summaryrefslogtreecommitdiff
path: root/source3/rpc_server/srv_samr_nt.c
AgeCommit message (Collapse)AuthorFilesLines
2010-01-10s3: Use sid_check_is_domain instead of a direct sid_equalVolker Lendecke1-3/+6
2010-01-10s3: Replace most calls to sid_append_rid() by sid_compose()Volker Lendecke1-4/+4
2009-12-15s3: Fix _samr_GetAliasMembership for results with 0 ridsVolker Lendecke1-0/+8
2009-11-26s3-rpc: Avoid including every pipe's client and server stubs everywhere in ↵Günther Deschner1-0/+1
samba. Guenther
2009-11-10s3-samr: implement _samr_ValidatePassword().Günther Deschner1-10/+118
Guenther
2009-10-19Fix typo.Karolin Seeger1-2/+2
privilage -> privilege Karolin
2009-10-16s3:srv_samr_nt - another fix for the reject reasonMatthias Dieter Wallnöfer1-1/+1
2009-10-08s3/s4 - Adapt the IDL changes on various locationsMatthias Dieter Wallnöfer1-3/+4
2009-09-15s3-dcerpc: use dcerpc_AuthLevel and remove duplicate set of flags.Günther Deschner1-1/+1
Guenther
2009-09-13s3-samr: Fix Coverity #934 UNINIT.Günther Deschner1-1/+1
Guenther
2009-07-26Fix valgrind errors in DeleteDomainGroup and DeleteDomAliasVolker Lendecke1-4/+4
2009-07-26Fix a valgrind error in _samr_DeleteUserVolker Lendecke1-2/+2
The close_handle invalidates uinfo
2009-07-14s3-account_policy: add pdb_policy_type enum.Günther Deschner1-31/+31
Guenther
2009-07-13s3-rpc_server: pass down full unix token to map_max_allowed_access().Günther Deschner1-14/+28
Also use unix_token->uid instead of geteuid() when checking for mapping of the SEC_FLAG_MAXIMUM_ALLOWED flag. Guenther
2009-06-25s3-samr: refactor _samr_SetDomainInfo().Günther Deschner1-25/+72
Guenther
2009-06-25s3-samr: refactor _samr_QueryDomainInfo().Günther Deschner1-213/+322
Guenther
2009-06-08Pass a talloc_ctx to pdb_enum_aliasmemVolker Lendecke1-1/+2
2009-06-08s3-samr: fix enum_acb_mask type (uint32 instead of uint16).Günther Deschner1-1/+1
Guenther
2009-06-08s3-samr: support _samr_SetGroupInfo level 2.Günther Deschner1-2/+2
Guenther
2009-06-07s3-samr: SetGroupInfo level 1 should not return NT_STATUS_INVALID_INFO_CLASS.Günther Deschner1-3/+0
Found by RPC-SAMR torture test. Guenther
2009-06-07s3-samr: fix _QueryDisplayInformation r->out.returned_size.Günther Deschner1-1/+1
*r->out.returned_size needs to be 0 if nothing was enumerated. Found by RPC-SAMR torture test. Guenther
2009-06-07s3-samr: remove total_data_size variable in _samr_QueryDisplayInfo.Günther Deschner1-5/+2
Guenther
2009-06-07s3-samr: let _samr_SetGroupInfo level 3 just pass with success.Günther Deschner1-0/+2
Guenther
2009-06-07s3-samr: _samr_EnumDomain{Users,Groups} need to return an emtpy array even ↵Günther Deschner1-12/+12
for builtin domain. Found by RPC-SAMR torture test. Guenther
2009-06-07s3-samr: cosmetic fixes for _samr_QueryDisplayInfo.Günther Deschner1-20/+18
use the variables of the struct samr_QueryDisplayInfo directly to make it easier to track where variables are defined from. Guenther
2009-06-03s3:smbd: move more session specific globals to struct smbd_server_connectionStefan Metzmacher1-3/+7
metze
2009-05-25s3-samr: Fix Bug #6372, usermanager only displaying 1024 groups and aliases.Günther Deschner1-0/+12
This is now also verified with the RPC-SAMR-LARGE-DC test. Guenther
2009-05-18Change access_check_samr_object -> access_check_object.Jeremy Allison1-9/+9
Make map_max_allowed_access global. Change lsa_get_generic_sd to add Everyone:LSA_POLICY_READ|LSA_POLICY_EXECUTE, not just LSA_POLICY_EXECUTE. Jeremy.
2009-05-18Fix SAMR server for winbindd access. Ensure we allowJeremy Allison1-2/+2
MAX_ACCESS to be mapped to what we're giving Everyone. Jeremy.
2009-05-15Ensure users with SeAddUser privs get full access toJeremy Allison1-3/+3
groups/aliases when opening. Jeremy.
2009-05-15Add extra abilities for a user with SeAddUsers, so theyJeremy Allison1-2/+15
can manipulate groups and aliases. Jeremy.
2009-05-15DeleteUser doesn't need the priv checks, this is done at OpenUser time.Jeremy Allison1-20/+0
Jeremy.
2009-05-15s3-samr: Fix samr access checks in _samr_RemoveMemberFromForeignDomain().Günther Deschner1-1/+1
Guenther
2009-05-15s3-samr: Fix samr access checks in _samr_SetUserInfo().Günther Deschner1-14/+109
Guenther
2009-05-15s3-samr: Fix samr access checks in _samr_QueryUserInfo().Günther Deschner1-3/+71
Guenther
2009-05-15s3-samr: in _samr_QueryUserInfo() make sure to not return any info in error ↵Günther Deschner1-1/+6
case. Guenther
2009-05-15s3-samr: Fix samr access checks in _samr_SetDomainInfo().Günther Deschner1-7/+22
Guenther
2009-05-15s3-samr: Fix samr access checks in _samr_QueryDomainInfo().Günther Deschner1-1/+31
Guenther
2009-05-15s3-samr: use normal integer in r->in.level switch statements.Günther Deschner1-29/+29
Guenther
2009-05-14Fix the core of the SAMR access functions. This passes make test, butJeremy Allison1-197/+156
usrmgr fails against it. The core of this patch is to move all the access mask setup into the _samr_OpenXXX functions, and then have each specific function check the attached access_mask against the required bits. We can then go through the MS-SAMR doc and match things up. Signed off by Guenther, and writespace cleanup removal by Volker. Jeremy.
2009-05-11Fix a bunch of compiler warnings about wrong format types.Jeremy Allison1-2/+2
Should make Solaris 10 builds look cleaner. Jeremy.
2009-05-12s3-samr: implement _samr_RidToSid().Günther Deschner1-10/+30
Guenther
2009-05-12s3-samr: Let _samr_TestPrivateFunctionsDomain() return ↵Günther Deschner1-1/+0
NT_STATUS_NOT_SUPPORTED to make RPC-SAMR happy. Guenther
2009-05-11s3-samr: Fix Bug #5859, renaming of samr objects failed due to samr ↵Günther Deschner1-0/+3
setuserinfo access checks. Torture test to follow... Guenther
2009-05-09s3-samr: Fix SetUserInfo level 7 when there has been no name change.Günther Deschner1-0/+6
Found by torture test. Guenther
2009-05-08s3-samr: more accurateness in _samr_SetDomainInfo().Günther Deschner1-3/+3
Guenther
2009-05-08s3-samr: implement more info levels in _samr_QueryDomainInfo().Günther Deschner1-0/+82
Gets us closer to pass RPC-SAMR. Guenther
2009-05-08s3-samr: Fix potential memory leak in _samr_ChangePasswordUser().Günther Deschner1-1/+2
Guenther
2009-05-08s3-selftest: need to enable lanman auth in order make RPC-SAMR-PASSWORDS pass.Günther Deschner1-0/+4
Guenther
2009-05-08s3-samr: Do not leak information whether a user exist or not in pwd change ↵Günther Deschner1-0/+11
calls. Found by torture test. Guenther