summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd_pam.c
AgeCommit message (Collapse)AuthorFilesLines
2009-04-14Rework Samba3 to use new libcli/auth code (partial)Andrew Bartlett1-3/+4
This commit is mostly to cope with the removal of SamOemHash (replaced by arcfour_crypt()) and other collisions (such as changed function arguments compared to Samba3). We still provide creds_hash3 until Samba3 uses the credentials code in netlogon server Andrew Bartlett
2009-03-23ѕ3/winbind_pam: fix gcc 4.4 compile warningBjörn Jacke1-1/+1
2009-03-18s3: remove POLICY_HND.Günther Deschner1-3/+3
Guenther
2008-11-13s3-winbindd: workaround for samr_ChangePasswordUser3 to User2 fallback for ↵Günther Deschner1-0/+6
w2k dcs. Guenther
2008-11-10ntlm_auth: Put huge NTLMv2 blobs into extra_data on CRAP auth.Kai Blin1-7/+18
This fixes bug #5865
2008-09-23s3: use samba4 prototype for ndr_push/pull_struct_blob.Günther Deschner1-1/+1
Guenther
2008-09-16winbindd: Update the calls to ws_name_XX() to reflect API changes.Gerald (Jerry) Carter1-6/+54
* Ensures that all points an which a name is received or returned to/from a client passes through the name aliases layer (users and groups).
2008-08-27Fix the wcache_invalidate_samlogon calls.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 7c820899ed1364fdaeb7b49e8ddd839e67397ec0)
2008-08-25winbindd: move set_auth_errors to util functions.Günther Deschner1-12/+0
Guenther (This used to be commit ae3fa60c4546c7420722d8f422c22bbfd623ff5b)
2008-08-19winbindd: consistently use false/true.Günther Deschner1-27/+27
Guenther (This used to be commit e8619121d16d086f1ab186051d0ecdc83c02e5b5)
2008-08-19winbindd: use set_auth_errors (avoid code duplication).Günther Deschner1-28/+6
Guenther (This used to be commit ae35a5110ea03d8ff27f320cdc685e5623715a2a)
2008-08-19winbindd: fill_in_password_policy (to avoid redundant code).Günther Deschner1-20/+18
Guenther (This used to be commit dbfa7ba14c9f1a4d7a1e7205dd0b3ea2fc2e6131)
2008-08-19winbindd: kill some trailing/leading whitespace.Günther Deschner1-159/+159
Guenther (This used to be commit b5bb7844952a87b123551b478b60bfe232afc308)
2008-07-22Fix various build warningsZach Loafman1-22/+14
This fixes various build warnings on our platform. I'm sure I haven't caught them all, but it's a start. (This used to be commit 6b73f259cb67d9dda9127907d706f9244a871fa3)
2008-07-07Allow authentication and memory credential refresh after password change ↵Jeremy Allison1-2/+23
from gdm/xdm. Patch from boyang <boyang@novell.com>. Jeremy. (This used to be commit 8cfc6afc7b4a6af9aea5f5a7cb5af7e3218c2d75)
2008-06-25rename rpccli_samr_chgpasswd3 to rpccli_samr_chgpasswd_user3.Günther Deschner1-7/+7
Guenther (This used to be commit b1209a039b45985e0b28777e04cba5bcc3de061e)
2008-06-25rename rpccli_samr_chgpasswd_user to rpccli_samr_chgpasswd_user2.Günther Deschner1-3/+3
Guenther (This used to be commit 5b4650d56c04be0c498413f17afb2cf6d0e7d548)
2008-05-22Get rid of "shadowed local var" warnings with gcc.Jeremy Allison1-7/+7
Jeremy. (This used to be commit 0bc18967aa7cb6f4debeaa48be81d0e48a7d9503)
2008-04-21Add in a nice big comment explaining why SamLogonEx matters.Andrew Bartlett1-0/+21
Andrew Bartlett (This used to be commit 87232351b5e66728f8d602259961909e8c1dfcb6)
2008-04-04Use sid_array_from_info3 in lookup_usergroups_cached().Günther Deschner1-1/+1
Guenther (This used to be commit 65b4cb20ea3fb806cfd50281e08f32bea70fafce)
2008-03-27Fix typo.Günther Deschner1-5/+5
Guenther (This used to be commit fed644372916a5e565e4f5352aab61b39a3a42a0)
2008-03-27Don't fill password policy structure for any domain other than our own.Gerald W. Carter1-3/+15
The samr connects will fail. This is not independent of the CONTACT_TRUSTDOM flag neede by krb5 logins. (This used to be commit 4de4949e3bfcfb2169c329f19cb76936d9043d50)
2008-03-27Move LOGON_KRB5_FAIL_CLOCK_SKEW to winbindd_pam.Günther Deschner1-0/+2
Guenther (This used to be commit fa64c76ac8e54f385f277b5b39be70075b2eeee0)
2008-03-25Fix a segfaultVolker Lendecke1-1/+1
When we get a NT_STATUS_WRONG_PASSWORD for example, my_info3 is not initialized at all. So first check that we have NT_STATUS_IS_OK(status) before we dereference my_info3. (This used to be commit 559cd9e5a7fac3ce3769d457132cdcb28569b93d)
2008-03-19Merge dd9e0bea31751 from 3-0-ctdb -- use NetSamLogonEx when possibleVolker Lendecke1-23/+72
NetSamLogonEx has the advantage that it does not use the credential chain (This used to be commit cfceb063f559f8549b8f24ce347be213c89303b0)
2008-02-28winbind: use a struct element for WBFLAG_PAM_UNIX_NAMEStefan Metzmacher1-14/+4
To not conflict with WBFLAG_PAM_INFO3_TEXT. This should fix pam_winbind. metze (This used to be commit 1b8ed6c0ffb2548442bb7e9d848117ce9b1c65c0)
2008-02-17Use netr_SamInfo3 everywhere in winbindd.Günther Deschner1-110/+93
Guenther (This used to be commit d9502eb75395131d5a8130ff2c4ebace106cb974)
2008-02-17Getting rid of net_io_user_info3() when sending an NDR encoded netr_SamInfo3.Günther Deschner1-16/+18
Guenther (This used to be commit f22ba8aee2ff90e9e34db066d506fec24c52379f)
2008-02-13winbindd: add rids and other_sids arrays in WBFLAG_PAM_INFO3_TEXT modeStefan Metzmacher1-1/+43
metze (This used to be commit c5e6dd1ca9611e2830ff773875998c01bf779a64)
2008-02-12Use rpccli_samr_QueryUserInfo in net and winbindd.Günther Deschner1-6/+6
Guenther (This used to be commit a9ff6760901a489ff8877717bdd5a2218154498f)
2008-02-07Let rpccli_samr_chgpasswd3 use rpccli_samr_ChangePasswordUser3 internally.Günther Deschner1-16/+21
Guenther (This used to be commit ffbfd19ad7065caf05688c5748178d30115d47f4)
2008-02-06Use rpccli_samr_QueryDomainInfo() in winbindd.Günther Deschner1-11/+11
Guenther (This used to be commit dd9fa33e968d4e641460fe1c6beb05dfe12fa918)
2008-02-04Fix a typo in a debug message.Michael Adam1-1/+1
Michael (This used to be commit 3865a7e6a19630f8a90140accf4a6e93d4f70e6c)
2008-02-01Use rpccli_samr_OpenUser() all over the place.Günther Deschner1-4/+5
Guenther (This used to be commit da90eb7653554d242da83ed98adae35ced3a2938)
2008-01-31Remove rpccli_samr_close and use pidl generated function instead.Günther Deschner1-3/+3
Guenther (This used to be commit 64f0889401855ab76953bfae5db4fe4df19ad8a5)
2008-01-29Remove include/rpc_ds.h and all references to it completly.Günther Deschner1-1/+1
Jerry, please have a look if you're fine with that. Guenther (This used to be commit beae25c808a3a03d645f247e9befcd05e3ecca2c)
2008-01-21winbindd: remove useless strcpyStefan Metzmacher1-4/+1
metze (This used to be commit df08708fc1e8fc8e15b36db29faf35ae5ae64b65)
2008-01-17Finally enable pidl generated SAMR & NETLOGON headers and clients.Günther Deschner1-3/+3
Guenther (This used to be commit f7100156a7df7ac3ae84e45a47153b38d9375215)
2008-01-09Convert add_sid_to_array() add_sid_to_array_unique() to return NTSTATUS.Michael Adam1-4/+5
Michael (This used to be commit 6b2b9a60ef857ec31da5fea631535205fbdede4a)
2007-12-20Only retrieve password policies in pam_auth when WBFLAG_PAM_GET_PWD_POLICY ↵Michael Adam1-6/+9
is set. This essentially re-establishes r14496 (2155bb0535656f294bd054d6a0a7d16a9a71c31b) which was undone in r17723 (43bd8c00abb38eb23a1497a255d194fb1bbffffb) for reasons that are unclear to me. Maybe I am being too naive. Now we do again only retrieve the password policy when called from the pam_winbind module. This fixes logons delegated to AD trusted domain controllers: We need to connect to the sam to retrieve the password policy. But auhtenticated session setup is not possible when contacting the trusted domain dc and afterwards, SamrConnect also fails with whatever credentials and method used. Michael (This used to be commit 6d765e0de523211a2d0b43a2c4c4117f5f0c662f)
2007-12-15s/sid_to_string/sid_to_fstring/Volker Lendecke1-2/+2
least surprise for callers (This used to be commit eb523ba77697346a365589101aac379febecd546)
2007-12-15Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke1-1/+1
(This used to be commit bb35e794ec129805e874ceba882bcc1e84791a09)
2007-12-07Remove next_token - all uses must now be next_token_talloc.Jeremy Allison1-5/+11
No more temptations to use static length strings. Jeremy. (This used to be commit ec003f39369910dee852b7cafb883ddaa321c2de)
2007-11-27Remove pstrings from everything except srv_spoolss_nt.c.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 0002a9e96b0ef78316295a6eb94ff29b64e2f988)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison1-8/+8
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10[GLUE] Rsync SAMBA_3_2_0 SVN r25598 in order to create the v3-2-test branch.Gerald (Jerry) Carter1-64/+14
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
2007-10-10r25287: Eliminate a handful of red bars and overly long lines I justMichael Adam1-32/+40
came across. Michael (This used to be commit bf12f0c0f843f088c7fa2d1eca3298a3d76e9761)
2007-10-10r25273: unistrX_to_ascii calls pull_ucs2 - ensure it's neverJeremy Allison1-8/+8
called with -1 (these calls were wrong anyway, target was an fstring, not a pstring). Found by Michael Adam <ma@sernet.de>, now to check all other uses. Michael - this version uses sizeof(target) not sizeof(fstring). This way is more future proof. Jeremy. (This used to be commit 9ed3046633b6949c68c9aed61b8e9444601cf101)
2007-10-10r25272: Fix a bunch of callers of pull_ucs2 that passed -1 for dest_len.Michael Adam1-8/+8
Michael (This used to be commit a4f53fe22569a63fe7b196971ac6c28a676ee4e8)
2007-10-10r25154: move winbindd code into winbindd/Stefan Metzmacher1-0/+2382
metze (This used to be commit 3ac7566ae14c48ff9b0f6b232e0ec4b2f73df558)