summaryrefslogtreecommitdiff
path: root/source3/rpc_server/samr
AgeCommit message (Collapse)AuthorFilesLines
2012-07-12s3: rename sid_check_is_in_our_domain() to sid_check_is_in_our_sam()Michael Adam1-7/+7
This does not check whether the given sid is in our domain, but but whether it belongs to the local sam, which is a different thing on a domain member server. Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Thu Jul 12 18:36:02 CEST 2012 on sn-devel-104
2012-07-12s3: rename sid_check_is_domain() to sid_check_is_our_sam()Michael Adam1-6/+6
This does not check whether the given sid is the domain sid, but whether it is the sid of the local sam, which is different for a domain member server.
2012-07-06s3-rpc_server: Make it possible to use more rpc exceptions.Andreas Schneider1-7/+9
2012-06-19Fix a bunch of "set but not used" warnings.Jeremy Allison1-14/+7
2012-06-19auth: Use only security_token_is_system to determine that a user is SYSTEMAndrew Bartlett1-1/+1
This removes the duplication on how to detect that a user is system in Samba now that the smbd system account is also only SID_NT_SYSTEM we can use the same check everywhere. Andrew Bartlett Signed-off-by: Andreas Schneider <asn@samba.org>
2012-04-05build: Remove SMB_STRUCT_DIR defineAndrew Bartlett1-1/+1
2012-04-05build: Remove sys_closedir wrapperAndrew Bartlett1-2/+2
2012-04-05build: Remove sys_opendir wrapperAndrew Bartlett1-1/+1
2012-04-05build: Remove sys_open wrapperAndrew Bartlett1-3/+3
2012-03-24lib/util: Remove obsolete sys_getpid() and sys_fork().Jelmer Vernooij1-1/+1
The performance of these is minimal (these days) and they can return invalid results when used as part of applications that do not use sys_fork(). Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Sat Mar 24 21:55:41 CET 2012 on sn-devel-104
2012-03-13s3-rpc: Decrypt with the proper session key in CreateTrustedDomainEx2.Alexander Bokovoy1-18/+19
On LSA and SAMR pipes session_key is truncated to 16 byte when doing encryption/decryption. However, this was not done for trusted domain-related modifying operations. As result, Samba 4 client libraries do not work against Samba 3 while working against Windows 2008 r2. Solved this by introducing "session_extract_session_key()" function that allows to specify intent of use of the key. Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Tue Mar 13 12:23:44 CET 2012 on sn-devel-104
2011-11-16Fix bug #8561 - Password change settings not fully observed.Jeremy Allison1-1/+1
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed Nov 16 00:22:41 CET 2011 on sn-devel-104
2011-10-12s3-group-mapping: Remove fstrings from GROUP_MAP.Simo Sorce1-12/+40
Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Oct 12 19:28:12 CEST 2011 on sn-devel-104
2011-09-26s3-samr: Remove fstring in samr.Andreas Schneider1-5/+14
Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Mon Sep 26 19:56:04 CEST 2011 on sn-devel-104
2011-09-26s3-passdb: Cleanup use of fstring and move to talloc.Simo Sorce1-15/+37
Signed-off-by: Andreas Schneider <asn@samba.org>
2011-07-20s3-auth Use system boolean in auth_user_info_unixAndrew Bartlett1-1/+1
Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-20s3-auth Use *unix_token rather than utok in struct auth3_session_infoAndrew Bartlett1-8/+8
This brings this structure one step closer to the struct auth_session_info. A few SMB_ASSERT calls are added in some key places to ensure that this pointer is initialised, to make tracing any bugs here easier in future. NOTE: Many of the users of this structure should be reviewed, as unix and NT access checks are mixed in a way that should just be done using the NT ACL. This patch has not changed this behaviour however. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2011-07-05s3: Remove some unused variablesVolker Lendecke1-4/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Jul 5 18:40:11 CEST 2011 on sn-devel-104
2011-07-04s3-samr Send IP address only to PAM remote hostname hook on password setAndrew Bartlett1-44/+12
The previous behaviour was to attempt to do a reverse hostname lookup, where enabled. This new behaviour matches the new behaviour in the modules called by auth stack. Andrew Bartlett
2011-07-04s3-samr: Replace client_id in samr server.Andreas Schneider1-7/+72
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2011-06-09s3-param Remove special case for global_myname(), rename to lp_netbios_name()Andrew Bartlett1-3/+3
There is no reason this can't be a normal constant string in the loadparm system, now that we have lp_set_cmdline() to handle overrides correctly. Andrew Bartlett
2011-06-09s3-talloc Change TALLOC_ZERO_ARRAY() to talloc_zero_array()Andrew Bartlett1-15/+15
Using the standard macro makes it easier to move code into common, as TALLOC_ZERO_ARRAY isn't standard talloc.
2011-06-09s3-talloc Change TALLOC_ZERO_P() to talloc_zero()Andrew Bartlett1-14/+14
Using the standard macro makes it easier to move code into common, as TALLOC_ZERO_P isn't standard talloc.
2011-06-09s3-talloc Change TALLOC_ARRAY() to talloc_array()Andrew Bartlett1-1/+1
Using the standard macro makes it easier to move code into common, as TALLOC_ARRAY isn't standard talloc.
2011-05-24Fix bug #7054 - X account flag does not work when pwdlastset is 0.Jeremy Allison1-1/+10
Don't allow pass_last_set_time to be set to zero (which means "user must change password on next logon") if user object doesn't allow password change. Don't automatically allow user object password change if "user must change password on next logon" is set. Jim please check. Jeremy.
2011-05-05s3-rpc_server: run minimal_includes.pl.Günther Deschner1-1/+0
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Thu May 5 03:04:38 CEST 2011 on sn-devel-104
2011-05-02s3: include ntdomain.h before including generated srv_ headers.Günther Deschner1-1/+1
Guenther
2011-04-05s3-auth Rename user_session_key -> session_key to match auth_session_infoAndrew Bartlett1-10/+10
2011-03-31s3-samr: make getgrgid() failure a little more visible in ↵Günther Deschner1-1/+1
_samr_CreateDomAlias(). Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Thu Mar 31 01:00:42 CEST 2011 on sn-devel-104
2011-03-30s3-rpc_server: move access check functions out of samr server.Günther Deschner1-113/+1
Guenther
2011-03-30s3-includes: only include ntdomain.h where needed.Günther Deschner1-0/+1
Guenther
2011-03-30s3-auth: rpc_server needs auth.hGünther Deschner2-0/+2
Guenther
2011-03-30s3-passdb: use passdb headers where needed.Günther Deschner1-0/+2
Guenther
2011-03-30s3-passdb: add passdb.h where needed.Günther Deschner3-0/+3
Guenther
2011-03-30s3-includes: only include system/filesys.h when needed.Günther Deschner1-0/+1
Guenther
2011-03-30s3-includes: only include system/passwd.h when needed.Günther Deschner2-0/+2
Guenther
2011-03-30s3-includes: only include system/terminal.h when needed.Günther Deschner1-0/+1
Guenther
2011-03-01s3-auth struct security_unix_token replaces UNIX_USER_TOKENAndrew Bartlett1-1/+1
2011-02-22s3-includes: move some chgpasswd related defines to the locations where they ↵Günther Deschner1-0/+6
are used. Guenther
2011-02-22s3:auth: change num_groups to from size_t to uint32_tStefan Metzmacher1-2/+2
This will help with the change from UNIX_USER_TOKEN to security_unix_token metze
2011-02-22s3-auth Rename auth_serversupplied_info varaiables: server_info -> session_infoAndrew Bartlett1-37/+37
These variables, of type struct auth_serversupplied_info were poorly named when added into 2001, and in good consistant practice, this has extended all over the codebase in the years since. The structure is also not ideal for it's current purpose. Originally intended to convey the results of the authentication modules, it really describes all the essential attributes of a session. This rename will reduce the volume of a future patch to replaced these with a struct auth_session_info, with auth_serversupplied_info confined to the lower levels of the auth subsystem, and then eliminated. (The new structure will be the output of create_local_token(), and the change in struct definition will ensure that this is always run, populating local groups and privileges). Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-02-19s3: Add "len" to pdb_set_hoursVolker Lendecke1-1/+3
2011-02-15s3: Pass "code_page" through samrVolker Lendecke2-2/+11
2011-02-15s3: Pass "country_code" through samrVolker Lendecke2-2/+11
2011-02-10s3-rpc_server: move services into individual directories.Günther Deschner4-0/+8892
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Thu Feb 10 22:13:17 CET 2011 on sn-devel-104