summaryrefslogtreecommitdiff
path: root/source3/winbindd
AgeCommit message (Collapse)AuthorFilesLines
2008-04-10winbindd: only call winbindd_validate_cache when not in offline logon mode.Michael Adam2-20/+17
originally, the cache was cleared before calling validate, but this way, we skipt the validation of the database when not in offline logon mode. This is put into a new wrapper function winbindd_cache_validate_and_initialize() which is now called in winbindd.c instead calling validate and initialize functions separately. Michael (This used to be commit 641b5e3fecfce9581536de8daf6d7e6ecbefaf34)
2008-04-10Also accept 0x15 getdc repliesVolker Lendecke1-19/+22
My NT4SP6 which my DC here trusts sends 0x15 instead of 0x13, from looking at the sniff at least the DC name is at the same place. (This used to be commit 79bc6796b81395d591fc6ef389f153dd981fe68b)
2008-04-09Try anonymous session setupVolker Lendecke1-1/+3
... if there's no trust password Attempt to fix bug 5350 (This used to be commit 99f6b63f3c637457fdda7ed930c6666171b25b61)
2008-04-07winbindd: fix break out early condition in fill_grent_mem().Michael Adam1-1/+1
if (!&new_glist) would always be skipped, if (new_glist == NULL) is what must have been meant... Michael (This used to be commit c1b60cdecff2a53f0a75a432a1ad7730eb734908)
2008-04-07Only cache password policy results that worked, otherwise weBo Yang1-1/+3
cannot login until the cache expires even if a connection to a DC has been restored. (This used to be commit 8671f9767d7d93a86712741303d6046937c3aae8)
2008-04-04Use sid_array_from_info3 in lookup_usergroups_cached().Günther Deschner2-41/+11
Guenther (This used to be commit 65b4cb20ea3fb806cfd50281e08f32bea70fafce)
2008-04-03Fix trusted users on a DC that uses the old idmap syntax. There was no ↵Simo Sorce1-0/+70
default backend therefore on IDs were mapped by default. (This used to be commit f6069126e5e6d239b1ae00e897a420227f923e3f)
2008-04-02Fix NETLOGON credential chain with Windows 2008 all over the place.Günther Deschner1-5/+1
In order to avoid receiving NT_STATUS_DOWNGRADE_DETECTED from a w2k8 netr_ServerAuthenticate2 reply, we need to start with the AD netlogon negotiate flags everywhere (not only when running in security=ads). Only for NT4 we need to do a downgrade to the returned negotiate flags. Tested with w2k8, w2ksp4, w2k3r2 and nt4sp6. Guenther (This used to be commit 0970369ca0cb9ae465cff40e5c75739824daf1d0)
2008-03-31Fix enumeration of forest trusts from our root domain.Gerald W. Carter1-1/+1
Do not overwrite the domain->domain_flags when setting infomation in set_dc_type_and_flags_connect(). (This used to be commit 3414eac439b731ad7204b821ddc4fec54fe4435d)
2008-03-31Augmented "wbinfo -m" to list additional information about the type, ↵Steven Danneman1-13/+91
direction, and transitivty of trusts. * added several helper functions to convert the trust_flags field in the winbindd_tdc_domain to more useful administrator ideas of trust type, trust direction, and trust transitivity. * converted winbindd_list_trusted_domains() to enumerate the trusted domain cache, instead of the domain list, and return additional trust information to the calling process * modified wbinfo to pretty print this additional trust information when a new --verbose switch is given with -m. Thus "wbinfo -m" and "wbinfo -all-domains" output as before, but "wbinfo --verbose -m" prints extra trust info. * updated some comments and fixed typos (This used to be commit e7827bb6afa264c12ecdc0858f49707ca3d6104f)
2008-03-31Forest root trust flags won't overwrite child trust flagsSteven Danneman2-33/+54
* changed the behavior of winbind_ads.c:trusted_domains() to not overwrite existing trust information if we're joined to a child domain, and querying the forest root domain. Previously if we were joined to a child domain, we'd request all known trust information from this child domain (our primary domain) and store it in the tdc. We'd then request all trust information from our tree root (to get the forests we transitively trust) and overwrite the existing trust information we already had from the perspective of the tree root. * updated several comments and fixed typos (This used to be commit 6aac972d790ad5ca65096cb2e85e6819b60a5413)
2008-03-29winbindd_cache: add missing validation function for pwinfo cache entryMichael Adam1-0/+24
Michael (This used to be commit 6d3fc63bfab06346fa57719e8747397873a3c46d)
2008-03-29Don't let winbind getgroups crash when we have no gids in the token.Günther Deschner1-3/+5
Guenther (This used to be commit 6a576cfe9b87e69af6acbe9abc04124b8b743fd3)
2008-03-28Make some fns staticVolker Lendecke1-16/+5
(This used to be commit e04fc36f223d8d905a930c077a6cf6c48ee57af7)
2008-03-27Fix typo.Günther Deschner1-5/+5
Guenther (This used to be commit fed644372916a5e565e4f5352aab61b39a3a42a0)
2008-03-27Don't fill password policy structure for any domain other than our own.Gerald W. Carter1-3/+15
The samr connects will fail. This is not independent of the CONTACT_TRUSTDOM flag neede by krb5 logins. (This used to be commit 4de4949e3bfcfb2169c329f19cb76936d9043d50)
2008-03-27Fix wbinfo -a trusted\\user%password on a Samba DC with trustsVolker Lendecke2-1/+5
Winbind can't be allowed to connect to the local smbd. (This used to be commit 0d617f639a3c9c52e4327aed4bd02d9e8e7312a2)
2008-03-27Move LOGON_KRB5_FAIL_CLOCK_SKEW to winbindd_pam.Günther Deschner1-0/+2
Guenther (This used to be commit fa64c76ac8e54f385f277b5b39be70075b2eeee0)
2008-03-26Fix winbind NETLOGON cred chain on a samba dc for w2k8 trusts.Günther Deschner1-1/+5
Guenther (This used to be commit 2586dc34e0f72204749f5bf10c8135cd3a753a42)
2008-03-25Fix a segfaultVolker Lendecke1-1/+1
When we get a NT_STATUS_WRONG_PASSWORD for example, my_info3 is not initialized at all. So first check that we have NT_STATUS_IS_OK(status) before we dereference my_info3. (This used to be commit 559cd9e5a7fac3ce3769d457132cdcb28569b93d)
2008-03-25Fix typoVolker Lendecke1-1/+1
(This used to be commit 38683a73013865695e1b04f5f6a974bd0c5c1cac)
2008-03-19Merge dd9e0bea31751 from 3-0-ctdb -- use NetSamLogonEx when possibleVolker Lendecke3-23/+90
NetSamLogonEx has the advantage that it does not use the credential chain (This used to be commit cfceb063f559f8549b8f24ce347be213c89303b0)
2008-03-19Fix some "nexted extern" warninsVolker Lendecke1-8/+8
(This used to be commit 32fc759d942abb36d7dd351eff82925b6788dd28)
2008-03-10Use a separate tdb for mutexesVolker Lendecke1-11/+6
Another preparation to convert secrets.c to dbwrap: The dbwrap API does not provide a sane tdb_lock_with_timeout abstraction. In the clustered case the DC mutex is needed per-node anyway, so it is perfectly fine to use a local mutex only. (This used to be commit f94a63cd8f94490780ad9331da229c0bcb2ca5d6)
2008-02-28winbind: use a struct element for WBFLAG_PAM_UNIX_NAMEStefan Metzmacher1-14/+4
To not conflict with WBFLAG_PAM_INFO3_TEXT. This should fix pam_winbind. metze (This used to be commit 1b8ed6c0ffb2548442bb7e9d848117ce9b1c65c0)
2008-02-28Let dsgetdcname() return a struct netr_DsRGetDCNameInfo.Günther Deschner1-5/+5
Guenther (This used to be commit b1a4b21f8c35dc23e5c986ebe44d3806055eb39b)
2008-02-27Add my copyright.Günther Deschner1-0/+1
Guenther (This used to be commit d078a8757182d84dfd3307a2e1b751cf173aaa97)
2008-02-17Use netr_SamInfo3 everywhere in winbindd.Günther Deschner6-139/+122
Guenther (This used to be commit d9502eb75395131d5a8130ff2c4ebace106cb974)
2008-02-17Getting rid of net_io_user_info3() when sending an NDR encoded netr_SamInfo3.Günther Deschner1-16/+18
Guenther (This used to be commit f22ba8aee2ff90e9e34db066d506fec24c52379f)
2008-02-13winbindd: add rids and other_sids arrays in WBFLAG_PAM_INFO3_TEXT modeStefan Metzmacher1-1/+43
metze (This used to be commit c5e6dd1ca9611e2830ff773875998c01bf779a64)
2008-02-13Convert last caller (in winbindd) to rpccli_samr_EnumDomainAliases.Günther Deschner1-7/+16
Guenther (This used to be commit 33a97b447c1875bf1cd5a703871a84a7fb359fec)
2008-02-13Convert last caller (in winbindd) to rpccli_samr_EnumDomainGroups.Günther Deschner1-7/+16
Guenther (This used to be commit 8890bc481f60cd42d96b240b2ed8e34bc3d81f13)
2008-02-13Convert last caller (in winbindd) to rpccli_samr_LookupRids.Günther Deschner1-23/+25
Guenther (This used to be commit 34c2566f026dbde4da10e2fc10c6960260eb6044)
2008-02-13nsswitch: convert winbind_env_set(), winbind_on() and winbind_off() into macrosStefan Metzmacher1-4/+4
metze (This used to be commit 5f623f54a919cc687d0ff16c16038c05a501008d)
2008-02-13Fix the build of winbindd, sorry.Günther Deschner1-5/+3
Guenther (This used to be commit c62c89c8f0d1ff8e384b88b3b192aa96f0b2183e)
2008-02-13Use rpccli_lsa_EnumTrustDom all over the place.Günther Deschner1-8/+10
Guenther (This used to be commit a25e7ffbca9c2c97dd36b0596e7cb38a72aaf9d9)
2008-02-12Use rpccli_samr_QueryUserInfo in net and winbindd.Günther Deschner2-14/+16
Guenther (This used to be commit a9ff6760901a489ff8877717bdd5a2218154498f)
2008-02-08Use rpccli_netr_DsRGetDCName() in rpcclient and winbindd.Günther Deschner1-12/+13
Guenther (This used to be commit 4f3e97cbae3df8e12db37b8a8a0eaee947fa723a)
2008-02-08Fix winbindd msrpc_lookup_useraliases.Günther Deschner1-1/+1
Guenther (This used to be commit e196e527ae47a75f6cac09b9f89aa5619047d4d2)
2008-02-08Use rpccli_lsa_QueryInfoPolicy() all over the place.Günther Deschner1-14/+17
Guenther (This used to be commit ce22abcea3446e4ad42e8e04654b9855b173c5a1)
2008-02-08Use rpccli_lsa_QueryInfoPolicy2 in winbindd.Günther Deschner1-16/+19
Guenther (This used to be commit ccf79cfa88c7f3a10d191f8f0eedb9d421c65f6c)
2008-02-08Use rpccli_samr_QueryDisplayInfo() all over the place.Günther Deschner1-19/+20
Guenther (This used to be commit 66b79add353bf7a09f304eac5274cb89b23d7b06)
2008-02-07Use rpccli_samr_GetGroupsForUser() all over the place.Günther Deschner1-5/+7
Guenther (This used to be commit d1c669920e88e7fecd13101c4ddfe45354c5ecdb)
2008-02-07Use rpccli_netr_GetAnyDCName and rpccli_netr_GetDCName everywhere.Günther Deschner2-22/+38
Guenther (This used to be commit 8abeea9922ac09e7307730ee7695453718356873)
2008-02-07Let rpccli_samr_chgpasswd3 use rpccli_samr_ChangePasswordUser3 internally.Günther Deschner1-16/+21
Guenther (This used to be commit ffbfd19ad7065caf05688c5748178d30115d47f4)
2008-02-06Use rpccli_samr_QueryDomainInfo() in winbindd.Günther Deschner7-85/+106
Guenther (This used to be commit dd9fa33e968d4e641460fe1c6beb05dfe12fa918)
2008-02-05Small whitespace cleanup + check for null returns on talloc_strdup.Jeremy Allison1-8/+12
Jeremy. (This used to be commit 654484b9a2d8d2be20f02d228d53a23936d1703b)
2008-02-05Use rpccli_samr_QueryGroupMember() all over the place.Günther Deschner1-3/+7
Guenther (This used to be commit 1793ed10df7f403b85a4e52c67cbfb277b23b30b)
2008-02-05Use rpccli_samr_GetAliasMembership() in winbindd and rpcclient.Günther Deschner1-16/+21
Guenther (This used to be commit 5c167162856fd1e13a3e04423cfc0cc936ae26b0)
2008-02-04Use rpccli_samr_Connect2() all over the place.Günther Deschner1-12/+15
Guenther (This used to be commit bdf8d562621e1a09bf83e2009dec24966e7fdf22)