diff options
author | Nadezhda Ivanova <nivanova@samba.org> | 2010-09-26 11:47:47 -0700 |
---|---|---|
committer | Nadezhda Ivanova <nivanova@samba.org> | 2010-09-26 15:36:09 -0700 |
commit | 99ac4e92ff3205f80ef0fe823cbbd05eed7d2bb6 (patch) | |
tree | 369b26b108b2b42119c4548e98da9bda3e81f9ec /source4/dsdb/samdb/ldb_modules/samba_dsdb.c | |
parent | 93ba17285d8afb0d6e4040bf443e88ca4ad5147e (diff) | |
download | samba-99ac4e92ff3205f80ef0fe823cbbd05eed7d2bb6.tar.gz samba-99ac4e92ff3205f80ef0fe823cbbd05eed7d2bb6.tar.bz2 samba-99ac4e92ff3205f80ef0fe823cbbd05eed7d2bb6.zip |
s4-ldbmodules: Added new module aclread to handle access checks on LDAP search
It is currently enabled only if the request comes from the LDAP server, and is
disabled by default. Use acl:search=true in smb.conf to enable it.
It filters out all objects the user is not allowed to see, and all attributes
the user does not have RP on. Extended access not supported yet.
Diffstat (limited to 'source4/dsdb/samdb/ldb_modules/samba_dsdb.c')
-rw-r--r-- | source4/dsdb/samdb/ldb_modules/samba_dsdb.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/source4/dsdb/samdb/ldb_modules/samba_dsdb.c b/source4/dsdb/samdb/ldb_modules/samba_dsdb.c index 1c5abbe23e..4d0f9465b0 100644 --- a/source4/dsdb/samdb/ldb_modules/samba_dsdb.c +++ b/source4/dsdb/samdb/ldb_modules/samba_dsdb.c @@ -164,6 +164,7 @@ static int samba_dsdb_init(struct ldb_module *module) */ static const char *modules_list[] = {"resolve_oids", "rootdse", + "aclread", "lazy_commit", "paged_results", "ranged_results", |