Age | Commit message (Collapse) | Author | Files | Lines |
|
the incoming addresses....
Jeremy.
(This used to be commit 4e9359a1f67a44b2981579383327ba774e1c31f9)
|
|
(This used to be commit 05ec9c40f40be4d4dbb10b33e0def2374468ff8a)
|
|
(This used to be commit 3b5ddd8e1f021f6a38434c0d9a47317ab6ff2614)
|
|
Still testing this, but I'm checking it in
so Volker can test it as well. Should be right.
(This used to be commit 8edf193722f699cc33baed410917a78a5e28d0a4)
|
|
(This used to be commit 5efa0d7cc28d903c1986b8e40072ae49e9532a88)
|
|
(This used to be commit c9d6782e091406ed105b7dc34c8c83e53bfe515e)
|
|
(This used to be commit 6ebe87d318658f28ad9b9f8169fc4400856d5812)
|
|
define it in SHLD for those systems the use CC for SHLD.
(This used to be commit d0e2f3d1098ac0b8fa9165b3a93cd8d325a7a0d9)
|
|
* move rid allocation into IDMAP. See comments in _api_samr_create_user()
* add winbind delete user/group functions
I'm checking this in to sync up with everyone. But I'm going to split
the add a separate winbindd_allocate_rid() function for systems
that have an 'add user script' but need idmap to give them a RID.
Life would be so much simplier without 'enable rid algorithm'.
The current RID allocation is horrible due to this one fact.
Tested idmap_tdb but not idmap_ldap yet. Will do that tomorrow.
Nothing has changed in the way a samba domain is represented, stored,
or search in the directory so things should be ok with previous installations.
going to bed now.
(This used to be commit 0463045cc7ff177fab44b25faffad5bf7140244d)
|
|
backslash
in case the variable is empty. This apparently confuses some makes.
(This used to be commit 1e4043d54c2135b09be8c329f50f132779b4b776)
|
|
(This used to be commit bc4af3bdb163bd5c570dcb88cf48780b6ed66f9f)
|
|
rafal
(This used to be commit 156554738cf4e4ffa5a811d9979acd19418e7908)
|
|
fix the confusion when we tdb_lock_bystring() but
we retrieve an entry using tdb_fetch_by_string.
It's now always tdb.*bystring()
(This used to be commit 66359531b89368939f0e8f584a45844b5f2f99e7)
|
|
This has been tested on RedHat 9.0 with libiconv built in as well as
FreeBSD 4.6.2 with iconv-2.0.3 and biconv.g/libbiconv.
We should perhaps also check for other conversions that just ASCII<-->UCS-2LE
especially because those two names do not appear in charset.aliases for
iconv-2.0.3.
(This used to be commit 53d953da10dbfaf778907f19115e127c5aac1da8)
|
|
(This used to be commit b6bb70ea1e2eefbb538290a987390728f002ceac)
|
|
allocate id's.
Volker
(This used to be commit 0358cc76757e7ef06dada94ec3a73cd90a525ba9)
|
|
(This used to be commit 2f7658d9ba1f43fb2d14adc4af7b681634ab5cb2)
|
|
(This used to be commit 8d8d85ecd62dba075d90e54ec75da9b1328784fb)
|
|
properly handle iconv on FreeBSD ...
It works on Linux and FreeBSD ...
(This used to be commit 9302401f543bd3684657b38f046dc52a5a732035)
|
|
(This used to be commit 087e9af450109d749bfcc3016494d920b6028bf1)
|
|
(This used to be commit a61804b5ebc48ac9b9eb5f9b82d47fb4cf78f944)
|
|
to winbindd. See README.idmap-and-winbind-changes for details.
(This used to be commit 1111bc7b0c7165e1cdf8d90eb49f4c368d2eded6)
|
|
(This used to be commit f005f1cf12b839f3985ab00315da63c584ce803e)
|
|
(This used to be commit 389fe1e51abb533a781f69731a75771cb846d850)
|
|
purpose. Replace with an array of SAM_ACCOUNT/DOMAIN_GRP entries.
ZERO struct's in smbd/uid.c stops core dumps when sid_to_XX
functions fail. Getting ready to add caching.
Jeremy.
(This used to be commit 9d0692a54fe2cb087f25796ec2ab5e1d8433e388)
|
|
lookups.
Jeremy.
(This used to be commit 6bd47884030c9c124c4bba1f0d57cb8dd916530d)
|
|
Jeremy.
(This used to be commit f3c2e73a8c1c592d407542c12c0a445103415bc0)
|
|
available. Removed extra auth_init (thanks metze).
Jeremy.
(This used to be commit 88135fbc4998c266052647f8b8e437ac01cf50ae)
|
|
(This used to be commit 4acdfc5c944aa8830d6cec7bd1225200448e45c5)
|
|
(This used to be commit 43f21078ec0f885d4d1a0b90476b55f8f92de9e7)
|
|
(This used to be commit 3a1f4f5ea5379b0deb6dc6b8ed81dedc3a08f70e)
|
|
(This used to be commit fca08b1c8766ef1961a9dedc127224249cac9543)
|
|
uid for the server_info struct
(This used to be commit 6a84297da53e8658f4bcfa4951ceed011b69201f)
|
|
(This used to be commit a9a3339b2d99dcb64b675b27255d4aa5959a1caf)
|
|
to fix open mode race condition.
Jeremy.
(This used to be commit cbde1c8dfcd9d3bef956fe073e7108a54b48844b)
|
|
Jeremy.
(This used to be commit 61e9c49cd67e73260738ca2482aa8f8dc5ce7366)
|
|
code. Bug #185.
Jeremy.
(This used to be commit 7a1ac7be42dfb90fd44f2c51810eedcea052386b)
|
|
(This used to be commit 8b52802e5d27bfc2d9dff2f4700e182c33f2b130)
|
|
just yet.
`
(This used to be commit 6f0b5d474a051db512db2f73a8097c80964ec513)
|
|
winbindd now. Also removing an unused file.
(This used to be commit 688369c23c604e9b6654fcf07190d2e27c1138cf)
|
|
Jeremy.
(This used to be commit e9fb6e45086a6170b6f6d5d3295398708ab1af58)
|
|
on a Samba PDC. Will be re-enabled after winbind_passdb is done.
(This used to be commit c4762aa3bc0d5d2dc5161b543b22808a369e0698)
|
|
* remove idmap_XX_to_XX calls from smbd. Move back to the
the winbind_XXX and local_XXX calls used in 2.2
* all uid/gid allocation must involve winbindd now
* move flags field around in winbindd_request struct
* add WBFLAG_QUERY_ONLY option to winbindd_sid_to_[ug]id()
to prevent automatic allocation for unknown SIDs
* add 'winbind trusted domains only' parameter to force a domain member
server to use matching users names from /etc/passwd for its domain
(needed for domain member of a Samba domain)
* rename 'idmap only' to 'enable rid algorithm' for better clarity
(defaults to "yes")
code has been tested on
* domain member of native mode 2k domain
* ads domain member of native mode 2k domain
* domain member of NT4 domain
* domain member of Samba domain
* Samba PDC running winbindd with trusts
Logons tested using 2k clients and smbclient as domain users
and trusted users. Tested both 'winbind trusted domains only = [yes|no]'
This will be a long week of changes. The next item on the list is
winbindd_passdb.c & machine trust accounts not in /etc/passwd (done
via winbindd_passdb)
(This used to be commit 8266dffab4aedba12a33289ff32880037ce950a8)
|
|
treating the returned message id as an error code.
(This used to be commit 42fdcef324d7a04e69c0078482e1a6b8a67ade94)
|
|
is no such user...
Thanks to jerry for spotting this.
Also clean up the function a bit, to avoid this happening again...
Andrew Bartlett
(This used to be commit d9a6859e2bd963f28cf3c3a62e483e868822597f)
|
|
Samba will now use the user's UNIX primary group, as the primary group when
dealing with the filesystem. The NT primary group is ignored in unix.
For the NT_TOKEN, the primary group is the NT priamry group, and the unix
primary group is added to the NT_TOKEN as a supplementary group.
This should fix bug #109, but will need to be revisited when we get a full
NT group database.
Also in this commit:
- Fix debug statements in service.c
- Make idmap_ldap show if it's adding, or modifying an existing DN
- Make idmap_ldap show both the error message and error string
(This used to be commit 32e455a714b2090fcfd1f6d73daccf600c15d51b)
|
|
Andrew Bartlett
(This used to be commit 3dd767841666068a1b32c71b03a8e7bc797087be)
|
|
(This used to be commit f7bf48114cec83a3f3107cce2b413221276a486d)
|
|
down failures.
Add a 'auto-add on modify' feature to guestsam
Fix some segfault bugs on no-op idmap modifications, and on new idmappings that
do not have a DN to tack onto.
Make the 'private data' a bit more robust.
Andrew Bartlett
(This used to be commit 6c48309cda9538da5a32f3d88a7bb9c413ae9e8e)
|
|
- Try better to add the appropriate mapping between UID and SIDs, based
on Get_Pwnam()
- Look for previous users (lookup by SID) and correctly modify the existing
entry in that case
- Map the root user to the Admin SID as a 'well known user'
- Save the LDAPMessage result on the SAM_ACCOUNT for use in the next 'update'
call on that user. This means that VL's very nice work on atomic LDAP
updates now really gets used properly!
- This also means that we know the right DN to update, without the extra
round-trips to the server.
Andrew Bartlett
(This used to be commit c7118cb31dac24db3b762fe68ce655b17ea102e0)
|