summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd_getgroups.c
AgeCommit message (Collapse)AuthorFilesLines
2013-07-29s3:winbind: add a warning DEBUG message when skipping a sid from the mapped ↵Michael Adam1-0/+18
GID list This presents a potential security problem when ACLs contain DENY ACEs. Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User(master): Michael Adam <obnox@samba.org> Autobuild-Date(master): Mon Jul 29 14:42:27 CEST 2013 on sn-devel-104
2013-07-29s3:winbind: change getgroups to only do one sids2xids call instead of manyMichael Adam1-26/+42
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2013-07-29s3:winbind: fix the getgroups implementation to include the user sid's GID ↵Michael Adam1-3/+5
in case of ID_TYPE_BOTH This is important for acl checks on the unix level where only a group ace has been added to the ACL for the user sid, e.g. when accessing Files with nfs or local unix processes. Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2013-07-29s3:winbind: fix gid counting and error handling in the getgroups implementationMichael Adam1-6/+10
Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Signed-off-by: Michael Adam <obnox@samba.org> Signed-off-by: Stefan Metzmacher <metze@samba.org>
2012-12-03s3:winbindd: change winbindd_getgroups to use wb_sids2xids instead of wb_sid2gidMichael Adam1-5/+14
Signed-off-by: Michael Adam <obnox@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
2011-05-10s3: Use tevent_req_ntstatus properly in a few placesVolker Lendecke1-4/+2
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue May 10 13:11:10 CEST 2011 on sn-devel-104
2011-03-30s3-passdb: move LOOKUP_NAME_ flags to passdb where they belong to.Günther Deschner1-0/+1
Guenther
2009-12-28s3: Check for lp_winbind_trusted_domains_only in wb_gettoken()Volker Lendecke1-24/+0
This avoids one walk of the domain list
2009-08-16s3:winbind: The get[gr|pw]end functions need access to the client stateVolker Lendecke1-0/+1
2009-08-05s3:winbind: Convert WINBINDD_GETGROUPS to the new APIVolker Lendecke1-0/+222
generated by cgit (git 2.34.1) at 2024-11-06 10:02:31 +0000