summaryrefslogtreecommitdiff
path: root/source4/dsdb
AgeCommit message (Collapse)AuthorFilesLines
2010-11-26s4:rootdse LDB module - remove unused variableMatthias Dieter Wallnöfer1-1/+0
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Fri Nov 26 13:58:27 CET 2010 on sn-devel-104
2010-11-26s4:objectclass LDB module - simply use "msg" when requesting the messageMatthias Dieter Wallnöfer1-2/+2
2010-11-26s4:objectclass LDB module - move the "mem_ctx" allocation to a better placeMatthias Dieter Wallnöfer1-7/+6
It's only needed if we've a schema around.
2010-11-26s4-dsdb Reorganise and clarify the LSA objectClass check (forbidden on LDAP)Andrew Bartlett1-15/+28
This arranged the check to avoid talloc_strdup() (the schema pointers are constant, and can be relied upon), and checks the untrusted bit first (it is faster), before the ldb_attr_cmp(). The strcmp() here was valid, if unusual, because the ldapDisplayName values are already in the correct case, but strcasecmp() is more correct, as for the small extra cost, we avoid a difficult to diagnose bug later. Andrew Bartlett Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-11-26s4-objectclass Use a specific local variable name, not 'value'Andrew Bartlett1-4/+5
This makes it clearer what the local variable in use here does. Andrew Bartlett Signed-off-by: Matthias Dieter Wallnöfer <mdw@samba.org>
2010-11-26s4-kcc: fixed valgrind errors in drs replicaInfo server sideAndrew Tridgell1-7/+5
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Fri Nov 26 03:52:30 CET 2010 on sn-devel-104
2010-11-26s4-dsdb Remove rootDSE and anonymous checks from acl_readAndrew Bartlett1-15/+0
The rootdse module handles rootDSE requests, and blocks anonymous access, so we on't need to do it again here. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Nov 26 00:36:19 CET 2010 on sn-devel-104
2010-11-26s4-dsdb Add 'block anonymous' checks to the rootdse moduleAndrew Bartlett1-0/+100
This ensures that one single point checks for and blocks anonymous read access to the database over LDAP. Andrew Bartlett
2010-11-26s4-dsdb Remove mem_ctx argument from dsdb_module_find_dsheuristics().Andrew Bartlett2-4/+3
A function that does not return memory should not take a memory context. Andrew Bartlett
2010-11-25s4-tests: Made acl tests to reconnect if dSHeuristics is being manipulatedNadezhda Ivanova1-28/+25
Also made password tests set dSHeuristics only once rather that once per test. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Thu Nov 25 20:48:38 CET 2010 on sn-devel-104
2010-11-25s4-tests: Modified create_ou to only accept security.descriptor type for sd ↵Nadezhda Ivanova1-36/+28
to avoid confusion It used to work with sddl as well, but this is confusing and could lead to errors. It also caused a message about tallocing a security descriptor to appear. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Thu Nov 25 19:46:42 CET 2010 on sn-devel-104
2010-11-25s4:lsa RPC server / objectclass LDB module - fix the creation of trusted ↵Matthias Dieter Wallnöfer1-7/+1
domain objects Tridge pointed out that it is to dangerous to allow them to be created with SYSTEM permissions. The solution using the "untrusted" flag should be much more viable. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Thu Nov 25 13:05:56 CET 2010 on sn-devel-104
2010-11-25s4-tests: Modified sec_descriptor.py to use samba.tests.delete_forceNadezhda Ivanova1-71/+66
2010-11-25s4-tests: Modified sam.py to use samba.tests.delete_forceNadezhda Ivanova1-72/+67
2010-11-25s4-tests: Modified passwords.py to use samba.tests.delete_forceNadezhda Ivanova1-12/+7
2010-11-25s4-tests: delete_force was unused, removed it.Nadezhda Ivanova1-5/+0
2010-11-25s4-tests: Modified ldap_schema.py to use samba.tests.delete_forceNadezhda Ivanova1-8/+3
2010-11-25s4-tests: Modified ldap.py to use samba.tests.delete_forceNadezhda Ivanova1-93/+88
2010-11-25s4-tests: Modified deletetest.py to use samba.tests.delete_forceNadezhda Ivanova1-18/+14
2010-11-25s4-tests: Modified acly.py to use common delete_force instead of defining ↵Nadezhda Ivanova1-60/+55
its own.
2010-11-24s4:objectclass LDB module - LSA objects - allow them if the SYSTEM control ↵Matthias Dieter Wallnöfer1-3/+7
is specified This fits better than the RELAX one. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Wed Nov 24 18:23:01 CET 2010 on sn-devel-104
2010-11-24s4:objectclass LDB module - move one checks into the "objectclass derivation ↵Matthias Dieter Wallnöfer1-11/+17
loop" This denies objects created from possible derivated classes from the prohibited ones. Also small cosmetic improvements for another check.
2010-11-24s4:objectclass LDB module - some more or less cosmetic return value macro ↵Matthias Dieter Wallnöfer1-14/+22
changes Sometimes "ldb_module_oom" fits better than "ldb_operr" or "ldb_oom".
2010-11-24s4-tests: Modified sec_descriptor to use samdb.newgroup instead of locally ↵Nadezhda Ivanova1-48/+50
defined method. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Wed Nov 24 17:38:28 CET 2010 on sn-devel-104
2010-11-24s4-kcc: disable the NDR printing of DRS getinfo requestsAndrew Tridgell1-0/+4
2010-11-23s4-tests: Modified acl.py to use samdb.newgroup instead of custom methods.Nadezhda Ivanova1-43/+15
Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Tue Nov 23 21:46:07 CET 2010 on sn-devel-104
2010-11-23s4-tests: Modified sec_descriptor.py to use samdb.newuser instead of custom ↵Nadezhda Ivanova1-47/+22
methods. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Tue Nov 23 17:58:38 CET 2010 on sn-devel-104
2010-11-23s4-tests: Modified acl.py to use samdb.newuser instead of custom methods.Nadezhda Ivanova1-86/+68
2010-11-23s4-tests: Modified sec_descriptor.py to use SamDB.create_ou()Nadezhda Ivanova1-35/+20
Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Tue Nov 23 14:19:34 CET 2010 on sn-devel-104
2010-11-23s4-tests: Modified acl.py to use SamDB.create_ou()Nadezhda Ivanova1-84/+70
2010-11-23s4-tests: Ldap tests now use the get_dsheuristics and set_dsheuristics from ↵Nadezhda Ivanova1-25/+6
SamDB. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Tue Nov 23 11:08:37 CET 2010 on sn-devel-104
2010-11-23s4-tests: Password tests now use the get_dsheuristics and set_dsheuristics ↵Nadezhda Ivanova1-44/+9
from SamDB.
2010-11-23s4-tests: Acl tests now use the get_dsheuristics and set_dsheuristics from ↵Nadezhda Ivanova1-23/+7
SamDB.
2010-11-22s4-tests: Adapted passwords.py to use set_minPwdAge from SamDB.Nadezhda Ivanova1-11/+3
Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Mon Nov 22 18:39:06 CET 2010 on sn-devel-104
2010-11-22s4-tests: Adapted acl.py to use set_minPwdAge from SamDB.Nadezhda Ivanova1-10/+3
2010-11-20s4:repl_meta_data LDB module - fix a counter typeMatthias Dieter Wallnöfer1-2/+4
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Nov 20 22:32:06 CET 2010 on sn-devel-104
2010-11-20s4:repl_meta_data LDB module - move the "objectGUID" checks a bit higherMatthias Dieter Wallnöfer1-29/+29
- they don't need the allocated "ac" context - some small code cleanups
2010-11-20s4:objectclass_attrs LDB module - add more delete protected attributesMatthias Dieter Wallnöfer2-86/+50
And enhance the testsuite
2010-11-20s4:samldb LDB module - objectclass trigger - reorder template attributesMatthias Dieter Wallnöfer1-9/+10
2010-11-20s4:acl LDB module - it's more correct to count the password attributes using ↵Matthias Dieter Wallnöfer1-3/+6
"unsigned int" Since these are derived from a LDB result. Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Nov 20 11:29:07 CET 2010 on sn-devel-104
2010-11-20ldb:rdn_name LDB module - add more RDN name constraintsMatthias Dieter Wallnöfer1-0/+52
And some small cleanups Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Sat Nov 20 00:06:35 CET 2010 on sn-devel-104
2010-11-19s4:dsdb tests - use even more already defined pyldb functions to retrieve NCsMatthias Dieter Wallnöfer5-39/+8
2010-11-18s4-rodc: enable the DRS_GET_ALL_GROUP_MEMBERSHIP flag for RODC replicationAndrew Tridgell1-0/+1
see the description of this flag in [MS-DRSR]
2010-11-18s4-tests: Modified descriptor tests to use pyldb api to retrieve ↵Nadezhda Ivanova1-12/+2
configuration and schema dn. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Thu Nov 18 22:25:07 CET 2010 on sn-devel-104
2010-11-18s4-tests: Modified acl tests to use pyldb api to retrieve configuration dn.Nadezhda Ivanova1-3/+1
2010-11-18s4-tests: Changed descriptor tests to use existing method in samdb for ↵Nadezhda Ivanova1-32/+24
adding users to a group. Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Thu Nov 18 18:30:55 UTC 2010 on sn-devel-104
2010-11-18s4-tests: Changed acl tests to use existing method in samdb for adding users ↵Nadezhda Ivanova1-19/+8
to a group.
2010-11-18s4:dsdb python tests - use "ldb.domain_dn"Matthias Dieter Wallnöfer7-62/+15
By inspiration of Nadya's patches
2010-11-18s4/operational: Fix swapped parameters for ldb_msg_copy_attrAnatoliy Atanasov1-2/+2
Autobuild-User: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> Autobuild-Date: Thu Nov 18 17:02:07 UTC 2010 on sn-devel-104
2010-11-18s4/ldap: ldap_syntaxes.py cleanupAnatoliy Atanasov1-17/+3
Autobuild-User: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> Autobuild-Date: Thu Nov 18 16:16:27 UTC 2010 on sn-devel-104
generated by cgit (git 2.34.1) at 2024-07-03 15:29:36 +0000