summaryrefslogtreecommitdiff
path: root/source4/auth
AgeCommit message (Expand)AuthorFilesLines
2008-09-30Pass session options around; saves another use of global_loadparm.Jelmer Vernooij1-0/+1
2008-09-29make the schannel creentials persistentAndrew Tridgell1-1/+1
2008-09-24Cosmetic corrections for the KERBEROS libraryMatthias Dieter Wallnöfer1-3/+1
2008-09-24Kerberos cosmetic changes: Revert a part of the patchMatthias Dieter Wallnöfer1-1/+3
2008-09-24Cosmetic corrections for the KERBEROS libraryMatthias Dieter Wallnöfer4-15/+13
2008-09-24Merge branch 'master' of ssh://git.samba.org/data/git/samba into cryptoJelmer Vernooij2-6/+8
2008-09-24Move source4/lib/crypto to lib/crypto.Jelmer Vernooij6-6/+6
2008-09-24Fix nasty bug that would come up only if a client connection to a remoteSimo Sorce2-6/+8
2008-09-23Merge ldb_search() and ldb_search_exp_fmt() into a simgle function.Simo Sorce1-1/+1
2008-09-23gensec_krb5: only give away the session key, when the authentication is doneStefan Metzmacher1-0/+4
2008-09-23gensec_gssapi: only give away the session key, when the authentication is doneStefan Metzmacher1-4/+5
2008-09-23ntlmssp: only give away the session key, when the authentication is doneStefan Metzmacher1-0/+4
2008-09-19NTLMSSP Server: Correctly fills in the DNS server name and server domainMatthias Dieter Wallnöfer1-21/+17
2008-09-18Generate with 1.3.36.Jelmer Vernooij4-27/+38
2008-09-03Implement NETLOGON PAC verfication on the server-sideAndrew Bartlett1-5/+5
2008-08-28Heimdal provides Kerberos PAC parsing routines. Use them.Andrew Bartlett4-89/+170
2008-08-27Put the internal gensec_gssapi state into a header.Andrew Bartlett2-43/+69
2008-08-14gensec_gssapi: only cache the session key in STAGE_DONEStefan Metzmacher1-5/+9
2008-08-12gensec_gssapi: add support for GENSEC_FEATURE_NEW_SPNEGOStefan Metzmacher1-0/+25
2008-08-12gensec_gssapi: fix compiler warningsStefan Metzmacher1-2/+2
2008-08-12gensec_gssapi: add a function to load the lucid structure onceStefan Metzmacher1-15/+44
2008-08-12gensec: add support for new style spnego and correctly handle mechListMICStefan Metzmacher3-7/+135
2008-08-08gensec_gssapi: use the correct signature size for cfx/rfc4121 style signaturesStefan Metzmacher1-1/+1
2008-08-08gensec_gssapi: use gsskrb5_get_subkey() to get the session keyStefan Metzmacher1-3/+3
2008-08-08Always set a session key, even for the 'no password' case.Andrew Bartlett1-0/+2
2008-08-08Clarify commentAndrew Bartlett1-2/+2
2008-08-07gensec_gssapi: add support for GENSEC_FEATURE_SIGN_PKT_HEADERStefan Metzmacher1-4/+82
2008-08-07gensec: add GENSEC_FEATURE_SIGN_PKT_HEADER flagStefan Metzmacher1-0/+1
2008-08-01auth/kerberos: remove dependencies to internal heimdalStefan Metzmacher2-2/+1
2008-08-01auth/kerberos: we don't need to include heimdal private headersStefan Metzmacher1-2/+0
2008-08-01gensec_gssapi: include <gssapi/gssapi.h>Stefan Metzmacher1-1/+1
2008-08-01auth_server: set the workstation nameStefan Metzmacher1-0/+4
2008-08-01build with the new heimdal versionStefan Metzmacher2-1/+3
2008-08-01auth/ntlmssp: don't crash when the backend give no challengeStefan Metzmacher1-0/+6
2008-08-01auth_server: fix the logic of server_get_challenge()Stefan Metzmacher1-4/+4
2008-08-01auth_server: fix segfault reported by Julien Kerihuel <j.kerihuel@openchange....Stefan Metzmacher1-1/+1
2008-07-28Revert "gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes...Stefan Metzmacher1-3/+3
2008-07-28gensec_gssapi: use gsskrb5_get_subkey() to make smb2 signing with aes keys workStefan Metzmacher1-3/+3
2008-07-28auth/credentials: explain why we need to the enctypes for the gssapi layerStefan Metzmacher1-1/+11
2008-07-26gensec_gssapi: add support for signing RPC messagesStefan Metzmacher1-35/+12
2008-07-26auth/credentials: use the same enctypes when getting a TGT and a TGSStefan Metzmacher1-0/+23
2008-07-15Kill of some bogus debugs for the world who does not use the LDAP backendAndrew Bartlett1-3/+3
2008-07-15Allow ldap credentials to be (optionally) stored in secrets.ldbAndrew Bartlett1-11/+33
2008-07-15Try to make NTLMSSP less fussy for unimportant messages.Andrew Bartlett1-2/+13
2008-06-30auth: don't force the build of auth_server as shared_moduleStefan Metzmacher1-1/+0
2008-06-27ntlmssp: get rid of "cast to pointer from integer of different size" warning ...Michael Adam1-3/+3
2008-06-27credentials: gss_set_cred_option() doesn't like GSS_C_NO_BUFFERStefan Metzmacher1-1/+4
2008-06-27credentials: gss_set_cred_option() needs gss_cred_id_t * argument, not gss_cr...Michael Adam1-1/+1
2008-06-19credentials: set GSS_KRB5_CRED_NO_CI_FLAGS_X to avoid GSS_C_CONF_FLAG and GSS...Stefan Metzmacher1-6/+21
2008-06-16Fix buildSimo Sorce1-0/+1