Age | Commit message (Expand) | Author | Files | Lines |
2013-02-22 | dsdb-descriptor: Spell out security descriptor flags as constants | Andrew Bartlett | 2 | -2/+2 |
2013-02-20 | ntdb: switch between secrets.tdb and secrets.ntdb depending on 'use ntdb' | Rusty Russell | 1 | -3/+10 |
2013-02-08 | dsdb-operational: rework the loop for attribute removal | Matthieu Patou | 1 | -41/+92 |
2013-02-08 | replmetadata: raise msg level for conflict resolution so that we don't polute... | Matthieu Patou | 1 | -2/+2 |
2013-02-08 | dsdb-cracknames: Fix potential double free and memory leaks | Matthieu Patou | 1 | -2/+4 |
2013-02-04 | dsdb/password_hash: rename variable 'stat' to 'vstat' | Stefan Metzmacher | 1 | -5/+5 |
2013-02-04 | dsdb/password_hash: make sure that io->n.cleartext_utf8.data is a null termin... | Stefan Metzmacher | 1 | -0/+23 |
2013-01-27 | dsdb-descriptor: get_default_group() should always return the DAG sid (bug #9... | Stefan Metzmacher | 1 | -5/+10 |
2013-01-23 | dsdb-acl: remove unused variable | Stefan Metzmacher | 1 | -1/+0 |
2013-01-21 | dsdb: Fix warning about unused var | Matthieu Patou | 1 | -2/+0 |
2013-01-21 | dsdb: Explain ordering constraints on the ACL module as well. | Andrew Bartlett | 1 | -2/+2 |
2013-01-21 | dsdb: Ensure "authenticated users" is processed for group memberships | Andrew Bartlett | 1 | -31/+0 |
2013-01-21 | libcli/security: handle node initialisation in one spot in insert_in_object_t... | Andrew Bartlett | 1 | -8/+8 |
2013-01-21 | dsdb-acl: the SEC_ADS_DELETE_CHILD checks need objectclass->schemaIDGUID | Stefan Metzmacher | 1 | -2/+7 |
2013-01-21 | dsdb-acl: make use of acl_check_access_on_objectclass() for the object in acl... | Stefan Metzmacher | 1 | -6/+50 |
2013-01-21 | dsdb-acl: make use of acl_check_access_on_{attribute,objectclass} in acl_rena... | Stefan Metzmacher | 1 | -47/+43 |
2013-01-21 | dsdb-acl: make use of acl_check_access_on_attribute() in acl_modify() | Stefan Metzmacher | 1 | -44/+16 |
2013-01-21 | dsdb-acl: remove unused acl_check_access_on_class() | Stefan Metzmacher | 1 | -46/+0 |
2013-01-21 | dsdb-acl: use acl_check_access_on_objectclass() instead of acl_check_access_o... | Stefan Metzmacher | 1 | -8/+13 |
2013-01-21 | dsdb-acl: Use the structural objectClass in acl_check_access_on_attribute() | Andrew Bartlett | 1 | -16/+16 |
2013-01-21 | dsdb-acl: Pass the structural objectClass into acl_check_access_on_attribute | Andrew Bartlett | 3 | -20/+57 |
2013-01-21 | dsdb-acl: Remove unused get_oc_guid_from_message() | Andrew Bartlett | 1 | -19/+0 |
2013-01-21 | dsdb-acl: ask for the objectClass attribute if it's not in the scope of the c... | Andrew Bartlett | 1 | -1/+16 |
2013-01-21 | dsdb-acl: use dsdb_get_structural_oc_from_msg() rather than class_schemaid_gu... | Andrew Bartlett | 1 | -8/+7 |
2013-01-21 | dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_rename() | Andrew Bartlett | 1 | -12/+14 |
2013-01-21 | dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_modify() | Andrew Bartlett | 1 | -8/+10 |
2013-01-21 | dsdb-acl: add acl_check_access_on_objectclass() helper | Stefan Metzmacher | 1 | -0/+39 |
2013-01-21 | dsdb-acl: Add helper function dsdb_get_structural_oc_from_msg() | Andrew Bartlett | 1 | -0/+13 |
2013-01-21 | dsdb-acl: attr is not optional to acl_check_access_on_attribute() | Stefan Metzmacher | 1 | -25/+24 |
2013-01-21 | dsdb-acl: dsdb_attribute_by_lDAPDisplayName() is needed for all attributes | Stefan Metzmacher | 1 | -16/+18 |
2013-01-21 | dsdb-acl: introduce a 'el' helper variable to acl_modify() | Stefan Metzmacher | 1 | -12/+11 |
2013-01-21 | dsdb-acl: introduce a 'msg' helper variable to acl_modify() | Stefan Metzmacher | 1 | -20/+20 |
2013-01-17 | dsdb-operational: Avoid doing the ldb_attr_cmp if bypass flag is not set | Matthieu Patou | 1 | -1/+1 |
2013-01-17 | dsdb: Do not hold the transaction over the IRPC call to perform a role transfer | Andrew Bartlett | 1 | -1/+26 |
2013-01-17 | drs-fsmo: Improve handling of FSMO role takeover. | Andrew Bartlett | 1 | -1/+10 |
2013-01-17 | dsdb-acl: calculate sDRightsEffective based on "nTSecurityDescriptor" | Stefan Metzmacher | 1 | -3/+11 |
2013-01-17 | dsdb-acl: add helper variable 'ldb' in acl_sDRightsEffective | Stefan Metzmacher | 1 | -1/+2 |
2013-01-17 | dsdb-acl: fix the order of special and system checks | Stefan Metzmacher | 1 | -22/+61 |
2013-01-17 | dsdb-acl: Do not apply ACL on special DNs to hide attributes that the user sh... | Matthieu Patou | 1 | -0/+4 |
2013-01-17 | dsdb-acl: talloc_free the private context when we pass to the next module | Stefan Metzmacher | 1 | -0/+1 |
2013-01-17 | dsdb-acl: don't call dsdb_user_password_support() if we don't use the result | Stefan Metzmacher | 1 | -2/+8 |
2013-01-15 | dsdb-acl: Run sec_access_check_ds on each attribute proposed to modify (bug #... | Andrew Bartlett | 1 | -28/+27 |
2013-01-12 | dsdb: Make linked_attributes module GUID based for renames | Andrew Bartlett | 1 | -13/+64 |
2013-01-10 | dsdb-acl: give error string if we can not obtain the schema | Andrew Bartlett | 1 | -2/+3 |
2013-01-01 | s4:dsdb/repl_meta_data: don't merge highwatermark and uptodatevector (bug #9508) | Stefan Metzmacher | 1 | -38/+1 |
2013-01-01 | s4:dsdb/repl_meta_data: also update the last_sync_success in replUpToDateVector | Stefan Metzmacher | 1 | -5/+1 |
2013-01-01 | s4:dsdb/repl_meta_data: store the last results and timestamps in the repsFrom | Stefan Metzmacher | 1 | -0/+3 |
2013-01-01 | s4:dsdb/repl_meta_data: always treat the highwatermark as opaque (bug #9508) | Stefan Metzmacher | 1 | -1/+0 |
2012-12-21 | s4-dsdb: Make it clear that we want to fall trough here. | Andreas Schneider | 1 | -0/+1 |
2012-12-11 | s4:dsdb/password_hash: do the min password age checks first | Michael Adam | 1 | -11/+13 |