r12747: Add a couple more token tests, used by the kludge ACL module.

Andrew Bartlett
(This used to be commit 10eadf48124d61f2eb586fb277a66aa4b9e6cad3)

1 files changed, 30 insertions, 0 deletions

diff --git a/source4/libcli/security/security_token.c b/source4/libcli/security/security_token.c
index 04d10bf83b..6774894a86 100644
--- a/source4/libcli/security/security_token.c
+++ b/source4/libcli/security/security_token.c
@@ -190,3 +190,33 @@ BOOL is_anonymous_token(struct security_token *token)
 	return False;
 }
 
+BOOL is_authenticated_token(struct security_token *token) 
+{
+	TALLOC_CTX *mem_ctx = talloc_new(token);
+	int i;
+	struct dom_sid *authenticated = dom_sid_parse_talloc(mem_ctx, SID_NT_ANONYMOUS);
+	for (i = 0; i < token->num_sids; i++) {
+		if (dom_sid_equal(token->sids[i], authenticated)) {
+			talloc_free(mem_ctx);
+			return True;
+		}
+	}
+	talloc_free(mem_ctx);
+	return False;
+}
+
+BOOL is_administrator_token(struct security_token *token) 
+{
+	TALLOC_CTX *mem_ctx = talloc_new(token);
+	int i;
+	struct dom_sid *administrators = dom_sid_parse_talloc(mem_ctx, SID_BUILTIN_ADMINISTRATORS);
+	for (i = 0; i < token->num_sids; i++) {
+		if (dom_sid_equal(token->sids[i], administrators)) {
+			talloc_free(mem_ctx);
+			return True;
+		}
+	}
+	talloc_free(mem_ctx);
+	return False;
+}
+