summaryrefslogtreecommitdiffstats
path: root/source4/auth/auth_sam_reply.c
Commit message (Collapse)AuthorAgeFilesLines
* auth Move auth_sam_reply into the top level.Andrew Bartlett2011-02-101-390/+0
| | | | | | | | | These functions provide conversions between some netlogon.idl and auth.idl structures Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
* s4-auth Fix setting of bad_password_count in ↵Andrew Bartlett2011-02-091-1/+1
| | | | | | | | auth_convert_user_info_dc_sambaseinfo() Discovered during the convertion to auth_user_info. Andrew Bartlett
* s4-auth Rework auth subsystem to remove struct auth_serversupplied_infoAndrew Bartlett2011-02-091-107/+111
| | | | | | | | | | | | | This changes auth_serversupplied_info into the IDL-defined struct auth_user_info_dc. This then in turn contains a struct auth_user_info, which is the only part of the structure that is mainted into the struct session_info. The idea here is to avoid keeping the incomplete results of the authentication (such as session keys, lists of SID memberships etc) in a namespace where it may be confused for the finalised results. Andrew Barltett
* s4-auth Remove special case for account_sid from auth_serversupplied_infoAndrew Bartlett2011-01-201-46/+106
| | | | | | | | | | | | This makes everything reference a server_info->sids list, which is now a struct dom_sid *, not a struct dom_sid **. This is in keeping with the other sid lists in the security_token etc. In the process, I also tidy up the talloc tree (move more structures under their logical parents) and check for some possible overflows in situations with a pathological number of sids. Andrew Bartlett
* s4-auth Add make_server_info_pac() to include 'resource domain' groupsAndrew Bartlett2010-10-021-0/+37
| | | | | | | | Previously, our PAC code didn't include these groups into the server_info from which we would eventually calculate the full list of tokenGroups. Andrew Bartlett
* s4-auth Allocate domain SIDs under the sids array, not server_infoAndrew Bartlett2010-10-021-1/+1
| | | | Andrew Bartlett
* s4:auth Remove un-needed headers.Andrew Bartlett2010-05-211-1/+0
|
* s4:auth Make it clear to the callers the talloc lifetime.Andrew Bartlett2010-05-181-0/+2
| | | | | | | In other times, we might have used talloc_reference here, but this isn't used as much these days. Andrew Bartlett
* s4:auth/auth_sam_reply.c - fix counter typesMatthias Dieter Wallnöfer2010-04-121-3/+3
|
* Return infinite time for last last logoff when last logoff = 0Matthieu Patou2009-08-031-1/+1
|
* s4:auth: move make_server_info_netlogon_validation() function arroundStefan Metzmacher2009-01-211-0/+139
| | | | metze
* Make sure prototypes are always included, make some functions static andJelmer Vernooij2008-10-201-0/+1
| | | | remove some unused functions.
* netlogon.idl: make use of bitmap samr_GroupAttrsStefan Metzmacher2008-01-241-1/+1
| | | | | metze (This used to be commit 6d68161e676d381600c77c3f862bd7e013968724)
* r26393: Fix inline comment.Günther Deschner2007-12-211-3/+1
| | | | | Guenther (This used to be commit 55c60a374325c875575b93b9792e48082934fb77)
* r23792: convert Samba4 to GPLv3Andrew Tridgell2007-10-101-3/+2
| | | | | | There are still a few tidyups of old FSF addresses to come (in both s3 and s4). More commits soon. (This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
* r19598: Ahead of a merge to current lorikeet-heimdal:Andrew Bartlett2007-10-101-0/+1
| | | | | | | | | Break up auth/auth.h not to include the world. Add credentials_krb5.h with the kerberos dependent prototypes. Andrew Bartlett (This used to be commit 2b569c42e0fbb596ea82484d0e1cb22e193037b9)
* r14860: create libcli/security/security.hStefan Metzmacher2007-10-101-1/+1
| | | | | metze (This used to be commit 9ec706238c173992dc938d537bdf1103bf519dbf)
* r13924: Split more prototypes out of include/proto.h + initial work on headerJelmer Vernooij2007-10-101-0/+1
| | | | | file dependencies (This used to be commit 122835876748a3eaf5e8d31ad1abddab9acb8781)
* r12608: Remove some unused #include lines.Jelmer Vernooij2007-10-101-5/+0
| | | | (This used to be commit 70e7449318aa0e9d2639c76730a7d1683b2f4981)
* r11272: In trying to track down why Win2k3 is again rejecting our PAC, ensureAndrew Bartlett2007-10-101-88/+32
| | | | | | | | | we can round-trip all the way back to a server_info structure, not just a filled in PAC_DATA. (I was worried about generated fields being incorrect, or some other logical flaw). Andrew Bartlett (This used to be commit 11b1d78cc550c60201d12f8778ca8533712a5b1e)
* r9022: One more step in the game of whack-a-mole with the PAC.Andrew Bartlett2007-10-101-7/+27
| | | | | | | | This makes the PAC we generate match (closely) the PAC generated by my test win2k3 DC. Andrew Bartlett (This used to be commit 6172b1868020ac8e828c375f17f4c33fc40eaca4)
* r8164: - match the ordering w2k3 uses for the PAC_BUFFER:Stefan Metzmacher2007-10-101-0/+81
| | | | | | | | | | | | | LOGON_INFO LOGON_NAME SRV_CHECKSUM KDC_CHECKSUM - w2k3 also don't use the groupmembership array with rids it uses the othersids array metze (This used to be commit 2286fad27d749ebba14f5448f1f635bb36750c9c)
* r7993: Further work on the Krb5 PAC.Andrew Bartlett2007-10-101-0/+109
We now generate the PAC, and can verifiy both our own PAC and the PAC from Win2k3. This commit adds the PAC generation code, spits out the code to get the information we need from the NETLOGON server back into a auth/ helper function, and adds a number of glue functions. In the process of building the PAC generation code, some hints in the Microsoft PAC specification shed light on other parts of the code, and the updates to samr.idl and netlogon.idl come from those hints. Also in this commit: The Heimdal build package has been split up, so as to only link the KDC with smbd, not the client utils. To enable the PAC to be veified with gensec_krb5 (which isn't quite dead yet), the keyblock has been passed back to the calling layer. Andrew Bartlett (This used to be commit e2015671c2f7501f832ff402873ffe6e53b89466)
generated by cgit (git 2.34.1) at 2025-09-25 19:31:10 +0000