summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd_creds.c
AgeCommit message (Collapse)AuthorFilesLines
2012-11-09Revert "s3-winbindd: make sure we obey the -n switch also for samlogon cache ↵David Disseldorp1-4/+0
access." This reverts commit ae6a779bf9f816680e724ede37324b7f5355996b. Bug 9125 analysis from Volker: The problem is that there are no network calls possible at all that would do what the samlogon cache does for us. There is just no way to retrieve the group membership in a complex trusted environment. If you have just a single domain with Samba as domain controller it might be possible, but even within a single domain it is not possible to correctly retrieve all group memberships using LDAP calls due to ACLs on directory objects. The call to get that is called NetSamLogon on the NETLOGON pipe. But this call requires user credentials and might trigger updating counts on the server. So to correctly implement wbinfo -r after a user has logged in, you have two alternatives: Save the info3 struct or the PAC in the netsamlogon cache. If you insist on doing network calls, you need to cache the user credentials somewhere to re-do the NetSamLogon call every time the wbinfo -r is requested. Reviewed-by: Andreas Schneider <asn@samba.org>
2011-06-08s3-winbindd: make sure we obey the -n switch also for samlogon cache access.Günther Deschner1-0/+4
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Jun 8 14:44:31 CEST 2011 on sn-devel-104
2010-10-12libcli/security Provide a common, top level libcli/security/security.hAndrew Bartlett1-0/+1
This will reduce the noise from merges of the rest of the libcli/security code, without this commit changing what code is actually used. This includes (along with other security headers) dom_sid.h and security_token.h Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Tue Oct 12 05:54:10 UTC 2010 on sn-devel-104
2010-09-09s3: Remove "mem_ctx" from a few functionsVolker Lendecke1-5/+2
2010-09-09s3: Remove "mem_ctx" from wcache_save_creds()Volker Lendecke1-1/+1
2010-09-09s3: Remove "mem_ctx" from lookup_cached_name()Volker Lendecke1-2/+1
2010-09-09s3: Remove unused arg "user_sid" from winbindd_store_credsVolker Lendecke1-8/+3
All callers have passed in NULL
2010-09-09s3: Remove unused winbindd_update_creds_by_sidVolker Lendecke1-8/+0
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-4/+4
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-01-10s3: Fix some nonempty blank linesVolker Lendecke1-3/+3
2010-01-09s3: Slightly simplify winbindd_store_credsVolker Lendecke1-4/+2
2009-08-02Fix some nonempty blank linesVolker Lendecke1-7/+7
2009-04-14Rework Samba3 to use new libcli/auth code (partial)Andrew Bartlett1-0/+1
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
2008-02-17Use netr_SamInfo3 everywhere in winbindd.Günther Deschner1-7/+7
Guenther (This used to be commit d9502eb75395131d5a8130ff2c4ebace106cb974)
2008-01-17Finally enable pidl generated SAMR & NETLOGON headers and clients.Günther Deschner1-1/+1
Guenther (This used to be commit f7100156a7df7ac3ae84e45a47153b38d9375215)
2007-10-10r25154: move winbindd code into winbindd/Stefan Metzmacher1-0/+162
metze (This used to be commit 3ac7566ae14c48ff9b0f6b232e0ec4b2f73df558)
generated by cgit (git 2.34.1) at 2024-06-02 16:14:55 +0000