summaryrefslogtreecommitdiff
path: root/source3/nsswitch
AgeCommit message (Collapse)AuthorFilesLines
2001-12-20Setup global_myworkgroup. Needed for secrets fetch code.Jeremy Allison1-8/+11
Jeremy. (This used to be commit 057e91c1c3833516d03b492f3ebe489d8216a0ba)
2001-12-20net ads password and net ads chostpass commands from Remus KoosAndrew Tridgell1-0/+1
(This used to be commit 412e79c448bf02e3097b5c14a36fe0172d8d2895)
2001-12-19use "ads server" option if set for primary domainAndrew Tridgell1-4/+10
(This used to be commit 1bf5c1a46f4c3f44054ce8fcbc551cdb72683f2b)
2001-12-19add support for mixtures of ADS/NT4 domains, as long as the primaryAndrew Tridgell1-0/+9
domain is ADS (This used to be commit e97b40e09427c2c5f0a497f9432af08d6d6762f2)
2001-12-19much better ADS error handling systemAndrew Tridgell2-72/+68
(This used to be commit 05a90a28843e0d69183a49a76617c5f32817df16)
2001-12-19added trusted realm support to ADS authenticationAndrew Tridgell3-1/+8
the method used for checking if a domain is a trusted domain is very crude, we should really call a backend fn of some sort. For now I'm using winbindd to do the dirty work. (This used to be commit adf44a9bd0d997ba4dcfadc564a29149531525af)
2001-12-19- added initial support for trusted domains in winbindd_adsAndrew Tridgell4-18/+81
- gss error code patch from a.bokovoy@sam-solutions.net - better sid dumping in ads_dump - fixed help in wbinfo (This used to be commit ee1c3e1f044b4ef62169ad74c5cac40eef81bfda)
2001-12-18fixed handling of empty or dead domain in wbinfo -gAndrew Tridgell1-60/+9
(This used to be commit 2c54cfbc475cd22d0e906898a07d4e0576c64c80)
2001-12-14Added the group enum code from 2.2Jeremy Allison1-0/+1
Jeremy. (This used to be commit 59e01a22c5cb1046758c8cd6b09333c19d6cd26e)
2001-12-13make sure we find NSS_STATUS structAndrew Tridgell1-0/+1
(This used to be commit 7db718d44a62aee9610a9dfd9e671345a0ea7737)
2001-12-12allow IRIX to build nsswitch/libnss_wins.soHerb Lewis1-12/+82
(This used to be commit 564bfd77287b3006c7246065990ca9b91f79826a)
2001-12-12add *.po32 to ignore listHerb Lewis1-0/+1
(This used to be commit fe0db4c55f8bfc70004edd60a29359337fa40723)
2001-12-11Oops, the -a option disappeared.Tim Potter1-0/+1
(This used to be commit 6194f874bbc50cb40228b29fb783a7716104b824)
2001-12-11sync with 2.2Herb Lewis1-0/+29
added multiple include protection added IRIX defines (This used to be commit b9dbb38bf2d1fbe1ca5d0aa53b89f76844d6209c)
2001-12-11Replace backslash with winbind separator before calling parse_domain_user(). ↵Jim McDonough1-2/+4
Winbind separators other than backslash didn't work. (This used to be commit 6688781331e046adc77783792fc009cda7c8b5b8)
2001-12-11fix for IRIX compilersHerb Lewis1-2/+2
(This used to be commit b110f57e49bcb4e3c648020850ee18d1888b9152)
2001-12-11handle systems without setenv()Andrew Tridgell1-1/+1
(This used to be commit 87090652460e57703b40f21e9ed08c18770b61c3)
2001-12-11Modify winbindd to use authenticated user info from secrets.tdb when makingTim Potter2-2/+34
IPC$ connections to domain controllers. (This used to be commit 1217ef28a6c18c085fcb2eac3bf04866c166d959)
2001-12-11Converted wbinfo to use popt instead of getopt - popt is very nice!Tim Potter1-28/+100
Added a --set-auth-user function to set a username and password that can be used by winbindd when making connections to domain controllers. This is necessary when restrictions have been placed on anonymous connections either through the RestrictAnonymous registry setting, or the win2k Local Security Policy -> Security Settings -> Local Policies -> Security Options -> Additional restrictions for anonymous connections. (phew) Two new keys are set in secrets.tdb: SECRETS/AUTH_USER and SECRETS/AUTH_PASSWORD which hold the username and plaintext password of the user to connect as. To reset these values, run wbinfo --set-auth-user "" (This used to be commit 507003522b70443f79b8b69a836dcd38d309cfca)
2001-12-11removed the start_ndx parameter from group enumerationAndrew Tridgell5-87/+80
I tried testing this by lowering the buffer size in cli_samr_enum_dom_groups() but that didn't work - I think this needs more looking into (This used to be commit 34328e30315e4b42087d0ee11ed0c3fb715bc250)
2001-12-11got rid of start_ndx from query_user_list()Andrew Tridgell6-128/+120
(This used to be commit 1c909afe76566807fb576c965eb869f98e72f2bd)
2001-12-10robustness fixes and moved ccache location into winbindd_ads codeAndrew Tridgell2-0/+20
(This used to be commit 24aa09ff3dd128c6f12b4cb072943ff668a29a67)
2001-12-10Make protoMartin Pool1-1/+0
(This used to be commit 83ab28a7e5cc75d3cdf35c083b057a1c7e50192d)
2001-12-10use objectCategory instead of objectClass for faster searchingAndrew Tridgell1-3/+3
(This used to be commit 4d3b827e5ac1ac20ec31acdc1e2a0264f1c18e43)
2001-12-10Merge of memory leak fixes from APPLIANCE_TNG.Tim Potter1-0/+7
(This used to be commit b198de92d2149ba2f5010c76e715d274b8f29c2a)
2001-12-10winbindd backends can now be marked "consistent" or "inconsistent"Andrew Tridgell4-33/+93
consistent backends (like ADS) always give correct primary group info, so we can play cache tricks to speed things up a lot inconsistent backends (like MSRPC) need to fetch stuff more often (This used to be commit 217c39f23282e20f96a61a0d5a2434b3f5f66a86)
2001-12-10shrank the winbindd_cache.tdb somewhatAndrew Tridgell1-27/+63
on my system it now uses 132k for 308 users (This used to be commit 2b396f9172bb4c2d1d9216d724a1aaab8bb22ba8)
2001-12-10added some commentsAndrew Tridgell1-0/+2
(This used to be commit 34589d5a4786b7e441efecaef0575f9eaa0d7edf)
2001-12-10moved the domain sid lookup and enumeration of trusted domains intoAndrew Tridgell5-109/+143
the backends at startup, loop until we get the domain sid for our primary domain, trying every 10 seconds. This makes winbindd handle a room-wide power failure better (This used to be commit 7c60ae59378be1b2af2e57ee3927966a29a797a5)
2001-12-10added some commentsAndrew Tridgell2-4/+2
(This used to be commit 5ab2c8b8214236b4cd028f791e9ddb76a9973d74)
2001-12-10make sid_binstring available without HAVE_ADSAndrew Tridgell3-52/+8
(This used to be commit 4a6d29768665f71b72cf48ee34ee9a9c451232f6)
2001-12-10explicitly encode NULL strings in the cacheAndrew Tridgell1-1/+15
(This used to be commit 77c1376456765a7afe90afad96fab819fdcf8af3)
2001-12-10removed a debug lineAndrew Tridgell1-2/+0
(This used to be commit ec4c90fd7f56f8870884e5a27622cae71d154eca)
2001-12-09completely new winbindd cache infrastructureAndrew Tridgell9-756/+591
this one looks like just another winbind backend, and has the following properties: - does -ve and +ve cacheing of all queries - can be disabled with -n switch to winbindd - stores all records packed, so even huge domains are not a problem for a complete cache - handles the server being down - uses sequence numbers for all entries This fixes a lot of problems with winbindd. Serving from cache is now *very* fast. (This used to be commit fddb4f4c04473a60a97212c0c8e143d6a4d68380)
2001-12-09- use accountype not accountcontrolAndrew Tridgell1-8/+26
- better debug code (This used to be commit 01f63b9c92137e6de906412952c7a2c8da21dfbe)
2001-12-09fixed type passed to ads_searchAndrew Tridgell1-2/+1
(This used to be commit 0ff30848f3ef4f38e9bc80dc96be4f37bb2dcb0e)
2001-12-08added internal sasl/gssapi code. This means we are no longer dependent on ↵Andrew Tridgell2-11/+78
cyrus-sasl which makes the code much less fragile. Also added code to auto-determine the server name or realm (This used to be commit 435fdf276a79c2a517adcd7726933aeef3fa924b)
2001-12-06Fixed typo in fix for typo in debug. (-:Tim Potter1-1/+1
(This used to be commit 7c64e5f1481e832767ae07e63d7d9d116131b331)
2001-12-05fixed a memory leakAndrew Tridgell1-1/+4
(This used to be commit 45c328800e42ba01c8d6113c0691546804137677)
2001-12-05added a REALLY gross hack into kerberos_kinit_password so thatAndrew Tridgell1-1/+1
winbindd can do a kinit this will be removed once we have code that gets a tgt and puts it in a place where cyrus-sasl can see it (This used to be commit 7d94f1b7365215a020d3678d03d820a7d086174f)
2001-12-05moved the sequence number fetch into the backend, and fetch theAndrew Tridgell6-80/+77
sequence number via ldap when using ads (This used to be commit 9a084f0bb91883224ad44e2b76417d10c15cce42)
2001-12-05don't double free ldap message listsAndrew Tridgell1-3/+0
(This used to be commit f64612b89bae1148d73555cac00f6019a01f9304)
2001-12-05fixed another leak - memory usage now seems to be quite smallAndrew Tridgell1-0/+2
(This used to be commit a45e3968590a021c1b464db5265a09ba48cb5797)
2001-12-05added very basic ads connection cacheingAndrew Tridgell2-84/+46
(This used to be commit 7de670cd15c1a87dd01ab22d74a7e6cbf5ae6673)
2001-12-05plugged most of the memory leaksAndrew Tridgell1-74/+120
(This used to be commit 60b5d4432abd905ee61fe381487ed87139134685)
2001-12-05added the last winbindd/ads backend functionAndrew Tridgell1-1/+66
winbindd is now fully functional with a native mode w2k server now for the memory leaks and speed ... (This used to be commit fad564c177049eb47e5bf48c98b62281c6348ffc)
2001-12-05finally worked out how to do ldap lookups by binary blobs, so I canAndrew Tridgell7-170/+250
now do searches on SID. This allows me to do a true ldap sid_to_name() function one one function to go! (This used to be commit 7d44aa3915bc88fd2b2f8454f190b11677cbb848)
2001-12-05Fixed parse_domain_user to be bool.Jeremy Allison8-80/+57
Jeremy. (This used to be commit 9563de2ef8c1197f4941671d2fdade7d933c32d0)
2001-12-04Correct message on wbinfo fail to open config file.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 9b7182a9da24b53f3501f6562dc66bed67fb9133)
2001-12-04added lookup_groups() to the ads backendAndrew Tridgell4-8/+69
winbindd/ADS can now do initgroups() (This used to be commit 43edeaca9f3a42699131939ed0d917111f57b678)