbind by specifying the gid to be used Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* s3:passdb expose pdb_create_builtin functionChristian Ambach2013-06-211-0/+1
| | | | | | | | this one first tries to map the principal before allocating a new gid Signed-off-by: Christian Ambach <ambi@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* s3:passdb add pdb_*_is_responsible_for* functionsChristian Ambach2013-06-211-0/+5
| | | | | | | | | | | | | allows PDB modules to specify for which special domains they are responsible when it comes to SID->xid conversion By default, passdb modules will be responsible for local BUILTIN, local SAM and Unix Users/Groups Pair-Programmed-With: Michael Adam <obnox@samba.org> Signed-off-by: Christian Ambach <ambi@samba.org> Signed-off-by: Michael Adam <obnox@samba.org>
* s3:passdb add idmap control functionsChristian Ambach2013-06-211-1/+8
| | | | | | | | | | make it possible for each backend to specify for which domains it should be asked for SID->xid mappings Pair-Programmed-With: Michael Adam <obnox@samba.org> Signed-off-by: Christian Ambach <ambi@samba.org> Signed-off-by: Michael Adam <obnox@samba.org>
* PASSDB: add support to set and enumerate UPN suffixes associated with our forestAlexander Bokovoy2013-04-091-1/+17
| | | | | | | | | | | | | | | | Samba PDC may manage a forest containing DNS domains in addition to the primary one. Information about them is advertised via netr_DsRGetForestTrustInformation when trusted_domain_name is NULL, according to MS-NRPC and MS-LSAD, and via netr_GetForestTrustInformation. This changeset only expands PASSDB API; how suffixes are maintained is left to specific PDB modules. Set function is added so that suffixes could be managed through 'net' and other Samba utilities, if possible. One possible implementation is available for ipasam module in FreeIPA: http://git.fedorahosted.org/cgit/freeipa.git/commit/?id=cc56723151c9ebf58d891e85617319d861af14a4 Reviewed-by: Andreas Schneider <asn@samba.org>
* s3:passdb: factor pdb_sid_to_id_unix_users_and_groups() out of ↵Michael Adam2012-12-031-0/+3
| | | | | | | | | | pdb_default_sid_to_id() The special treatment of the "Unix User" and "Unix Group" pseudo domains can be reused. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
* s3-passdb: wrap secrets.tdb accessors used by PDB modulesAlexander Bokovoy2012-09-071-0/+11
| | | | | | | | | PDB modules store domain sid and guid in secrets.tdb to cooperate with other parts of smbd. If PDB module is built outside Samba source code it has to be linked against internal libsecrets. Wrap required secrets_* calls to avoid direct linking. libpdb is linked against libsecrets by itself and this is enough.
* s3-passdb: add unixid_from_uid/unixid_from_gid/unixid_from_both APIAlexander Bokovoy2012-05-231-0/+5
| | | | | | | | | | | | | struct unixid is defined in idmap.idl and therefore to use it one would need generated headers from librpc/gen_ndr. Not all of these files are installed and available as public headers. Also, they pull in some support headers which requires them to be available via specific locations like <librpc/gen_ndr/*> or <libcli/util>. Instead of pulling the headers to get structure and enum definitions, introduce three simple helpers to fill in 'struct unixid' based on the type of id. This is sufficient for PASSDB users and does not require exposing generated headers or code.
* s3-passdb: Change pdb_sid_to_id() to return struct unixidAndrew Bartlett2012-05-021-3/+3
| | | | | | | | | This will make it easier to consistantly pass a struct unixid all the way up and down the idmap stack, and allow ID_TYPE_BOTH to be handled correctly. Andrew Bartlett Signed-off-by: Michael Adam <obnox@samba.org>
* s3-passdb: Remove unused sampass->pass_must_change_timeAndrew Bartlett2012-04-191-3/+0
| | | | | | | | | | | | There is no need to call pdb_set_pass_must_change_time() because nothing ever consults that value. It is always calculated from the domain policy. Also, this means we no longer store the value in LDAP. The value would only ever be set when migrating from tdbsam or smbpasswd, not on password changes, so would become incorrect over time. Andrew Bartlett
* s3-passdb: remove a forward declaration.Günther Deschner2012-01-091-7/+6
| | | | Guenther
* Fix bug #8561 - Password change settings not fully observed.Jeremy Allison2011-11-161-0/+1
| | | | | Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Nov 16 00:22:41 CET 2011 on sn-devel-104
* s3-passdb: use tevent_context in passdb.Günther Deschner2011-10-281-2/+3
| | | | | | | Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Fri Oct 28 13:09:47 CEST 2011 on sn-devel-104
* pdb-interface: Do not use unid_t hereSimo Sorce2011-10-181-2/+2
| | | | | | | | This interface needs to be publicly available, unid_t here is not really useful and makes it harder to use it as unid_t is not a public union. Autobuild-User: Simo Sorce <idra@samba.org> Autobuild-Date: Tue Oct 18 20:57:16 CEST 2011 on sn-devel-104
* s3-passdb: remove fstring from pdb_set_user_sid_from_string().Günther Deschner2011-10-141-1/+1
| | | | Guenther
* s3-passdb: add {LM|NT}_HASH_LEN defines in passdb.h.Günther Deschner2011-10-141-0/+8
| | | | Guenther
* s3-passdb: use uintX_t at least in headers.Günther Deschner2011-10-141-4/+4
| | | | Guenther
* s3-passdb: move passdb prototypes into passdb.hGünther Deschner2011-10-141-1/+285
| | | | Guenther
* s3-passdb: move group mapping headers into passdb.hGünther Deschner2011-10-141-1/+87
| | | | Guenther
* s3-group-mapping: Remove fstrings from GROUP_MAP.Simo Sorce2011-10-121-1/+1
| | | | | | | Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Oct 12 19:28:12 CEST 2011 on sn-devel-104
* s3-passdb: Cleanup use of fstring and move to talloc.Simo Sorce2011-09-261-2/+2
| | | | Signed-off-by: Andreas Schneider <asn@samba.org>
* s3-pdb_ipa: Add supprted encryption types to struct pdb_trusted_domainSumit Bose2011-08-311-0/+1
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-pdb_ipa: Add posix offset to struct pdb_trusted_domainSumit Bose2011-08-311-0/+1
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-passdb: add dummy calls to control global (replicated) secrets.Günther Deschner2011-07-311-2/+18
| | | | Guenther
* s3-passdb: move some passdb defines to passdb.hGünther Deschner2011-03-301-0/+29
| | | | Guenther
* s3: include ../librpc/gen_ndr/lsa.h where needed.Günther Deschner2011-03-301-0/+2
| | | | Guenther
* s3-passdb: add machine_sid.h and lookup_sid.hGünther Deschner2011-03-301-0/+2
| | | | Guenther
* s3-passdb: move mapping.h into passdb.h, its needed here.Günther Deschner2011-03-301-0/+2
| | | | Guenther
* s3-passdb: move passdb headers to passdb/proto.h.Günther Deschner2011-03-301-0/+2
| | | | Guenther
* s3:auth: change num_groups to from size_t to uint32_tStefan Metzmacher2011-02-221-1/+1
| | | | | | This will help with the change from UNIX_USER_TOKEN to security_unix_token metze
* s3-passdb: add PDB_CAP_TRUSTED_DOMAINS_EX.Günther Deschner2011-02-171-2/+3
| | | | Guenther
* s3-lsa: Implement lsaRSetForestTrustInformationSumit Bose2011-02-161-0/+1
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-ipasam: add ipasam_get_trusted_domain_by_sid()Sumit Bose2011-02-161-0/+4
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3-passdb: add {get,set,del,enum}_trusted_domain callsSumit Bose2011-02-161-0/+26
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3: Add "code_page" to struct samuVolker Lendecke2011-02-151-0/+2
|
* s3: Add "country_code" to struct samuVolker Lendecke2011-02-151-0/+3
|
* s3: move some stuff out of smb.h to better locations.Günther Deschner2011-02-091-0/+2
| | | | Guenther
* s3-secrets: only include secrets.h when needed.Günther Deschner2010-08-051-0/+9
| | | | Guenther
* s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett2010-05-211-25/+25
| | | | | | | | | | This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3:passdb Remove use of uint8 uint16 and uint32 in favour of C99 typesAndrew Bartlett2010-05-211-30/+30
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s3: move BASE_RID to main includes.h (in preparation to separate passdb).Günther Deschner2010-05-081-2/+0
| | | | Guenther
* s3: Remove a typedefVolker Lendecke2010-03-161-2/+2
|
* s3-passdb: move some defines out of rpc headers (they really belong to passdb).Günther Deschner2009-11-261-0/+15
| | | | Guenther
* s3:passdb: bump interface VERSION 18->19 (removed uid_to_rid)Michael Adam2009-11-141-1/+2
| | | | Michael
* s3:passdb: remove the uid_to_rid method - we only need uid_to_sidMichael Adam2009-11-141-2/+0
| | | | Michael
* s3-account_policy: add pdb_policy_type enum.Günther Deschner2009-07-141-2/+20
| | | | Guenther
* Actually increase PASSDB_INTERFACE_VERSION to 18 :-)Volker Lendecke2009-07-051-1/+1
|
* Add pdb_get_domain_infoVolker Lendecke2009-07-041-0/+11
|
* Make pdb_ads return an additional flagVolker Lendecke2009-07-041-0/+1
|
generated by cgit (git 2.34.1) at 2024-06-13 21:46:24 +0000