Age | Commit message (Collapse) | Author | Files | Lines |
|
supporting a schema
(This used to be commit 53b57300c799a079b4d64815243fe6120e0a9fa2)
|
|
The MS-ADTS document has quite detailed instrucitons on how these
flags should be processed. This change also causes the correct
sign-wrapping to occour, as these are declared as signed integers.
Andrew Bartlett
(This used to be commit 5c3d237a6d721dc75166bdc5ac0c6e76a4495bf7)
|
|
This ensures they don't leak over LDAP, but does not prevent access,
as ldbsearch locally still bypasses these controls.
Andrew Bartlett
(This used to be commit fa3f3bab33001770a9d7e33875bf212636f6c128)
|
|
when we can't process an ANR request we need to continue with the
parse tree we were given, not a NULL tree
(This used to be commit ed66feb80aac7432049fe9fd86a9232984587e17)
|
|
This is a partial fix towards bugs due to us walking past the end of
what we think are strings in ldb. There is much more work to do in
this area.
Andrew Bartlett
(This used to be commit 5805a9a8f35fd90fa4f718f73534817fa3bbdfd2)
|
|
(This used to be commit 8003ee9abf474de534677283fc499f9a3d992b20)
|
|
(This used to be commit 07d122ce2c255124dfb3acf71a3afdf52f06e1b1)
|
|
This includes additional Samba-specific syntaxes made available from
the ldif_handlers code.
This commit also changes some table to use #defines, to ensure
consistancy in other parts of the code.
Andrew Bartlett
(This used to be commit e26a5efd9a580ed3728e1f449e367b1cd4a73b5f)
|
|
(This used to be commit 07107c45c35a11979bf68a14b2c4df9415880fcb)
|
|
This was removed from ldb_tdb a while ago
Andrew Bartlett
(This used to be commit fcb87e77860b449ac3483ccec5e6b5ed087540f2)
|
|
This reads the schema from the in-memory structure, when the magic
attributes are requested. The code is a modified version of that used
in the ad2oLschema tool (now shared).
The schema_fsmo module handles the insertion of the generated result.
As such, this commit also removes these entries from the setup/schema.ldif
Metze's previous stub of this functionality is also removed.
Andrew Bartlett
(This used to be commit c7c32ec7b42bdf0f7b669644516438c71b364e60)
|
|
(This used to be commit 31a303c099e26423160010c48b305434d4cbea25)
|
|
metze
(This used to be commit 2f06fbe06be2e1b77ea013ddba853ce819e58e88)
|
|
(This used to be commit b12dd8ee5443ebfc204d1684f541d68ffb351197)
|
|
(This used to be commit 8dfba3160cc4bc518f3ad8570d104e5baae784ca)
|
|
metze
(This used to be commit fac7c79afae05a88ecc2a63c8eb9f2fd53ab7ce6)
|
|
The ldif for that operation looks like this:
dn:
changetype: Modify
add: schemaUpdateNow
schemaUpdateNow: 1
It uses the rootdse's object functional attribute schemaUpdateNow.
In rootdse_modify() this command is being recognized and it is send as extended operation with DSDB_EXTENDED_SCHEMA_UPDATE_NOW_OID.
In the partition module its dispatched to the schema_fsmo module.
The request is processed in the schema_fsmo module by schema_fsmo_extended().
(This used to be commit 39f9184ddf215f2b512319211c0a05702218ef87)
|
|
But it's still of by default until we now what triggers this generation.
It could be that the value is always generated but the KDC only
uses it when in a specific funtional level, but it could also
be that it's only generated in a specific functional level.
metze
(This used to be commit 08618bbd508ede0bb9e1922fae562cffdca41cbd)
|
|
like windows
metze
(This used to be commit ca9cd81a1798fb15195566422b3cad7c282fce89)
|
|
metze
(This used to be commit 4ad73a0bf8952783d3d9a7339c0c4fd8ca28981a)
|
|
the hashes
metze
(This used to be commit 5edff84429ef0d03b47a438e18861d26c97e17b6)
|
|
metze
(This used to be commit 1bf552856f3a930c4716ceb73d9ba9adf7502d3d)
|
|
metze
(This used to be commit 19b8c8e37bafab050ab61266c35006efada2947c)
|
|
metze
(This used to be commit 5b860572686167d0291161f6597f143e538e2f3a)
|
|
metze
(This used to be commit 26e9169d454349795ad0bc64d7f65059541ab89e)
|
|
Conflicts:
source/dsdb/samdb/ldb_modules/simple_ldap_map.c
(This used to be commit 5d539b7da46e38e7570fa5af4549b142f25e4585)
|
|
We only ever have one backend partition per Samba partition.
Andrew Bartlett
(This used to be commit 316a9b312a2d4a4ea5a5c70946fb06b61fab1a7d)
|
|
(This used to be commit 7fb8179f214bbba95eb35d221cb9892b55afe121)
|
|
Until I create a samba4openldaptop and samba4fedoratop...
Andrew Bartlett
(This used to be commit 6e232c4ae6dc4151599ab4e57add2ec232d4ac13)
|
|
This makes Samba4 behave much like Samba3 did, and use a single set of
administrative credentials for it's connection to LDAP.
Andrew Bartlett
(This used to be commit e396a59788d77aa2fbf3b523c3773fe0e5c976c0)
|
|
This attribute is used in a very similar way (virtual attribute
updating the password) in AD on Win2003, so eliminate the difference.
This should not cause a problem for on-disk passwords, as by default
we do not store the plaintext at all.
Andrew Bartlett
(This used to be commit 1cf0d751493b709ef6b2234ec8847a7499f48ab3)
|
|
This code is now in common with ad2oLschema.
Andrew Bartlett
(This used to be commit 0a797388ca442c3ad4809888897b1c63b65a7fdf)
|
|
Instead of extensibleObject, we use the new (more correct) ad2oLschema
tool, and a new objectClass called 'samba4Top', which we add and
remove in the same way we did extensibleObject.
Andrew Bartlett
(This used to be commit 5ab20aa8b43415751f77602fff3a3008bf2186db)
|
|
This will allow the kludge_acl and schema code to leverage the same
work. (We might even get schema validation soon! :-)
Andrew Bartlett
(This used to be commit cecd04ce1f8ce2af2fb654b3abc1499092405d60)
|
|
LDB does not know about nor process the AD schema, so it makes no
sense to have this tool there. I've been changing it anyway, to use a
common schema manipulation library, and will enhance these links in
the future.
Andrew Bartlett
(This used to be commit c7704805b9a3541e4c8768278c8289b0aa6ed5e3)
|
|
This implements the logic in the schema_fsmo_add() function,
but it only calls a dummy dsdb_create_prefix_mapping() yet.
metze
(This used to be commit 9018b85e834de6714a78304ba1c7018838e30a61)
|
|
metze
(This used to be commit 8538d305c803268c712a90879f29a2a74ba0ef03)
|
|
long time
metze
(This used to be commit 82940f6ca120026378e6deb49a07becb2d581f45)
|
|
metze
(This used to be commit 3379630a91bd96a34f99ed24ac92380bd97ccb07)
|
|
metze
(This used to be commit a485a363c3dc1b6b4d12410ed8e390b4d64a739f)
|
|
To actually validate the DN, we load and call the validation fucntion,
not just check the 'ldb_dn_is_valid()' function.
Andrew Bartlett
(This used to be commit 5fb5a4e13db3a03da414876efa717c3de44ca77c)
|
|
specific debug function.
By default do not debug, this is the most appropriate action for a library
as we cannot assume what stderr is use for in the main app.
The main app is responsible to set ev_debug_stderr if they so desire.
(This used to be commit e566a2f308ac6fb4b526a744f7059b565670aea5)
|
|
(This used to be commit 3b8eec7ca334528cad3cdcd5e3fc5ee555d8d0e0)
|
|
This commit broke the build, because not all files (libreplace, popt)
were updated.
Andrew Bartlett
(This used to be commit 3faacf4351d68a10aea78b53768571d2059772ae)
|
|
(This used to be commit e2b71a0ecbf10a78a59a8ec6371bdee57b1bfa6c)
|
|
(This used to be commit 82db5d3d56f9faefea47160ad2c983393131382a)
|
|
(This used to be commit 17c41a6c3e71102e3516e6926f7e7d1ab5c97563)
|
|
These flags are too useful just to hide away...
Andrew Bartlett
(This used to be commit 1e897b6148407e9921edd2c3db734930d79ccb42)
|
|
(This used to be commit 4d7925f953bc9d1fcffb4a4dd268b763c18ceae6)
|
|
(This used to be commit 42eb6b33462228467e65a51bbf624c481802b090)
|