summaryrefslogtreecommitdiff
path: root/source3/include/rpc_lsa.h
AgeCommit message (Collapse)AuthorFilesLines
2008-02-14Remove unused marshalling for LSA_ADDPRIVS and LSA_REMOVEPRIVS.Günther Deschner1-33/+0
Guenther (This used to be commit 5b700aba1a2e1559c17fec9d82e87312e8a5b15d)
2008-02-14Remove unused marshalling for LSA_LOOKUP_PRIV_VALUE.Günther Deschner1-10/+0
Guenther (This used to be commit 8125d8557fb4b27873f8eabc6ad1019491d18cce)
2008-02-14Remove unused marshalling for LSA_ENUMPRIVSACCOUNT.Günther Deschner1-13/+0
Guenther (This used to be commit 004598bc1322b6e2deb62115713768682fee988e)
2008-02-14Remove unused marshalling for LSA_ENUM_ACCOUNTS.Günther Deschner1-16/+0
Guenther (This used to be commit 8c476ad51622f76bf8f03f6255369b8e19f24a72)
2008-02-13Remove unused marshalling for LSA_ENUM_TRUST_DOM.Günther Deschner1-23/+0
Guenther (This used to be commit 90b07714ddb16ef87865cdf4f9c64c0372200e42)
2008-02-11Remove unused LSA_CLOSE headers.Günther Deschner1-17/+0
Guenther (This used to be commit f995b1ddc75e5091c6eb012b80dcaa9c78ce368e)
2008-02-11Remove unused marshalling for LSA_UNK_GET_CONNUSER.Günther Deschner1-28/+0
Guenther (This used to be commit 5550c5c387ad66ffe8532e669b6155a28c6e54d1)
2008-02-11Remove unused marshalling for LSA_PRIV_GET_DISPNAME.Günther Deschner1-21/+0
Guenther (This used to be commit d853f4f2634a3273c193cc52e7aaa4e7234a827c)
2008-02-11Let rpccli_lsa_open_policy[2] be convenience wrappers around their pidl ↵Günther Deschner1-60/+0
equivalents. Guenther (This used to be commit 4ca3b1c02ee44ddcab8d1b100497939de62558e6)
2008-02-11Remove unused marshalling for LSA_ENUM_PRIVS.Günther Deschner1-29/+0
Guenther (This used to be commit 793e5a608b1a40174088db6fbfcfc8cc6263a0da)
2008-02-08Remove unused marshalling for LSA_GETSYSTEMACCOUNT.Günther Deschner1-12/+0
Guenther (This used to be commit cf3a76bf19bfeb35800e0fc31e90dc4ea5c0ff85)
2008-02-08Remove unused marshalling for LSA_SETSYSTEMACCOUNT.Günther Deschner1-11/+0
Guenther (This used to be commit ddefdc5bd70620dcb94660ba5d55520e136d8d0f)
2008-02-08Remove unused marshalling for LSA_OPENACCOUNT.Günther Deschner1-13/+0
Guenther (This used to be commit bb8e77eb74c9d178a6c77f2f9c69eb1778fb5e10)
2008-02-08Remove unused marshalling for LSA_CREATEACCOUNT.Günther Deschner1-14/+0
Guenther (This used to be commit c9a8baf5077a4e93cca241a5ec73f6ade97af607)
2008-02-08Remove unused marshalling for LSA_QUERY_INFO.Günther Deschner1-109/+0
Guenther (This used to be commit f193d7d944e89f94b968a369d6566d13a4fbef5c)
2008-02-08Remove unused marshalling for LSA_QUERY_INFO2.Günther Deschner1-5/+0
Guenther (This used to be commit 0fac016d9d0018c983576d5cc8c3e06f40360b73)
2008-02-04Remove unused marshalling for LSA_DELETE_OBJECT.Günther Deschner1-10/+0
Guenther (This used to be commit 3a32082ef5bb0152545b391ce4cb8ca3a28939da)
2008-02-04Remove unused marshalling for LSA_QUERY_SEC_OBJ.Günther Deschner1-18/+0
Guenther (This used to be commit 9b2aeeb36903591ea55cfdfe22f32d69703daaf1)
2008-01-25Remove some unused structures from rpc_lsa.h.Günther Deschner1-122/+0
Guenther (This used to be commit a52066e6083ff4b0d21b57ba43a812c02c0cbd78)
2008-01-16Merge lsarpc.idl from samba4 and rerun make idl.Günther Deschner1-19/+0
Guenther (This used to be commit d9c8a2271d5d4ff845f1fe5986a2c63d79c41415)
2008-01-14Remove old lsa set info policy call.Günther Deschner1-16/+0
Guenther (This used to be commit b37b2b77edec72fc3f53b3461aa1c210e4366c1b)
2008-01-14Remove more redundant lsa parsing functions.Günther Deschner1-115/+0
Guenther (This used to be commit 99dd28da84c270f46535bd2ffa6bfef96d2e2eed)
2008-01-14Start removing hand-written lsa marshalling code (namelyGünther Deschner1-38/+0
rpccli_lsa_open_trusted_domain_by_name, rpccli_lsa_query_trusted_domain_info_by_sid and rpccli_lsa_query_trusted_domain_info_by_name). Guenther (This used to be commit f2fb3473455f20e7314a9d33f5a1c923d3057d97)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r23400: Fix lsa crash bug #4683. The "names" enum structJeremy Allison1-3/+3
in a lookup_sidX reply isn't optional - like the lookup_sidX query it needs to be defined in the struct. All this will go away with PIDL (thank goodness....). Jerry - I think this is a showstopper to be merged for 3.0.25b. I'll be watching the build farm to see if anything broke. Jeremy. (This used to be commit 9300b92f7a51eb80fdc039d8dad23ea9ce82aa8f)
2007-10-10r18654: Rename "struct uuid" => "struct GUID" for consistency.Jelmer Vernooij1-1/+1
(This used to be commit 5de76767e857e9d159ea46e2ded612ccd6d6bf19)
2007-10-10r15041: Adding rpc client calls to manipulate auditing policies on remote CIFSGünther Deschner1-59/+115
servers. Also add a new "net rpc audit" tool. The lsa query infolevels were taken from samb4 IDL, the lsa policy flags and categories are partly documented on msdn. I need to cleanup the double lsa_query_info_policy{2}{_new} calls next. Guenther (This used to be commit 0fed66926f4b72444abfc8ffb8c46cca8d0600aa)
2007-10-10r13458: Add parsing functions - but stub internals for lookupnames3 and 4.Jeremy Allison1-2/+77
Jeremy. (This used to be commit f1a362580ae37730dc8393a79f832aed5d0ea4be)
2007-10-10r13456: Add lsa_lookup_names2.Jeremy Allison1-1/+1
Jeremy. (This used to be commit b57406c89feaf550f6c2d29ef0ed73a935908add)
2007-10-10r13455: Prepare to add lookupnames2.Jeremy Allison1-1/+35
Jeremy. (This used to be commit 2274709587bd1f27bea2eacf633182f20cd07b1e)
2007-10-10r13449: Ensure we don't crash if no dc struct on pipe.Jeremy Allison1-0/+3
Jeremy. (This used to be commit a9e1d0f3b4fd7a0732a5023d0b4dcc2c4b1b03f8)
2007-10-10r13447: Added LSA_LOOKUPSIDS2 and LSA_LOOKUPSIDS3.Jeremy Allison1-19/+89
Jeremy. (This used to be commit a164cfab420a2439dad8fd85f8b4d652087fa6b9)
2007-10-10r13316: Let the carnage begin....Gerald Carter1-1/+55
Sync with trunk as off r13315 (This used to be commit 17e63ac4ed8325c0d44fe62b2442449f3298559f)
2007-10-10r10656: BIG merge from trunk. Features not copied overGerald Carter1-2/+0
* \PIPE\unixinfo * winbindd's {group,alias}membership new functions * winbindd's lookupsids() functionality * swat (trunk changes to be reverted as per discussion with Deryck) (This used to be commit 939c3cb5d78e3a2236209b296aa8aba8bdce32d3)
2007-10-10r7391: - Added client-support for various lsa_query_trust_dom_info-calls and aGünther Deschner1-5/+151
rpcclient-tester for some info-levels. Jerry, I tried to adopt to prs_pointer() where possible and to not interfere with your work for usrmgr. - Add "net rpc trustdom vampire"-tool. This allows to retrieve Interdomain Trust(ed)-Relationships from NT4-Servers including cleartext-passwords (still stored in the local secrets.tdb). The net-hook was done in cooperation with Lars Mueller <lmuelle@suse.de>. To vampire trusted domains simply call: net rpc trustdom vampire -S nt4dc -Uadmin%pass Guenther (This used to be commit 512585293963a1737f831af697ea1dc092d63cb0)
2007-10-10r7139: trying to reduce the number of diffs between trunk and 3.0; changing ↵Gerald Carter1-25/+94
version to 3.0.20pre1 (This used to be commit 9727d05241574042dd3aa8844ae5c701d22e2da1)
2007-10-10r6228: remove BUFHDR2 and clean up LsaEnumTrustedDomains()Gerald Carter1-22/+24
Tested client and server code. (This used to be commit efb3ac4c69c72c0fa01c558951fa357893562bce)
2007-10-10r6071: * clean up UNISTR2_ARRAY ( really just an array of UNISTR4 + count )Gerald Carter1-4/+4
* add some backwards compatibility to 'net rpc rights list' * verify privilege name in 'net rpc rights privileges <name>' in order to give back better error messages. (This used to be commit 0e29dc8aa384dfa6d2495beb8a9ffb5371e60a13)
2007-10-10r6014: rather large change set....Gerald Carter1-1/+1
pulling back all recent rpc changes from trunk into 3.0. I've tested a compile and so don't think I've missed any files. But if so, just mail me and I'll clean backup in a couple of hours. Changes include \winreg, \eventlog, \svcctl, and general parse_misc.c updates. I am planning on bracketing the event code with an #ifdef ENABLE_EVENTLOG until I finish merging Marcin's changes (very soon). (This used to be commit 4e0ac63c36527cd8c52ef720cae17e84f67e7221)
2007-10-10r5726: merge LsaLookupPrivValue() code from trunkGerald Carter1-10/+9
(This used to be commit 277203b5356af58ce62eb4eec0db2eccadeeffd6)
2007-10-10r5456: Increase limit of mapped SIDS to 0x5000, which is what 2k and later do.Jim McDonough1-2/+2
NT has no limit. We still don't respond the way 2k would to requests larger, which is to actually allocate the memory and send back the entire response, plus a return status of NT_STATUS_NONE_MAPPED. Still looking into ways of doing this without crashing windows. (This used to be commit 9afe5acdc22adaed4b4b3d70ba3a1a7898256282)
2007-10-10r5056: * correct STANDARD_RIGHTS_WRITE_ACCESS bitmask defineGerald Carter1-1/+1
* make sure to apply the rights_mask and not just the saved bits from the mask in access_check_samr_object() * allow root to grant/revoke privileges (in addition to Domain Admins) as suggested by Volker. Tested machine joins from XP, 2K, and NT4 with and without pre-existing machine trust accounts. Also tested basic file operations using cmd.exe and explorer.exe after changing the STANDARD_RIGHTS_WRITE_ACCESS bitmask. (This used to be commit c0e7f7ff60a4110809b8f500fdc68a1bf963da36)
2007-10-10r4724: Add support for Windows privileges in Samba 3.0Gerald Carter1-3/+17
(based on Simo's code in trunk). Rewritten with the following changes: * privilege set is based on a 32-bit mask instead of strings (plans are to extend this to a 64 or 128-bit mask before the next 3.0.11preX release). * Remove the privilege code from the passdb API (replication to come later) * Only support the minimum amount of privileges that make sense. * Rewrite the domain join checks to use the SeMachineAccountPrivilege instead of the 'is a member of "Domain Admins"?' check that started all this. Still todo: * Utilize the SePrintOperatorPrivilege in addition to the 'printer admin' parameter * Utilize the SeAddUserPrivilege for adding users and groups * Fix some of the hard coded _lsa_*() calls * Start work on enough of SAM replication to get privileges from one Samba DC to another. * Come up with some management tool for manipultaing privileges instead of user manager since it is buggy when run on a 2k client (haven't tried xp). Works ok on NT4. (This used to be commit 77c10ff9aa6414a31eece6dfec00793f190a9d6c)
2007-10-10r196: merging struct uuid from trunkGerald Carter1-1/+1
(This used to be commit 911a28361b9d8dd50597627f245ebfb57c6294fb)
2003-10-06split some security related functions in their own files.Simo Sorce1-3/+3
(no need to include all of smbd files to use some basic sec functions) also minor compile fixes couldn't compile to test these due to some kerberos problems wirh 3.0, but on HEAD they're working well, so I suppose it's ok to commit (This used to be commit c78f2d0bd15ecd2ba643bb141cc35a3405787aa1)
2003-09-25Fix for #480. Change the interface for init_unistr2 to not take a lengthJeremy Allison1-2/+0
but a flags field. We were assuming that 2*strlen(mb_string) == length of ucs2-le string. This is not the case. Count it after conversion. Jeremy. (This used to be commit f82c273a42f930c7152cfab84394781744815e0e)
2003-08-14Attempt at fixing bug #283. There however is no solution.Gerald Carter1-0/+6
There is a workaround documented in the bug report. This patch does: * add server support for the LSA_DS UUID on the lsarpc pipe * store a list of context_ids/api_structs in the pipe_struct so that we don't have to lookup the function table for a pipe. We just match the context_id. Note that a dce/rpc alter_context does not destroy the previous context so it is possible to have multiple bindings active on the same pipe. Observed from standalone win2k sp4 client. * added server code for DsROleGetPrimaryDOmainInfo() but disabled it since it causes problems enumerating users and groups from a 2ksp4 domain member in a Samba domain. (This used to be commit 96bc2abfcb0dd0912696fad76e43cb217b33e061)
2003-05-12And finally IDMAP in 3_0Simo Sorce1-20/+0
We really need idmap_ldap to have a good solution with ldapsam, porting it from the prvious code is beeing made, the code is really simple to do so I am confident it is not a problem to commit this code in. Not committing it would have been worst. I really would have been able to finish also the group code, maybe we can put it into a followin release after 3.0.0 even if it may be an upgrade problem. The code has been tested and seem to work right, more testing is needed for corner cases. Currently winbind pdc (working only for users and not for groups) is disabled as I was not able to make a complete group code replacement that works somewhat in a week (I have a complete patch, but there are bugs) Simo. (This used to be commit 0e58085978f984436815114a2ec347cf7899a89d)
2003-01-29Merge tridge's client priv code from HEAD.Jeremy Allison1-3/+20
Jeremy (This used to be commit 49739be1e2f047fa2cc2fd42eadb190a82114485)