summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd_pam.c
AgeCommit message (Collapse)AuthorFilesLines
2010-09-09s3: Remove unused arg "user_sid" from winbindd_store_credsVolker Lendecke1-1/+1
All callers have passed in NULL
2010-09-08s3: "== false" looks wrong :-)Volker Lendecke1-1/+1
2010-08-31s3-auth Rename NT_USER_TOKEN user_sids -> sidsAndrew Bartlett1-1/+1
This is closer to the struct security_token from security.idl
2010-08-14s3:auth Change winbindd -> auth interface to more standard structuresAndrew Bartlett1-24/+5
This removes conversions to and from the source3 varient of the server_info structure when replaced in s3compat, and presents a tidier interface to winbindd in any case. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-08-14s3:auth Make Samba3 use the new common struct auth_usersupplied_infoAndrew Bartlett1-1/+1
This common structure will make it much easier to produce an auth module for s3compat that calls Samba4's auth subsystem. In order the make the link work properly (and not map twice), we mark both that we did try and map the user, as well as if we changed the user during the mapping. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-08-06s3-krb5: include krb5pac.h where needed.Günther Deschner1-0/+1
Guenther
2010-08-05s3: avoid global include of ads.h.Günther Deschner1-0/+1
Guenther
2010-07-29We should be using the winbindd separator in this case, not hardcoding a \\ ↵Jeremy Allison1-1/+3
value. Jeremy.
2010-07-07s3-winbindd: route samr chgpwd ops for own domain over internal samr pipe as ↵Günther Deschner1-65/+26
well. Guenther
2010-06-03s3: remove unused librpc/ndr/sid.c.Günther Deschner1-0/+1
Guenther
2010-05-26s3-samr: move chgpasswd.c out of smbd and into the samr server.Günther Deschner1-0/+1
Guenther
2010-05-21s3:dom_sid Global replace of DOM_SID with struct dom_sidAndrew Bartlett1-5/+5
This matches the structure that new code is being written to, and removes one more of the old-style named structures, and the need to know that is is just an alias for struct dom_sid. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-18s3-rpc_client: move protos to cli_netlogon.hGünther Deschner1-0/+1
Guenther
2010-05-18s3-rpc_client: move protos to cli_samr.hGünther Deschner1-0/+1
Guenther
2010-05-18s3: Remove use of iconv_convenience.Jelmer Vernooij1-1/+1
2010-05-18s3-crypto: only include crypto headers when crypto is done.Günther Deschner1-0/+1
Guenther
2010-05-18s3-rpc_misc: clean out include/rpc_misc.h.Günther Deschner1-1/+1
Well known rids don't really belong into an rpc header, just use the ones defined in security.idl. Guenther
2010-05-11s3:kerberos Return PAC_LOGON_INFO rather than the full PAC_DATAAndrew Bartlett1-14/+15
All the callers just want the PAC_LOGON_INFO, so search for that in ads_verify_ticket(), and don't bother the callers with the rest of the PAC. This change makes sense on it's own (removing boilerplate wrappers that just confuse the code), but it also makes it much easier to implement a matching ads_verify_ticket() function in Samba4 for the s3compat proposal. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-06s3: only include gen_ndr headers where needed.Günther Deschner1-0/+1
This shrinks include/includes.h.gch by the size of 7 MB and reduces build time as follows: ccache build w/o patch real 4m21.529s ccache build with patch real 3m6.402s pch build w/o patch real 4m26.318s pch build with patch real 3m6.932s Guenther
2010-05-02s3: Fix the code order in append_auth_dataVolker Lendecke1-7/+7
This is to comply with the comment "currently, anything from here on potentially overwrites extra_data." Günther, please check!
2010-04-23s3: Allow pdb password change using WINBINDD_PAM_CHNG_PSWD_AUTH_CRAPVolker Lendecke1-0/+15
2010-04-23s3: replace some data_blob_talloc by data_blob_constVolker Lendecke1-8/+4
2010-04-23s3: Convert WINBINDD_PAM_CHNG_PSWD_AUTH_CRAP to the new async APIVolker Lendecke1-42/+0
2010-04-19s3: Move the in-memory ccache to the parentVolker Lendecke1-41/+7
None of this blocks, so there is no reason to keep this in a winbind child process
2010-04-19s3-winbind: Allow changing the password for pdbVolker Lendecke1-0/+47
2010-04-19s3: Convert WINBINDD_PAM_LOGOFF to the new async APIVolker Lendecke1-66/+0
2010-04-19s3: Convert WINBINDD_PAM_CHAUTHTOK to the new async APIVolker Lendecke1-57/+0
2010-04-19s3: Convert WINBINDD_PAM_AUTH_CRAP to the new async APIVolker Lendecke1-71/+0
2010-04-19s3: Convert WINBINDD_PAM_AUTH to the new async APIVolker Lendecke1-64/+0
2010-04-13s3-winbind: Authenticate SAM usersVolker Lendecke1-5/+71
2010-04-11s3: Use sizeof(chal) instead of a constantVolker Lendecke1-1/+1
2010-04-11s3: Cosmetics -- I could not spot where "chal" was initializedVolker Lendecke1-1/+1
2010-04-10s3: Remove domain selection from dual_pam_authVolker Lendecke1-53/+13
We're in a child, the parent already has chosen the domain by picking the right child to connect to. Metze, you've done work on winbind lately, so it goes to you: Please check :-)
2010-04-01s3: Ensure NULL termination before printing in winbindd_pam_logoffVolker Lendecke1-3/+3
2010-04-01s3: Fix a typo in winbindd_pam_logoffVolker Lendecke1-1/+1
2010-03-31s3: Fix an error message in winbindd_pam_chauthtok()Volker Lendecke1-1/+1
2010-03-31s3: Ensure null termination in winbindd_pam_chauthtok()Volker Lendecke1-0/+4
2010-03-31s3: Make check_info3_in_group staticVolker Lendecke1-2/+2
2010-03-31s3-winbind: Make append_auth_data() staticVolker Lendecke1-4/+4
2010-03-29s3:winbindd: correctly retry if the netlogon pipe gets disconnected during a ↵Stefan Metzmacher1-2/+2
logon call This fixes hopefully the last part of bug #7295. metze
2010-02-17s3: go straight to winbindd_dual_pam_auth() in case of !NT_STATUS_OKLars Müller1-1/+1
At the formerly used process_result statement we have alone one NT_STATUS_IS_OK() which never could be hit in our case as we only go here if NT_STATUS_EQUAL is not ok.
2010-01-10s3: Replace most calls to sid_append_rid() by sid_compose()Volker Lendecke1-2/+2
2009-11-27s3-kerberos: only use krb5 headers where required.Günther Deschner1-0/+1
This seems to be the only way to deal with mixed heimdal/MIT setups during merged build. Guenther
2009-11-26s3-rpc: Avoid including every pipe's client and server stubs everywhere in ↵Günther Deschner1-0/+2
samba. Guenther
2009-11-06s3-kerberos: add impersonate_principal for kerberos_return_pac_X calls.Günther Deschner1-0/+1
Guenther
2009-11-06s3: Fix kerberos refresh chain.Bo Yang1-1/+3
Signed-off-by: Bo Yang <boyang@samba.org>
2009-10-14Fix the build, missing ->.Jeremy Allison1-1/+1
Jeremy.
2009-10-14Final part of fix for bug 6793 - winbindd crash with "INTERNAL ERROR: Signal 6"Jeremy Allison1-0/+2
Don't use mapped_user uninitialized. Jeremy.
2009-10-14s3:winbind: Fix bug 6793 -- segfault in winbindd_pam_authVolker Lendecke1-7/+6
2009-10-08s3/s4 - Adapt the IDL changes on various locationsMatthias Dieter Wallnöfer1-2/+2