summaryrefslogtreecommitdiff
path: root/source3/winbindd/winbindd_proto.h
AgeCommit message (Collapse)AuthorFilesLines
2012-10-19s3: Make winbindd_register_handlers staticVolker Lendecke1-1/+0
2012-09-20winbind: Extend wbcAuthenticateUserEx to provide PACChristof Schmitt1-0/+8
With this new interface, external applications that have authenticated to an ADS can pass the PAC from the Kerberos ticket to wbcAuthenticateUserEx. winbindd decodes and extracts the info3 information for the external application. If winbindd can verify the PAC signature, the info3 from the PACis also added to the netsamlogon_cache. The info3 data can be used by the external application to get the uid and primary gid. The data in netsamlogon_cache allows to retrieve the complete group list through the NSS function getgrouplist. Signed-off-by: Andrew Bartlett <abartlet@samba.org>
2012-08-21Fix bug #9098 - winbind does not refresh kerberos tickets.Jeremy Allison1-0/+1
Based on work from Ian Gordon <ian.gordon@strath.ac.uk>. Autobuild-User(master): Jeremy Allison <jra@samba.org> Autobuild-Date(master): Tue Aug 21 22:01:15 CEST 2012 on sn-devel-104
2012-03-04s3-winbindd: Add stdin handler for winbindAndrew Bartlett1-1/+2
This will help avoid runaway processes in the test env, particularly when the whole selftest.pl is killed. Andrew Bartlett
2011-09-06s3: Make winbindd_lookup_names staticVolker Lendecke1-7/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Sep 6 20:03:56 CEST 2011 on sn-devel-104
2011-06-21s3: Convert WINBINDD_WINS_BYNAME to the async APIVolker Lendecke1-0/+6
2011-06-05s3:winbind: Convert WINBINDD_WINS_BYIP to the async APIVolker Lendecke1-1/+6
2011-05-04Remove unused function parse_add_domuser().Jeremy Allison1-1/+0
Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Wed May 4 20:05:42 CEST 2011 on sn-devel-104
2011-04-29s3: Make winbindd_reinit_after_fork return NTSTATUSVolker Lendecke1-2/+2
2011-04-29s3: In winbind, close parent/child socketsVolker Lendecke1-1/+2
This should further reduce fd load in winbind children
2011-04-13s3: Export WINBINDD_SIDS_TO_XIDS via the winbind pipeVolker Lendecke1-0/+8
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Make idmap_find_domain publicVolker Lendecke1-0/+1
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Add is_domain_onlineVolker Lendecke1-0/+1
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Add winbindd_lookupsidsVolker Lendecke1-0/+7
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Add wb_lookupsidsVolker Lendecke1-0/+8
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Add wbint_LookupSidsVolker Lendecke1-0/+5
This will be called from wb_lookupsids to query remote DCs via lsa Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-13s3: Make parse_sidlist publicVolker Lendecke1-0/+2
Signed-off-by: Jeremy Allison <jra@samba.org>
2011-04-12s3: add some forward declarations.Günther Deschner1-1/+1
Guenther
2011-03-06s3: Remove unused args from nss_get_info_cachedVolker Lendecke1-1/+0
2011-02-23s3-proto: remove some prototypes of non-existing functions.Günther Deschner1-2/+0
Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Feb 23 15:42:35 CET 2011 on sn-devel-104
2011-01-21s3:winbind: Fork multiple children per domainVolker Lendecke1-0/+3
This makes us scale better with many simultaneous winbind requests, some of which might be slow. This implementation breaks offline logons, as the cached credentials are maintained in a child (this needs fixing). So, if the offline logons are active, only allow one DC connection. Probably the offline logon and the scalable file server cases are separate enough so that this patch is useful even with the restriction.
2011-01-19s3: Add wbinfo --dc-infoVolker Lendecke1-0/+4
wbinfo --dc-info prints the current DC name and IP address. This helps diagnosing problems that might happen when a later wbinfo --ping-dc fails. This patch started out by using the SAF and NBT cache entires, but those are relatively short-lived. So I decided to invent a new gencache entry with a very long timeout. We need to go via the gencache because when for some reason a winbind child process is stuck, we can't query it for the current DC it's connected to. This must eventually go away again when we have a fully async winbind. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Wed Jan 19 08:40:28 CET 2011 on sn-devel-104
2010-12-19s3: wcache_invalidate_samlogon only needs the SIDVolker Lendecke1-1/+1
2010-11-19s3: Remove some unused codeVolker Lendecke1-1/+0
Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Fri Nov 19 11:21:00 CET 2010 on sn-devel-104
2010-11-17s3: Move parse_sidlist to the only calling fileVolker Lendecke1-5/+0
2010-11-17s3: Remove some unused codeVolker Lendecke1-2/+0
2010-11-08s3:winbind add wcache_tdc_fetch_domainbysidChristian Ambach1-0/+1
add a function to lookup a domain in the winbind cache by domain SID
2010-11-05s3: Remove some duplicate prototypesVolker Lendecke1-16/+0
2010-10-14s3-auth Use security_token_debug() from common codeAndrew Bartlett1-1/+0
This prints the security token including the privileges as strings instead of just a bitmap. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-30s3: Add "smbcontrol winbindd ip-dropped <local-ip>"Volker Lendecke1-0/+10
This is supposed to improve the winbind reconnect time after an ip address has been moved away from a box. Any kind of HA scenario will benefit from this, because winbindd does not have to wait for the TCP timeout to kick in when a local IP address has been dropped and DC replies are not received anymore.
2010-09-21s3-winbindd: another attempt to fix the non-ldap build.Günther Deschner1-0/+2
Guenther
2010-09-19s3/winbind: remove unused winbindd_check_cache_sizeBjörn Jacke1-1/+0
2010-09-11s3:auth Remove NT_USER_TOKENAndrew Bartlett1-4/+4
The all UPPER case typedef is no longer the preferred Samba style and this makes it easier to see that this is the IDL-derivied structure Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-auth Change struct nt_user_token -> struct security_tokenAndrew Bartlett1-2/+2
This common structure is defined in security.idl Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-11s3-auth Change type of num_sids to uint32_tAndrew Bartlett1-2/+2
size_t is overkill here, and in struct security_token in the num_sids is uint32_t. This includes a change to the prototype of add_sid_to_array() and add_sid_to_array_unique(), which has had a number of consequnetial changes as I try to sort out all the callers using a pointer to the number of sids. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org>
2010-09-09s3: Remove "mem_ctx" from a few functionsVolker Lendecke1-3/+0
2010-09-09s3: Remove "mem_ctx" from wcache_save_creds()Volker Lendecke1-1/+0
2010-09-09s3: Remove "mem_ctx" from lookup_cached_name()Volker Lendecke1-2/+1
2010-09-09s3: Remove unused arg "user_sid" from winbindd_store_credsVolker Lendecke1-2/+1
All callers have passed in NULL
2010-09-09s3: Remove unused winbindd_update_creds_by_sidVolker Lendecke1-4/+0
2010-09-09s3: Remove unused winbindd_dual_show_sequence()Volker Lendecke1-2/+0
2010-09-08s3: Make winbind_add_failed_connection_entry staticVolker Lendecke1-3/+0
2010-08-16s3:winbindd: remove rpc_pipe_client references from winbind_dual_ndr codeStefan Metzmacher1-3/+3
metze
2010-08-14s3:winbind: remove the method REMOVE_MAPPING from winbind's APIMichael Adam1-7/+0
Michael
2010-08-14s3:winbind: remove the method SET_MAPPING from winbind's APIMichael Adam1-7/+0
Michael
2010-08-14s3:winbind: remove SET_HWM from winbind's API.Michael Adam1-7/+0
2010-08-05s3: avoid global include of ads.h.Günther Deschner1-1/+2
Guenther
2010-07-07s3-winbindd: route samr chgpwd ops for own domain over internal samr pipe as ↵Günther Deschner1-0/+7
well. Guenther
2010-06-10s3:winbindd use common server context functionsSimo Sorce1-3/+0
2010-05-31s3:winbind tidy up connecting the winbind sockets.Andrew Bartlett1-4/+2
By putting this code inline in winbindd_setup_listeners() we remove 2 static variables and simplify the code. By putting the get_winbind_priv_pipe_dir() in the same file, we allow it to be reimplemented in s3compat. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org>