Age | Commit message (Collapse) | Author | Files | Lines |
|
Guenther
(This used to be commit 11622805fb946b7b022d06ec4a85db2bfbf71f12)
|
|
In auth_winbind, remove the push_utf8 calls, as this is no longer a
UTF8 interface. (Removed from everywhere else earlier).
Tested with ASCII - I tried to load the weird charset for testing, but
it doesn't seem to work any more.
Andrew Bartlett
(This used to be commit cb27c197ee44d2be09014598e3928642b59ef956)
|
|
interop.
Modified the redhat patch some...
Jeremy.
(This used to be commit 2ae717cd2c876649464f91093e55bed64ac5588d)
|
|
implementation does
not exactly match what you would expect.
XP workstations during login actually do this, so we should better become a
bit more correct. The LDAP query issued is not really fully optimal, but it is
a lot faster and more correct than what was there before. The change in
passdb.h makes it possible that queryuseraliases is done with a single ldap
query.
Volker
(This used to be commit 2508d4ed1e16c268fc9f3676b0c6a122e070f93d)
|
|
session
setups on its way to open a pipe. This gets rid of many round-trips to the
LDAP server during logon by setting up the server_info_guest once and not
asking the LDAP server and nss every time. Make sure that the ldap connection
is reopened in the child. (I did not look at the sql backends.)
Volker
(This used to be commit 3298f6105e6a88c9390cac02245c8f2eee1e5046)
|
|
is not
correct anymore. If we actually open the tdb before the fork, we end up
opening the tdb twice. Jerry, jra, this also happens in the locking and
printing subsystems. You might want to check it there (not that it actually
happens right now, but this gave me some confusion lately...).
Volker
(This used to be commit 40cad9dcc14ddec0ce74bb9010d13bd82e4d10af)
|
|
stolen from samba4 ... ;-)
Volker
(This used to be commit b111bb46afc247e034a11e953b9d243cde69cc07)
|
|
Jeremy.
(This used to be commit 34275bae787762646f02ea1dec19d7b3a9a733a3)
|
|
out to be in the kerberos libraries, not in Samba. Now to test
with Heimdal.
Jeremy
(This used to be commit b08e3bf6fb1052285e4efd669d9717d3a617499d)
|
|
Volker
(This used to be commit 4c4da26aa19bedcbb52ed3e6d43ca380a7c1603c)
|
|
(This used to be commit 43a7f7db3d1995089ac8fb279f36e9e8edb1d8bb)
|
|
Jeremy.
(This used to be commit 82651c1b1704d90ca52be1463ee871801c607d3b)
|
|
when trusted domains are disabled anyway.
Guenther
(This used to be commit cd30a0b14adf1e58c19bcbfec385a5794d4ca112)
|
|
Guenther
(This used to be commit 3acc74eef5dae16d7e2792206640904265c42494)
|
|
Guenther
(This used to be commit c7eab285d967345510a15e83bce508edb8e06e99)
|
|
Jeremy.
(This used to be commit b356a8fdc5a1ac45f2f7f56a0836e794bdecddc6)
|
|
Guenther
(This used to be commit d22b29ee9c37b9d35e0d785632a10856045df0dc)
|
|
Jeremy.
(This used to be commit ff4cb6b5e80731856d6f3f7eebd8fc23902e3580)
|
|
Guenther
(This used to be commit 05619cfdbf814e5c79e65934b82424eca00c76c4)
|
|
Guenther
(This used to be commit 43c8a9e25961f65677a55e701f54c0227329a756)
|
|
Guenther
(This used to be commit c4cb2ffa611f79ab3ba17f2afd8e4cd99b0afad3)
|
|
Mewburn <lukem@NetBSD.org> and close Bugzilla #1661.
Leaving the old define for KRB5_KPASSWD_VERS_SETPW (added by Antti
Andreimann) as fallback when the library does not provide one.
Guenther
(This used to be commit 00598877dfb7aab48d1b5d58b3a69ed2dd8a36a8)
|
|
feature preopcessing header file only (3 problematic headers on solaris)
(This used to be commit b4da6bd0f12d599eff4a90a91ca469145bee6275)
|
|
(This used to be commit 0bc5105f71c79e8c709d3bdfcc57cf8621e6fad5)
|
|
(This used to be commit b144ce557f516f62ab802fbb277799b10153c8fb)
|
|
memcpy's into fqdn names. I think the original intent was to create
MYNAME.fqdn.tail.part.
Will need testing to see I haven't broken keytab support.
Jeremy.
(This used to be commit 82acf83040654eb8b7e261518a3e5eb9caea7750)
|
|
Dahyabhai <nalin@redhat.com>
(bugid #1717).
Jeremy.
(This used to be commit 30b8807cf6d5c3c5b9947a7e841d69f0b22eb019)
|
|
<nalin@redhat.com>
for bug #1717.The rest of the code needed to call this patch has not yet been
checked in (that's my next task). This has not yet been tested - I'll do this
once the rest of the patch is integrated.
Jeremy.
(This used to be commit 7565019286cf44f43c8066c005b1cd5c1556435f)
|
|
Jeremy.
(This used to be commit eefb911d0c66bdee586a86446e16723013f84101)
|
|
krb5_creds
struct.
Jeremy.
(This used to be commit c9b80490128e09442a01dd8ec6f4b453769e82c1)
|
|
(This used to be commit 682b746ab6ff10bf9970e808f0032066e5f3b783)
|
|
synonyms; patch from Luke Mewburn <lukem@NetBSD.org>
(This used to be commit c8101dbb6561267298728714e5b82591138c56e6)
|
|
(This used to be commit 7dc28014860a5c5bbe78dc22628301ea8dc245ee)
|
|
SATOH Fumiyasu <fumiya@samba.gr.jp>.
Jeremy.
(This used to be commit 7e35900bc6894d69f83c99ac6eb260d7cc35683a)
|
|
Dahyabhai <nalin@redhat.com>.
Jeremy.
(This used to be commit 55d23cb253d869e58bd51cf179c6dc0f3cfab9d2)
|
|
<narayana[dot]pattipati[at]wipro\dotty/com> for
Solaris to ensure we distinguish properly between 5.1 and 5.10.
(This used to be commit 96baa5bb6c908fa5e870d86d3f380fd368ada658)
|
|
Jeremy.
(This used to be commit 13278744cce43060379b7bbebcdf90b41546d43d)
|
|
Jeremy.
(This used to be commit 0f3f7b035b37bfc51d3a59d0472003c3d4ac1511)
|
|
really didn't
(This used to be commit c7036f824627dc555185a52ed95d3e0132babcd8)
|
|
desired_access passed in to the lsa open policy routine. Use a default
value that netapps and windows likes as well.
(This used to be commit 9c3cffaf22c69b8c7fae12adf02aa1679de546b3)
|
|
name not existing. Found using Samba4 RAW-SEARCH.
Jeremy.
(This used to be commit 74dd2b33ff1ecba752682937c792628e081f17f5)
|
|
throw-up.
(This used to be commit 3d8e19468b8dda3bc84f0bc9174944c8275ed024)
|
|
Guenther
(This used to be commit c9a7bc10b7aa5e1cb7d37ba9b1a8ddb9b0b2dd5e)
|
|
- fix several memleaks found by valgrind
- turn off support for trusted domains (can be reenabled with
#define IDMAP_RID_SUPPORT_TRUSTED_DOMAINS 1)
- improve readability
Guenther
(This used to be commit 351a1227e80db5d87b71e17cd1443c11ea6ace4e)
|
|
Written by Sumit Bose <sbose@suse.de> and myself a while ago.
idmap_rid does a direct, static mapping between RIDs and UIDs/GIDs using
the idmap-range as offset. It does thus allow to have a unified mapping
over several winbindd-systems without having the need of a central
LDAP-Server (and all related dependencies and problems this solution can
bring).
Compile:
./configure --with-shared-modules=idmap_rid
Usage:
idmap backend = idmap_rid
idmp_rid does even allow you to have multiple mappings (for trusted
domains). This is a rather problemtic feature and will be turned off by
default rather soon. The problem is that ranges can quickly overlap when
not measured with caution.
idmap backend = idmap_rid:"MYDOMAIN=1000-9999 OTHER=10000-19999"
Will valgrind idmap_rid later today and fix a couple of things.
Guenther
(This used to be commit 49a238bd37105bf1a33d4a230ca594c4cf304dd3)
|
|
Volker
(This used to be commit 2af98ec054508055a63552cfdb48cfaf43f76b62)
|
|
Use the fully qualified DOMAIN\user format for 'security = domain|ads'
and apply after authentication has succeeded.
* also change fill_domain_username() to only lowercase the username
and not the domain+username. This was a cosmetic fix only.
makes the output more consistent with %D and %U.
(This used to be commit 30ee2d5b0906d5cd73a8faf5170e5aebcc6d69c8)
|
|
Jeremy.
(This used to be commit b35f48ad8ee63e44c70d0b198ccff39306ebdf74)
|
|
(in preparation of adding idmap_rid)
Guenther
(This used to be commit e7691f4862da141f530a8e8b1364b9c02e8dc732)
|
|
normal_close.
Jeremy.
(This used to be commit f08f437c736e44913b3eeb16d6e32da8975442a7)
|