summaryrefslogtreecommitdiff
path: root/source4/dsdb/samdb
AgeCommit message (Collapse)AuthorFilesLines
2010-01-10s4:repl_meta_data - Transform a "1" into a "true" on a boolean variableMatthias Dieter Wallnöfer1-1/+1
2010-01-09s4-drs: instanceType is always sent, regardless of UDV valuesAndrew Tridgell1-4/+6
2010-01-09s4-samldb: fixed primaryGroupID when promoting a machine to a DCAndrew Tridgell1-17/+30
The machine gets a primaryGroupID of DOMAIN_RID_DCS. This is done without changing the member attributes of its groups.
2010-01-08s4-samba3samtest: we need to force netbios name as wellAndrew Tridgell1-0/+1
needed for when run in CLIENT context
2010-01-08s4-samba3sid: fixed error returns when res->count != 1 and oomAndrew Tridgell1-3/+3
2010-01-08s4-samba3samtest: force workgroup so the domain is rightAndrew Tridgell1-0/+1
the samba3sid backend looks at lp_sam_name() which is based on the workgroup
2010-01-08s4-samba3sid: the sambaNextRid attribute is actually the previous RIDAndrew Tridgell1-3/+6
Not well named .... though same mistake that MS made with rIDNextRid
2010-01-08s4-samba3sam: use samba3sid moduleAndrew Tridgell1-1/+3
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added a samba3sid moduleAndrew Tridgell2-1/+208
This module allocates SIDs using the Samba3 algorithm, for use with the samba3sam module. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-samba3samtest: use system credentials for creating usersAndrew Tridgell1-5/+6
2010-01-08s4-dsdb: fixed const misuse in acl moduleAndrew Tridgell1-4/+4
2010-01-08s4-dsdb: use dsdb_module_am_system() in acl moduleAndrew Tridgell1-19/+11
2010-01-08s4-dsdb: allow specification of a SID if we are systemAndrew Tridgell1-1/+2
needed for samba3sam test
2010-01-08s4-dsdb: added dsdb_module_am_system()Andrew Tridgell1-0/+9
better than each module inventing their own
2010-01-08s4-dsdb: squash some unknown structure warningsAndrew Tridgell1-1/+3
2010-01-08s4-partition: fixed selection of partitions on exact matchAndrew Tridgell1-3/+1
When a search is on the root of a partition on the global catalog, don't search partitions above that one.
2010-01-08s4-dsdb: poke the RID Manager when completely out of RIDs tooAndrew Tridgell1-38/+41
2010-01-08s4-dsdb: ensure we will in all the attributes for RID SetAndrew Tridgell1-16/+4
We need to go to the top of the module stack so that all the extra attributes get filled in
2010-01-08s4-dsdb: added DSDB_FLAG_TOP_MODULEAndrew Tridgell2-0/+9
This is used when you want the dsdb_module_*() functions to go to the top of the stack.
2010-01-08s4-dsdb: no longer need special invocationID handling for standalone serversAndrew Tridgell1-76/+1
They now work the same way as a DC
2010-01-08s4/schema: Do not assign msDS-IntId value if LDB_CONTROL_RELAX_OID is passedKamen Mazdrashki1-0/+5
This way msDS-IntId should not be assigned during provisioning, which is how Windows works
2010-01-08s4-partition: don't ignore errors from other modulesAndrew Tridgell1-6/+2
if we get an error code from a lower module, we don't want to ignore it just because something also succeeded
2010-01-08s4-dsdb: improve error messages in schema and pdc_fsmo modulesAndrew Tridgell2-6/+6
We want to incorporate the error messages from the modules further down the stack.
2010-01-08s4-dsdb: added an extended operation for allocating a new RID poolAndrew Tridgell3-1/+129
This will be called by getncchanges when a client asks for a DRSUAPI_EXOP_FSMO_RID_ALLOC operation Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: the dsdb ldb modules now need messagiing Andrew Tridgell1-1/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: send a message to the drepl task when we need another RID poolAndrew Tridgell1-6/+66
We send the message when the current pool is half gone. We don't wait for a reply. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-ridalloc: copy with missing rIDNextRid and rIDAllocationPoolAndrew Tridgell1-24/+36
The attributes rIDNextRid and rIDAllocationPool are not replicated, so their initial value when we first get a RID Set from the RID Manager is blank. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added dsdb_module_set_integer()Andrew Tridgell1-0/+24
This will be used by ridalloc.c Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: clarify who is responsible for each attributeAndrew Tridgell1-3/+5
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: fixed usage of rIDAllocationPool and rIDPreviousAllocationPoolAndrew Tridgell1-44/+58
These are very badly named attributes! See the comments in ridalloc.c for a explanation of what they really seem to mean Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: implement refresh of RID Set pool for a local RID ManagerAndrew Tridgell1-44/+151
when we run out of RIDs in our RID Set pool then grab a new one from the RID Manager object Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: implement creation of the RID Set objectAndrew Tridgell1-59/+289
when we are the RID Manager we can create our own RID Set object when the first user is created
2010-01-08s4-dsdb: use dsdb_next_callback()Andrew Tridgell3-9/+11
We can't just use the callers callback directly otherwise the ldb_module_done() is never called on the parent request, as the child request is passed to the callback. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added dsdb_next_callback()Andrew Tridgell1-0/+12
This should be used when you create a sub request and just want the parent requests callback to be called when done. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added dsdb_module_constrainted_update_integer()Andrew Tridgell1-0/+50
This provides a convenient way to update a integer attribute with a constrained delete/add Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added dsdb_module_reference_dn()Andrew Tridgell1-0/+43
This adds a module callable version of samdb_reference_dn(), which finds a DN via a reference link Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: added dsdb_module_add()Andrew Tridgell1-0/+46
added a ldb add function for modules Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-dsdb: move the RID allocation logic into ridalloc.cAndrew Tridgell3-89/+148
This will end up having the RID Manager logic as well, so all the RID pool allocation logic is in one spot Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08s4-samldb: use RID Set to allocate user/group RIDsAndrew Tridgell1-559/+104
This is the first step towards DRS-friendly RID allocation. We now get the next rid from the RID Set object Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-08linked_attributes: Fix missing dependency on util.Jelmer Vernooij1-1/+1
2010-01-05s4:SAMLDB LDB module - Fix trailing whitespacesMatthias Dieter Wallnöfer1-17/+17
2010-01-05s4:SAMLDB LDB module - Rework to allow checks for wrong ↵Matthias Dieter Wallnöfer1-50/+96
"defaultObjectCategory" attributes This allows a stricter check for "defaultObjectCategory" attributes which is performed when the "relax" control isn't specified. Additional note: As the added comment points out this isn't complete. And I personally think that moving this at some point to the "objectclass" module is a better idea to make this fully work (since there we have direct access to the schema). If someone has a good idea how to do this please inform me. Anyway, the SAMLDB module does require some restructure since at the moment it's very overloaded and therefore a bit a mess. In the meantime I started to work on a new approach to realise it in a better way.
2010-01-05s4:schema_load.c - TypoMatthias Dieter Wallnöfer1-1/+1
2010-01-02s4-dsdb: force REVISION_ADS for new and updated ACLs in dsdbAndrew Tridgell1-0/+8
w2k8-r2 gives a "schema mismatch" error if the revision is not set to REVISION_ADS and you replicate the ntsecuritydescriptor using DRS. Nadya, please check this! Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2010-01-02s4-dsdb: switched to using RMD_FLAGS instead of DELETED in extended DNsAndrew Tridgell1-31/+35
This allows for more flags in the future
2010-01-02s4-dsdb: make sure 'whenChanged' is set on modifyAndrew Tridgell1-1/+4
We also should preserve (and then replace) whenChanged on delete
2010-01-02s4-dsdb: allow system to remove deleted objectsAndrew Tridgell1-0/+19
This will be used by a periodic job to remove tombstoned objects
2010-01-02s4-drs: make sure the DNs we put in the db have a extended GUIDAndrew Tridgell1-7/+16
2010-01-02s4-dsdb: use ldb_val_to_time() instead of ldb_string_to_time()Andrew Tridgell1-3/+3
2010-01-02s4-drs: re-resolve the DN in linked attribute processingAndrew Tridgell1-0/+10
w2k8-r2 sometimes sends the DN with an old target