summaryrefslogtreecommitdiff
path: root/source3/libads/ldap.c
AgeCommit message (Collapse)AuthorFilesLines
2008-01-04Fix a misleading DEBUG message.Michael Adam1-1/+1
At this stage, the (tcp) connection to the LDAP server has not been established, this is what is about to be attempted. What has been succesfully done, is a CLDAP netlogon query. Michael (This used to be commit 71c3c8ad4c92c5f6267b84ee1d207e5e49e9a4ec)
2008-01-03Add ads_get_joinable_ous().Günther Deschner1-0/+60
Guenther (This used to be commit 5bbceac88159ef6ff83d9cc62c77c7af2116967d)
2007-12-29Make use of [un]marshall_sec_descVolker Lendecke1-9/+11
(This used to be commit 54576733d6c0511dc7379f964b1cb035913b7c8d)
2007-12-16make use of unmarshall_sec_descVolker Lendecke1-19/+12
(This used to be commit ced0c42f055a672f6b4ab6ba809b0f63c83b431e)
2007-12-15s/sid_to_string/sid_to_fstring/Volker Lendecke1-1/+1
least surprise for callers (This used to be commit eb523ba77697346a365589101aac379febecd546)
2007-12-15Replace sid_string_static with sid_to_stringVolker Lendecke1-1/+2
This adds 28 fstrings on the stack, but I think an fstring on the stack is still far better than a static one. (This used to be commit c7c885078be8fd3024c186044ac28275d7609679)
2007-12-15Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke1-2/+2
(This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
2007-12-06Remove an incredible amount of whitespace.Michael Adam1-1/+1
Sorry - could not resist. Michael (This used to be commit 1000c98eae0886dbdf60beb1fe64d66ec009746b)
2007-12-03Make strhex_to_str clear on string limits. Remove pstring from web/*.cJeremy Allison1-2/+2
Jeremy. (This used to be commit f9c8d62389f8cb47837e5360209936176537df13)
2007-11-27Remove some staticsVolker Lendecke1-4/+7
(This used to be commit 1fab16ffb888cd4ec18e52d9da33976a67a5d104)
2007-11-20More pstring removal....Jeremy Allison1-13/+13
Jeremy. (This used to be commit 809f5ab4c595740b28425e1667e395a6058b76a8)
2007-10-24This is a large patch (sorry). Migrate from struct in_addrJeremy Allison1-12/+23
to struct sockaddr_storage in most places that matter (ie. not the nmbd and NetBIOS lookups). This passes make test on an IPv4 box, but I'll have to do more work/testing on IPv6 enabled boxes. This should now give us a framework for testing and finishing the IPv6 migration. It's at the state where someone with a working IPv6 setup should (theorecically) be able to type : smbclient //ipv6-address/share and have it work. Jeremy. (This used to be commit 98e154c3125d5732c37a72d74b0eb5cd7b6155fd)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison1-21/+21
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10r24252: Dump guid of msExchMailboxGuid when returned.Günther Deschner1-0/+1
Guenther (This used to be commit 1142f3df546cbf4780c6f54667f7ed31b1a7621b)
2007-10-10r24166: Fix Coverity ID 391Volker Lendecke1-1/+1
(This used to be commit 461974d2cc18c729f152356a9c30cc776f288906)
2007-10-10r23951: Fix segfault.Günther Deschner1-1/+1
Guenther (This used to be commit 1a5c8780ae79e5ae4e6a36bfb66cd92ae7d3aa88)
2007-10-10r23945: add infrastructure to select plain, sign or seal LDAP connectionStefan Metzmacher1-2/+15
metze (This used to be commit 2075c05b3d8baa7d6d8510cd962471a5781740a6)
2007-10-10r23937: Use ads_config_path() when we need to know the configration context.Günther Deschner1-26/+11
Guenther (This used to be commit 1a62c731c6259bf4285d3735bff8b191002553f7)
2007-10-10r23888: move elements belonging to the current ldap connection to aStefan Metzmacher1-46/+46
substructure. metze (This used to be commit 00909194a6c1ed193dfdb296f50f58a53450583c)
2007-10-10r23886: add ads_disconnect() functionStefan Metzmacher1-0/+12
metze (This used to be commit ba70737b7043cae89dd90f8668a24881212ac6fb)
2007-10-10r23861: Fix return code in ads_find_samaccount().Günther Deschner1-1/+1
Guenther (This used to be commit 684fcf39dcc08bcf571272549222fdeb11d2725f)
2007-10-10r23837: Pass ADS_STRUCT and TALLOC_CTX down to ads_disp_sd.Günther Deschner1-1/+3
Guenther (This used to be commit ad0a6d5703c35d48ab5bbfa8d6506d42e0cfb61d)
2007-10-10r23836: Add ads_config_path() and ads_get_extended_right_name_by_guid().Günther Deschner1-0/+93
Guenther (This used to be commit 4d62f1191b52569fcdbe674773b07a44aa469520)
2007-10-10r23834: Allow to pass an ADS_STRUCT pointer down to the dump function ↵Günther Deschner1-13/+13
callback in libads. Guenther (This used to be commit 311bbbafa6d860b7b632beac6d9249b0a2fafb86)
2007-10-10r23833: Document ads_find_samaccount().Günther Deschner1-0/+9
Guenther (This used to be commit 3effd1c3461301f9ccf7c55386810c36f4ee3ccc)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r23772: Add ads_find_samaccount() helper function.Günther Deschner1-0/+60
Guenther (This used to be commit 6fafa64bea4ce6a7a5917fa02ed9c564a7c93ffb)
2007-10-10r23514: Remove unused function ads_get_dn_from_extended_dn().Jeremy Allison1-29/+0
Jeremy. (This used to be commit 03763bc5287fef5f100c911041668e23d4305f8d)
2007-10-10r22893: Use ldap_rename_s instead of deprecated ldap_rename2_s.Michael Adam1-1/+2
This fixes the build on solaris (host sun9). And hopefully doesn't break any other builds... :-) If it does, we need some configure magic. Thanks to Björn Jacke <bj@sernet.de>. (This used to be commit a43775ab36aa3d36108e1b5860bbee6c47e9b1b4)
2007-10-10r22800: Add GPO_SID_TOKEN and an LDAP function to get tokensids from the ↵Günther Deschner1-0/+104
tokenGroup attribute. Guenther (This used to be commit e4e8f840605dfdf92ca60cc8fc6a4c85336565fb)
2007-10-10r22799: Fix the build.Günther Deschner1-1/+1
Guenther (This used to be commit 6e911c442bf9b076f43f99576f9b588df2c39233)
2007-10-10r22797: We are only interested in the DACL of the security descriptor, so ↵Günther Deschner1-19/+35
search with the SD_FLAGS control. Guenther (This used to be commit 648df57e53ddabe74052e816b8eba95180736208)
2007-10-10r22728: Patch from Danilo Almeida <dalmeida@centeris.com>:Gerald Carter1-0/+70
When asked to create a machine account in an OU as part of "net ads join" and the account already exists in another OU, simply move the machine object to the requested OU. (This used to be commit 3004cc6e593e6659a618de66f659f579e71c07f7)
2007-10-10r22589: Make TALLOC_ARRAY consistent across all uses.Jeremy Allison1-4/+8
Jeremy. (This used to be commit 8968808c3b5b0208cbad9ac92eaf948f2c546dd9)
2007-10-10r22459: Adding ads_get_dn_from_extended_dn(), in preparation of making ↵Günther Deschner1-3/+37
ranged LDAP queries more generic. Michael, feel free to overwrite these and the following. Guenther (This used to be commit 0475b8eea99ebb467e52225ad54f4302a77376b9)
2007-10-10r22112: Fix memleak pointed out by Steven Danneman <steven.danneman@isilon.com>.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 7c45bd3a47fc2b24c5f1351a241ace2201c857d2)
2007-10-10r21608: Fix a couple of memleaks in error code paths beforeJeremy Allison1-1/+2
Coverity finds them :-) Jeremy. (This used to be commit cbe725f1b09f3d0edbdf823e0862edf21e16d336)
2007-10-10r21606: Implement escaping function for ldap RDN valuesSimo Sorce1-2/+8
Fix escaping of DN components and filters around the code Add some notes to commandline help messages about how to pass DNs revert jra's "concistency" commit to nsswitch/winbindd_ads.c, as it was incorrect. The 2 functions use DNs in different ways. - lookup_usergroups_member() uses the DN in a search filter, and must use the filter escaping function to escape it Escaping filters that include escaped DNs ("\," becomes "\5c,") is the correct way to do it (tested against W2k3). - lookup_usergroups_memberof() instead uses the DN ultimately as a base dn. Both functions do NOT need any DN escaping function as DNs can't be reliably escaped when in a string form, intead each single RDN value must be escaped separately. DNs coming from other ldap calls (like ads_get_dn()), do not need escaping as they come already escaped on the wire and passed as is by the ldap libraries DN filtering has been tested. For example now it is possible to do something like: 'net ads add user joe#5' as now the '#' character is correctly escaped when building the DN, previously such a call failed with Invalid DN Syntax. Simo. (This used to be commit 5b4838f62ab1a92bfe02626ef40d7f94c2598322)
2007-10-10r21352: Let ads_upn_suffixes() return a pointer to an array of suffixes.Günther Deschner1-4/+4
Guenther (This used to be commit 7ad7847e5bbdd90fa6ae9ce91e5962f524ac2890)
2007-10-10r21349: Fix memleak in ads_upn_suffixes().Günther Deschner1-0/+3
Guenther (This used to be commit 8462f323cf86f90b1bdf14a3953c5a4bda1b9533)
2007-10-10r21021: Fix memleak.Günther Deschner1-0/+1
Guenther (This used to be commit 4e622572eb7939c6aa8e99fd9595bf28836bd5a3)
2007-10-10r20874: We need to distinguish client sitenames per realm. We were overwritingGünther Deschner1-4/+6
the stored client sitename with the sitename from each sucessfull CLDAP connection. Guenther (This used to be commit 6a13e878b5d299cb3b3d7cb33ee0d51089d9228d)
2007-10-10r20857: Silence gives assent :-). Checking in the fix forJeremy Allison1-2/+17
site support in a network where many DC's are down. I heard via Volker there is still a bug w.r.t the wrong site being chosen with trusted domains but we'll have to layer that fix on top of this. Gd - complain if this doesn't work for you. Jeremy. (This used to be commit 97e248f89ac6548274f03f2ae7583a255da5ddb3)
2007-10-10r20487: Remove the unused dn2ad_canonical() callGerald Carter1-18/+0
(This used to be commit 86e6ae6a9fe2a6fdaeeb503653a312662c7f50e9)
2007-10-10r19687: Fix uninitialized variables found by Coverity (and gcc -O1... ;-))Volker Lendecke1-1/+2
Volker (This used to be commit b7dc9b81696aa5434419c5378a47b41c6dee3dfa)
2007-10-10r19651: Fix interesting bug with the automatic site coverage in Active ↵Günther Deschner1-1/+25
Directory: When having DC-less sites, AD assigns DCs from other sites to that site that does not have it's own DC. The most reliable way for us to identify the nearest DC - in that and all other cases - is the closest_dc flag in the CLDAP reply. Guenther (This used to be commit ff004f7284cb047e738ba3d3ad6602e8aa84e883)
2007-10-10r19646: Fix memleak in the default_ou_string handling. Thanks to David HuGünther Deschner1-11/+37
<david.hu@hp.com>. Fixes #4212. Guenther (This used to be commit 4ec896cdbe441b17d91895a50ac9be61efe2f9c1)
2007-10-10r19528: Fix container handling for "net ads user" and "net ads group" functionsGünther Deschner1-1/+3
along with some memleaks. Guenther (This used to be commit 4bad52c5b3a983418d4216a2c3f5e04926e37e94)
2007-10-10r19526: Fix minor memleak.Günther Deschner1-0/+1
Guenther (This used to be commit 61ebedc82ee7d7a98e2a52b0677d723a801ab30f)