| Age | Commit message (Expand) | Author | Files | Lines |
|---|
| 2013-01-21 | dsdb-acl: the SEC_ADS_DELETE_CHILD checks need objectclass->schemaIDGUID | Stefan Metzmacher | 1 | -2/+7 |
| 2013-01-21 | dsdb-acl: make use of acl_check_access_on_objectclass() for the object in acl... | Stefan Metzmacher | 1 | -6/+50 |
| 2013-01-21 | dsdb-acl: make use of acl_check_access_on_{attribute,objectclass} in acl_rena... | Stefan Metzmacher | 1 | -47/+43 |
| 2013-01-21 | dsdb-acl: make use of acl_check_access_on_attribute() in acl_modify() | Stefan Metzmacher | 1 | -44/+16 |
| 2013-01-21 | dsdb-acl: remove unused acl_check_access_on_class() | Stefan Metzmacher | 1 | -46/+0 |
| 2013-01-21 | dsdb-acl: use acl_check_access_on_objectclass() instead of acl_check_access_o... | Stefan Metzmacher | 1 | -8/+13 |
| 2013-01-21 | dsdb-acl: Pass the structural objectClass into acl_check_access_on_attribute | Andrew Bartlett | 1 | -18/+41 |
| 2013-01-21 | dsdb-acl: Remove unused get_oc_guid_from_message() | Andrew Bartlett | 1 | -19/+0 |
| 2013-01-21 | dsdb-acl: use dsdb_get_structural_oc_from_msg() rather than class_schemaid_gu... | Andrew Bartlett | 1 | -8/+7 |
| 2013-01-21 | dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_rename() | Andrew Bartlett | 1 | -12/+14 |
| 2013-01-21 | dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_modify() | Andrew Bartlett | 1 | -8/+10 |
| 2013-01-21 | dsdb-acl: dsdb_attribute_by_lDAPDisplayName() is needed for all attributes | Stefan Metzmacher | 1 | -16/+18 |
| 2013-01-21 | dsdb-acl: introduce a 'el' helper variable to acl_modify() | Stefan Metzmacher | 1 | -12/+11 |
| 2013-01-21 | dsdb-acl: introduce a 'msg' helper variable to acl_modify() | Stefan Metzmacher | 1 | -20/+20 |
| 2013-01-17 | dsdb-acl: calculate sDRightsEffective based on "nTSecurityDescriptor" | Stefan Metzmacher | 1 | -3/+11 |
| 2013-01-17 | dsdb-acl: add helper variable 'ldb' in acl_sDRightsEffective | Stefan Metzmacher | 1 | -1/+2 |
| 2013-01-17 | dsdb-acl: fix the order of special and system checks | Stefan Metzmacher | 1 | -22/+61 |
| 2013-01-17 | dsdb-acl: Do not apply ACL on special DNs to hide attributes that the user sh... | Matthieu Patou | 1 | -0/+4 |
| 2013-01-17 | dsdb-acl: talloc_free the private context when we pass to the next module | Stefan Metzmacher | 1 | -0/+1 |
| 2013-01-17 | dsdb-acl: don't call dsdb_user_password_support() if we don't use the result | Stefan Metzmacher | 1 | -2/+8 |
| 2013-01-15 | dsdb-acl: Run sec_access_check_ds on each attribute proposed to modify (bug #... | Andrew Bartlett | 1 | -28/+27 |
| 2013-01-10 | dsdb-acl: give error string if we can not obtain the schema | Andrew Bartlett | 1 | -2/+3 |
| 2012-11-30 | s4:dsdb/acl: require SEC_ADS_DELETE_TREE if the TREE_DELETE control is given ... | Stefan Metzmacher | 1 | -0/+12 |
| 2012-11-30 | s4:dsdb/acl: also add DSDB_SECRET_ATTRIBUTES into the password attributes | Stefan Metzmacher | 1 | -5/+36 |
| 2012-11-30 | s4:dsdb/acl_read: enable acl checking on search by default (bug #8620) | Stefan Metzmacher | 1 | -1/+1 |
| 2012-11-30 | s4:dsdb/acl: calculate the correct access_mask when modifying nTSecurityDescr... | Stefan Metzmacher | 1 | -1/+14 |
| 2012-11-30 | s4:dsdb/acl: don't protect confidential attributes when "acl:search = yes" is... | Stefan Metzmacher | 1 | -0/+11 |
| 2012-11-30 | s4:dsdb/acl: remove unused "acl:perform" option | Stefan Metzmacher | 1 | -3/+0 |
| 2012-11-30 | s4:dsdb/acl: do helper searches AS_SYSTEM and with SHOW_RECYCLED | Stefan Metzmacher | 1 | -5/+15 |
| 2012-11-12 | s4:dsdb/acl: only give administrators access to attributes marked as confiden... | Stefan Metzmacher | 1 | -0/+87 |
| 2012-11-12 | s4:dsdb/acl: reorganize the logic flow in the password filtering checks | Stefan Metzmacher | 1 | -54/+92 |
| 2012-11-12 | s4:dsdb/acl: fix search filter cleanup for password attributes | Stefan Metzmacher | 1 | -1/+1 |
| 2012-04-11 | s4:dsdb/samdb/ldb_modules/schema.c - move "get_last_structural_class()" into ... | Matthias Dieter Wallnöfer | 1 | -2/+1 |
| 2012-04-11 | s4:dsdb/samdb/ldb_modules/schema.c - inline "get_oc_guid_from_message()" to i... | Matthias Dieter Wallnöfer | 1 | -3/+23 |
| 2012-04-11 | s4:dsdb/samdb/ldb_modules/schema.c - inline "acl_check_access_on_class" to it... | Matthias Dieter Wallnöfer | 1 | -0/+47 |
| 2012-04-11 | s4:acl LDB module - remove set but unused variables | Matthias Dieter Wallnöfer | 1 | -5/+0 |
| 2012-03-02 | SEGV in acl_validate_spn_value: dnsHostName NULL | Arvid Requate | 1 | -1/+1 |
| 2011-08-26 | s4-dsdb Return ACL errors as ldb_errstring() | Andrew Bartlett | 1 | -16/+27 |
| 2011-07-13 | s4-dsdb: fixed modify of ACLs on deleted objects | Andrew Tridgell | 1 | -2/+4 |
| 2011-07-01 | s4-dsdb guard principalName parse for invalid inputs | Andrew Bartlett | 1 | -1/+6 |
| 2011-07-01 | s4-dsdb Allow a servicePrincipalName of machine$ | Andrew Bartlett | 1 | -0/+6 |
| 2011-02-28 | Fix some types | Jelmer Vernooij | 1 | -1/+1 |
| 2011-02-15 | s4:acl LDB module - interpret "userAccountControl" as "uint32_t" | Matthias Dieter Wallnöfer | 1 | -3/+3 |
| 2011-02-14 | s4-ldb_modules/acl: Use ntds_guid for SPN check only we have a DC object | Kamen Mazdrashki | 1 | -6/+5 |
| 2011-02-14 | s4-ldb_modules/acl: Get correct NTDSDSA objectGUID to check SPN for | Kamen Mazdrashki | 1 | -2/+17 |
| 2011-02-14 | s4/ldb_modules/acl.c: Fix calculation for samAccountName string len | Kamen Mazdrashki | 1 | -1/+1 |
| 2011-01-28 | s4-acl: Fixed returning uninitialized ldap error in case of some critical err... | Nadezhda Ivanova | 1 | -7/+10 |
| 2011-01-17 | s4-dsdb: pass parent request to dsdb_module_*() functions | Andrew Tridgell | 1 | -12/+13 |
| 2010-12-23 | s4:acl LDB module - "acl_rename" - memory contexts fixup | Matthias Dieter Wallnöfer | 1 | -5/+19 |
| 2010-12-23 | s4:acl LDB module - add a missing "talloc_free(tmp_ctx)" in an error path | Matthias Dieter Wallnöfer | 1 | -0/+1 |
