s3-auth Remove seperate guest boolean

Instead, we base our guest calculations on the presence or absense of the authenticated users group in the token, ensuring that we have only one canonical source of this important piece of authorization data Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
author: Andrew Bartlett <abartlet@samba.org> 2011-07-19 11:57:05 +1000
committer: Andrew Bartlett <abartlet@samba.org> 2011-07-20 09:17:14 +1000
commit: 662282106318e3f1f0bbcc7281f49ee5b3727f21 (patch)
tree: 615737d5c566c5ff5071d9db8227498f689e74f3 /source3/smbd/lanman.c
parent: 9d09b66f41cb4ab58bd4a6d83ecebb91805a4b5b (diff)
download: samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.tar.gz
samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.tar.bz2
samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/source3/smbd/lanman.c b/source3/smbd/lanman.c
index 4f905cf9b1..292ebf4385 100644
--- a/source3/smbd/lanman.c
+++ b/source3/smbd/lanman.c
@@ -5857,7 +5857,7 @@ void api_reply(connection_struct *conn, uint16 vuid,
 	if (api_commands[i].auth_user && lp_restrict_anonymous()) {
 		user_struct *user = get_valid_user_struct(req->sconn, vuid);
 
-		if (!user || user->session_info->unix_info->guest) {
+		if (!user || security_session_user_level(user->session_info, NULL) < SECURITY_USER) {
 			reply_nterror(req, NT_STATUS_ACCESS_DENIED);
 			return;
 		}
author	Andrew Bartlett <abartlet@samba.org>	2011-07-19 11:57:05 +1000
committer	Andrew Bartlett <abartlet@samba.org>	2011-07-20 09:17:14 +1000
commit	662282106318e3f1f0bbcc7281f49ee5b3727f21 (patch)
tree	615737d5c566c5ff5071d9db8227498f689e74f3 /source3/smbd/lanman.c
parent	9d09b66f41cb4ab58bd4a6d83ecebb91805a4b5b (diff)
download	samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.tar.gz samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.tar.bz2 samba-662282106318e3f1f0bbcc7281f49ee5b3727f21.zip