summaryrefslogtreecommitdiffstats
path: root/source3/winbindd/idmap_ad.c
Commit message (Collapse)AuthorAgeFilesLines
* s3-talloc Change TALLOC_ZERO_P() to talloc_zero()Andrew Bartlett2011-06-091-3/+3
| | | | | Using the standard macro makes it easier to move code into common, as TALLOC_ZERO_P isn't standard talloc.
* s3:idmap: remove the params argument from the init functionMichael Adam2011-03-221-2/+1
|
* s3: Remove close_fn from idmap_methodsVolker Lendecke2011-03-061-23/+0
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Mar 6 13:37:13 CET 2011 on sn-devel-104
* s3: Replace idmap_ad_close by a destructorVolker Lendecke2011-03-061-11/+12
|
* s3-idmap-ad: Make ad_schema properly tallocedVolker Lendecke2011-03-061-4/+2
|
* s3: Remove some unused codeVolker Lendecke2011-03-061-21/+0
|
* s3: Remove unused args from get_nss_infoVolker Lendecke2011-03-061-2/+0
|
* s3: Fix a typoVolker Lendecke2011-02-271-1/+1
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Feb 27 20:14:20 CET 2011 on sn-devel-104
* s3: Fix some nonempty blank linesVolker Lendecke2011-02-271-8/+8
|
* s3: Fix a debug messageVolker Lendecke2011-02-271-2/+3
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Feb 27 16:59:19 CET 2011 on sn-devel-104
* s3:winbindd/idmap_ad.c: update my CMichael Adam2011-01-031-1/+1
| | | | | Autobuild-User: Michael Adam <obnox@samba.org> Autobuild-Date: Mon Jan 3 09:19:07 CET 2011 on sn-devel-104
* s3: Fix bug 7832Volker Lendecke2010-11-301-0/+2
| | | | | | | Signed-off-by: Günther Deschner <gd@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Tue Nov 30 14:39:34 CET 2010 on sn-devel-104
* libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett2010-10-121-1/+1
| | | | | | | | | | | | | | This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
* s3: Replace sid_binstring and sid_guidstring with PIDL-based alternativesAndrew Bartlett2010-09-201-2/+3
| | | | | | | | | This reduces the manual marshalling of these structures by removing the duplication here. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3-util_sid: use shared dom_sid_compare_auth and dom_sid_equal_X functions.Günther Deschner2010-09-201-1/+2
| | | | Guenther
* s3-idmap: only include idmap headers where needed.Günther Deschner2010-08-261-0/+1
| | | | Guenther
* s3:idmap_ad: untangle two assignments from checksMichael Adam2010-08-141-2/+4
|
* s3:idmap_ad: remove unused filter_low_id and filter_high_id from ↵Michael Adam2010-08-141-14/+0
| | | | | | idmap_ad_context The filter range from the idmap_domain is used now.
* s3:idmap_ad: use range from idmap_domain in idmap_ad_sids_to_unixids()Michael Adam2010-08-141-4/+2
|
* s3:idmap_ad: use range from idmap_domain in idmap_ad_unixids_to_sids()Michael Adam2010-08-141-4/+2
|
* s3-secrets: only include secrets.h when needed.Günther Deschner2010-08-051-0/+1
| | | | Guenther
* s3: avoid global include of ads.h.Günther Deschner2010-08-051-0/+1
| | | | Guenther
* s3-nss_info: only include nss_info.h where needed.Günther Deschner2010-07-011-0/+1
| | | | Guenther
* s3-libads: move ldap posix schema defines to their own header file.Günther Deschner2010-07-011-0/+1
| | | | Guenther
* s3-libads: only include libds flags where needed.Günther Deschner2010-07-011-0/+1
| | | | Guenther
* s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett2010-05-211-4/+4
| | | | | | | | | | This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* Add some const to winbind_userinfoVolker Lendecke2009-08-031-3/+3
|
* Make sid_binstring & friends take a talloc contextVolker Lendecke2009-05-281-4/+4
|
* More fix to initialize idmap statusesBo Yang2009-03-021-0/+10
|
* s3: Fix 'ctx' might be used unitialized warningsTim Prouty2008-12-011-2/+2
|
* s3:winbindd/idmap_ad: add entry debug message to nss_ad_get_info()Michael Adam2008-12-011-0/+3
| | | | Michael
* s3:winbindd/idmap_ad: add support for trusted domains to idmap_ad (bug #3661)Michael Adam2008-12-011-126/+221
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | This initial fix does at least work for explicitly configured domains. The patch has a few disadvantages: 1. It does work only for explicitly configured domains, not with the default backend (idmap backend = ad), since it relies on the domain name being passed in via the idmap_domain. One workaround for this would be to create clones of the default idmap_domain for domains not explicitly configured. 2. It calls find_domain_from_name_noinit() from idmap_ad_cached_connection. The problem here is that only the NetBIOS domain name (workgroup name) is passed in via the idmap_domain struct, and the module has to establish a connection to the domain based on that information. find_domain_from_name_noinit() has the disadvantage that it uses the state of the domain list at fork time (unless used from the main winbindd). But this should be ok as long as the primary domain was reachable at start time. For nss_info, the situation is similar - This will only work for domains explicitly configured in smb.conf as follows: "winbind nss info = rfc2307:dom1 sfu:dom2 rfc2307:dom3 template:dom4" Setting the default nss info to one of the ad backends (rfc2307, sfu, sfu20) will fail since the domain name is not passed in with the nss_domain_entry. Michael
* s3:winbindd/idmap_ad: refactor core of nss_{sfu|sfu20|rfc2307}_init to ↵Michael Adam2008-12-011-34/+48
| | | | | | common function. Michael
* s3:winbindd/idmap_ad: rename ctx to mem_ctx in nss_ad_get_info()Michael Adam2008-12-011-8/+8
| | | | | | in preparation to using the idmap_ad_context there Michael
* s3:winbindd/nss_info: change nss_map_{to|from}_alias to take nss_domain_entryMichael Adam2008-12-011-3/+3
| | | | | | instead of just the domain name Michael
* Revert "UNFINISHED - s3:idmap_ad: multi-domain"Michael Adam2008-11-251-83/+69
| | | | | | | | This reverts commit 6a4957d35d50e6508917aca62b282ae4904187c8. Sorry - this got accidentially pushed. Michael
* UNFINISHED - s3:idmap_ad: multi-domainMichael Adam2008-11-251-69/+83
| | | | Michael
* Fix a valgrind error in idmap_ad_sids_to_unixids()Volker Lendecke2008-10-201-0/+2
| | | | | | | | We need to initialize all mappings in case we don't find anything. Simo, please check! Volker
* * Allow an admin to define the "uid" attribute for a RFC2307Gerald (Jerry) Carter2008-09-161-9/+168
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | user object in AD to be the username alias. For example: $ net ads search "(uid=coffeedude)" distinguishedName: CN=Gerald W. Carter,CN=Users,DC=pink,DC=plainjoe,DC=org sAMAccountName: gcarter memberOf: CN=UnixUsers,CN=Users,DC=pink,DC=plainjoe,DC=org memberOf: CN=Domain Admins,CN=Users,DC=pink,DC=plainjoe,DC=org memberOf: CN=Enterprise Admins,CN=Users,DC=pink,DC=plainjoe,DC=org memberOf: CN=Schema Admins,CN=Users,DC=pink,DC=plainjoe,DC=org uid: coffeedude uidNumber: 10000 gidNumber: 10000 unixHomeDirectory: /home/gcarter loginShell: /bin/bash $ ssh coffeedude@192.168.56.91 Password: coffeedude@orville:~$ id uid=10000(coffeedude) gid=10000(PINK\unixusers) groups=10000(PINK\unixusers) $ getent passwd PINK\\gcarter coffeedude:*:10000:10000::/home/gcarter:/bin/bash $ getent passwd coffeedude coffeedude:*:10000:10000::/home/gcarter:/bin/bash $ getent group PINK\\Unixusers PINK\unixusers:x:10000:coffeedude
* idmap_ad: Fix a segfault when calling nss_get_info() with a NULL ads structure.Gerald W. Carter2008-09-151-12/+69
|
* idmap rewriteVolker Lendecke2008-08-121-18/+2
| | | | (This used to be commit 30a180f2fce8cf6a3e5548f6bba453272ba70b33)
* Revert "Fix nonempty whitespace only lines"Volker Lendecke2008-07-111-17/+17
| | | | | This reverts commit cc77db2acbc35cea58576f1e28c7a760a5e31609. (This used to be commit ed5b516c2027d78011cdaa7cbbc01bb01e766381)
* Revert "Tiny logic simplification: Remove an unnecessary else branch"Volker Lendecke2008-07-111-8/+8
| | | | | This reverts commit 6009ae329375b1c40e3d00df977ddccc8b5cc176. (This used to be commit b71ce00796efdd27b593bbbc36f5cbba23fe9240)
* Revert "Fix typo"Volker Lendecke2008-07-111-2/+1
| | | | | This reverts commit fe79c8a5b726754703626ca0bff57074274c98c7. (This used to be commit 62835f8d7e824a5d469ec5f79e4db739e6602f4f)
* Revert "Fix indentation"Volker Lendecke2008-07-111-1/+1
| | | | | This reverts commit c4e6de9e34e1ff76552ce6d4e72b343fb5f33306. (This used to be commit fa9b128e93cca45b9516917f73f586197e7637f3)
* Fix indentationVolker Lendecke2008-07-031-1/+1
| | | | (This used to be commit c4e6de9e34e1ff76552ce6d4e72b343fb5f33306)
* Fix typoVolker Lendecke2008-07-021-1/+2
| | | | (This used to be commit fe79c8a5b726754703626ca0bff57074274c98c7)
* Tiny logic simplification: Remove an unnecessary else branchVolker Lendecke2008-07-021-8/+8
| | | | (This used to be commit 6009ae329375b1c40e3d00df977ddccc8b5cc176)
* Fix nonempty whitespace only linesVolker Lendecke2008-07-021-17/+17
| | | | (This used to be commit cc77db2acbc35cea58576f1e28c7a760a5e31609)
* Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke2007-12-151-4/+2
| | | | (This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
generated by cgit (git 2.34.1) at 2025-09-25 19:46:04 +0000