summaryrefslogtreecommitdiffstats
path: root/source4/ldap_server
Commit message (Collapse)AuthorAgeFilesLines
...
* waf: Remove lib prefix from libraries manually.Jelmer Vernooij2010-10-261-1/+1
|
* s4: Rename LIBCLI_LDAP to libcli_ldap.Jelmer Vernooij2010-10-241-1/+1
|
* s4: Rename LIBSAMBA-* to libsamba-*Jelmer Vernooij2010-10-241-1/+1
|
* s4-ldap: mark all ldap:// requests as untrustedAndrew Tridgell2010-10-191-0/+21
| | | | | | this allows the rootdse module to filter unregistered controls Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4:ldap_server - use error code constantMatthias Dieter Wallnöfer2010-10-181-1/+1
| | | | | Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Mon Oct 18 20:32:40 UTC 2010 on sn-devel-104
* ldap_server: Add missing dependency on gensec_server_start.Jelmer Vernooij2010-10-111-1/+1
|
* samdb: Add flags argument to samdb_connect().Jelmer Vernooij2010-10-102-4/+2
|
* s4:ldap_server: rewrite to socket layer to use tstreamStefan Metzmacher2010-10-084-305/+690
| | | | | | | | | | This should make our sasl and tls handling much more robust against partial sent pdus. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Oct 8 11:55:26 UTC 2010 on sn-devel-104
* Revert "s4:ldap_server: rewrite to socket layer to use tstream"Stefan Metzmacher2010-10-074-694/+305
| | | | | | | | | | | | | | This reverts commit b53fbc75acc525f2e2450370e704a62791271788. There are problems with problems with broken gnutls versions. We can readd this once we have the needed configure checks to detect the bug in gnutls. See https://bugzilla.samba.org/show_bug.cgi?id=7218. metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Thu Oct 7 10:31:18 UTC 2010 on sn-devel-104
* s4:ldap_server: rewrite to socket layer to use tstreamStefan Metzmacher2010-10-044-308/+697
| | | | | | | This should make our sasl and tls handling much more robust against partial sent pdus. metze
* s4-ldap: Added a control to apply the access checks on read via LDAPNadezhda Ivanova2010-09-261-0/+1
|
* s4-ldapserver: serialise ldap server operationsAndrew Tridgell2010-09-072-0/+60
| | | | | | | | | This ensures that two ldap server operations cannot happen in parallel by using packet_recv_disable() and packet_recv_enable() to disable other interfaces during ldap calls. This prevents problems caused by parallel ldap operations where transactions could overlap.
* s4:ldap_server use talloc_unlink() to avoid talloc_free() with referencesAndrew Bartlett2010-08-181-4/+4
| | | | | | Both the session_info and the ldb can have references. Andrew Bartlett
* s4-ldapserver: support controls on ldap add and renameAndrew Tridgell2010-08-171-10/+12
| | | | | | we need to pass the controls down to the add and rename ldb operations Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4:ldap_backend.c - Windows returns WERROR codes in majuscule HEX formatMatthias Dieter Wallnöfer2010-08-151-1/+1
|
* s4:ldap_backend.c - map error codes - add a change which allows custom ↵Matthias Dieter Wallnöfer2010-08-151-0/+13
| | | | | | | | | | WERROR codes This is strictly needed by my recent passwords work, since I want to remove most of the password change stuff in "samr_password.c". Since AD gives us CONSTRAINT_VIOLATION on all change problems I cannot distinguish on the SAMR level which the real cause was about. Therefore I need the extended WERROR codes here.
* s4:ldap_backend.c - fix a DS error code after WERROR changeMatthias Dieter Wallnöfer2010-08-141-1/+1
|
* s4-loadparm: 2nd half of lp_ to lpcfg_ conversionAndrew Tridgell2010-07-162-15/+15
| | | | | | | this converts all callers that use the Samba4 loadparm lp_ calling convention to use the lpcfg_ prefix. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed use after free of sasl mechanisms opaqueAndrew Tridgell2010-07-021-0/+6
| | | | | | | the supportedSASLMechanisms opaque must live for at least as long as the ldb, or we can crash when the first connection is torn down Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4-dsdb: fixed spelling of supportedSASLMechanismsAndrew Tridgell2010-07-021-1/+1
| | | | Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
* s4:ldap_server: don't start if we can't bind to port 389Stefan Metzmacher2010-06-281-1/+4
| | | | metze
* s4:ldap_backend.c - now also the LDAP server supports controls on delete ↵Matthias Dieter Wallnöfer2010-06-201-5/+7
| | | | operations
* s4:ldap_backend.c - move function "ldb_mod_req_with_controls" to a better ↵Matthias Dieter Wallnöfer2010-06-201-51/+52
| | | | | | place in the code Under the "add" and over the "delete" function.
* s4:ldap_backend.c - add some newlines to make logs easier to readMatthias Dieter Wallnöfer2010-06-201-5/+5
|
* s4:ldap_backend.c - more customisations to match Windows Server error ↵Matthias Dieter Wallnöfer2010-06-191-13/+16
| | | | behaviour on renames
* s4:ldap_backend.c - fix crash bugs when we got in error situations with ↵Matthias Dieter Wallnöfer2010-06-181-5/+4
| | | | "res" still set to "NULL"
* s4:ldap_backend.c - fix a small error (use "ModifyResponse" rather than ↵Matthias Dieter Wallnöfer2010-06-181-1/+1
| | | | "AddResponse")
* s4:lib: merge LDB_WRAP and LDBSAMBA and make LDBSAMBA a library.Stefan Metzmacher2010-06-161-1/+1
| | | | | | | | | This is needed to remove samba specifc symbols from the bundled ldb, in order to get the ABI right. metze Signed-off-by: Andreas Schneider <asn@samba.org>
* s4:ldap_server/ldap_backend.c - send back also the extended error message if ↵Matthias Dieter Wallnöfer2010-06-061-18/+39
| | | | | | it exists This message often contains suggestions how to fix issues.
* s4:libcli/ldap Rename ldap.h to libcli_ldap.hAndrew Bartlett2010-05-215-5/+1
| | | | | | | It is a problem if a samba header is called ldap.h if we also want to use OpenLDAP's ldap.h Andrew Bartlett
* s4/rodc: Support read-only databaseAnatoliy Atanasov2010-05-041-20/+174
| | | | | | Check on modify if we are RODC and return referral. On the ldap backend side now we pass context and ldb_modify_default_callback to propagate the referral error to the client.
* s4:auth Remove event context from anonymous_session()Andrew Bartlett2010-04-111-1/+1
| | | | | | | | This should always return a simple structure with no need to consult a DB, so remove the event context, and simplfy to call helper functions that don't look at privilages. Andrew Bartlett
* s4-waf: removed the AUTOGENERATED markersAndrew Tridgell2010-04-061-3/+0
| | | | we won't be using the mk -> wscript generator again
* s4-waf: mark the wscript files as python so vim/emacs knows how to highlight ↵Andrew Tridgell2010-04-061-0/+2
| | | | them
* build: commit all the waf build files in the treeAndrew Tridgell2010-04-061-0/+12
|
* s4:ldap_server - make it "signed-safe"Matthias Dieter Wallnöfer2010-02-253-7/+8
| | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* s4:LDAP server - Enable support for returning referrals through itMatthias Dieter Wallnöfer2010-02-251-0/+22
| | | | | | | This is needed for my work regarding the referrals when the domain scope control isn't specified. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
* Added freeing a successful req so it doesnt croud the ldb contextNadezhda Ivanova2009-12-181-2/+4
|
* Removed ldb_modify_ctrl from ldb, implemented as a static in ldap_backend.Nadezhda Ivanova2009-12-151-1/+43
|
* Some changes to allow processing of ldap controls on modify requests.Nadezhda Ivanova2009-11-201-1/+1
| | | | | ldap_backend used to filter out ldap controls on modify. Also, modified python binding for ldap_modify to allow writing tests for such controls.
* s4-samdb: reduce the number of samdb opens at startupAndrew Tridgell2009-10-251-4/+2
| | | | | Using common parameters means that the ldb_wrap code can return a reference rather than a new database
* s4-ldbwrap: added re-use of ldb contexts in ldb_wrap_connect()Andrew Tridgell2009-10-231-1/+1
| | | | | | | | | This allows us to reuse a ldb context if it is open twice, instead of going through the expensive process of a full ldb open. We can reuse it if all of the parameters are the same. The change relies on callers using talloc_unlink() or free of a parent to close a ldb context.
* s4-dsdb: add a static samdb_credentialsAndrew Tridgell2009-10-231-2/+2
| | | | | Similarly to system_session(), this creates a static samdb_credentials()
* s4-dsdb: create a static system_session contextAndrew Tridgell2009-10-231-1/+1
| | | | | | This patch adds a system_session cache, preventing us from having to recreate it on every ldb open, and allowing us to detect when the same session is being used in ldb_wrap
* s4:ldap server - remove unused error handlingsMatthias Dieter Wallnöfer2009-10-081-35/+0
| | | | | Those error cases should be handled by LDB itself to be available on all connection methods and not only over LDAP.
* s4:LDB/LDAP - Re-allow renamesMatthias Dieter Wallnöfer2009-10-021-1/+1
| | | | | | The main problem is that the "rdn_name" module launches on a rename request also a modification one with the "special attributes" which can't be changed directly. An introduced flag helps to bypass the restriction.
* s4:ldap_server Ensure we don't segfault when sent a NULL new RDNAndrew Bartlett2009-10-021-4/+7
| | | | | | | The Microsoft testsuite tried to rename cn=administrator,cn=users,... into "",cn=users... which didn't go so well. Andrew Bartlett
* s4-ldap: fixed spellingAndrew Tridgell2009-09-281-1/+1
|
* gensec: Avoid exposing lp_ctx on the API level.Jelmer Vernooij2009-09-261-1/+1
|
* s4-server: kill main daemon if a task fails to initialiseAndrew Tridgell2009-09-181-4/+6
| | | | | | When one of our core tasks fails to initialise it can now ask for the server as a whole to die, rather than limping along in a degraded state.
generated by cgit (git 2.34.1) at 2025-09-27 05:21:07 +0000