summaryrefslogtreecommitdiff
path: root/source4/dsdb
AgeCommit message (Expand)AuthorFilesLines
2013-02-08dsdb-operational: rework the loop for attribute removalMatthieu Patou1-41/+92
2013-02-08dsdb-repl: make message more clearerMatthieu Patou1-2/+2
2013-02-08replmetadata: raise msg level for conflict resolution so that we don't polute...Matthieu Patou1-2/+2
2013-02-08dsdb-repl: do not ask to add ref when doing getncchange for an exopMatthieu Patou1-0/+7
2013-02-08dsdb-cracknames: Fix potential double free and memory leaksMatthieu Patou1-2/+4
2013-02-04dsdb/util: rework samdb_check_password() to support utf8Stefan Metzmacher1-5/+16
2013-02-04dsdb/password_hash: rename variable 'stat' to 'vstat'Stefan Metzmacher1-5/+5
2013-02-04dsdb/password_hash: make sure that io->n.cleartext_utf8.data is a null termin...Stefan Metzmacher1-0/+23
2013-01-27dsdb-descriptor: get_default_group() should always return the DAG sid (bug #9...Stefan Metzmacher1-5/+10
2013-01-27tests/sec_descriptor: the default owner behavior depends on domainControllerF...Stefan Metzmacher1-4/+4
2013-01-23dsdb-acl: remove unused variableStefan Metzmacher1-1/+0
2013-01-22drepl-notify: change misleading messageMatthieu Patou1-1/+1
2013-01-21dsdb: Fix warning about unused varMatthieu Patou1-2/+0
2013-01-21dsdb: Explain ordering constraints on the ACL module as well.Andrew Bartlett1-2/+2
2013-01-21dsdb: Ensure "authenticated users" is processed for group membershipsAndrew Bartlett2-31/+25
2013-01-21libcli/security: handle node initialisation in one spot in insert_in_object_t...Andrew Bartlett2-11/+10
2013-01-21dsdb-acl: the SEC_ADS_DELETE_CHILD checks need objectclass->schemaIDGUIDStefan Metzmacher1-2/+7
2013-01-21dsdb-acl: make use of acl_check_access_on_objectclass() for the object in acl...Stefan Metzmacher1-6/+50
2013-01-21dsdb-acl: make use of acl_check_access_on_{attribute,objectclass} in acl_rena...Stefan Metzmacher1-47/+43
2013-01-21dsdb-acl: make use of acl_check_access_on_attribute() in acl_modify()Stefan Metzmacher1-44/+16
2013-01-21dsdb-acl: remove unused acl_check_access_on_class()Stefan Metzmacher1-46/+0
2013-01-21dsdb-acl: use acl_check_access_on_objectclass() instead of acl_check_access_o...Stefan Metzmacher1-8/+13
2013-01-21dsdb-acl: Use the structural objectClass in acl_check_access_on_attribute()Andrew Bartlett1-16/+16
2013-01-21dsdb-acl: Pass the structural objectClass into acl_check_access_on_attributeAndrew Bartlett3-20/+57
2013-01-21dsdb-acl: Remove unused get_oc_guid_from_message()Andrew Bartlett1-19/+0
2013-01-21dsdb-acl: ask for the objectClass attribute if it's not in the scope of the c...Andrew Bartlett1-1/+16
2013-01-21dsdb-acl: use dsdb_get_structural_oc_from_msg() rather than class_schemaid_gu...Andrew Bartlett1-8/+7
2013-01-21dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_rename()Andrew Bartlett1-12/+14
2013-01-21dsdb-acl: Use dsdb_get_structural_oc_from_msg() in acl_modify()Andrew Bartlett1-8/+10
2013-01-21dsdb-acl: add acl_check_access_on_objectclass() helperStefan Metzmacher1-0/+39
2013-01-21dsdb-acl: Add helper function dsdb_get_structural_oc_from_msg()Andrew Bartlett1-0/+13
2013-01-21dsdb-acl: attr is not optional to acl_check_access_on_attribute()Stefan Metzmacher1-25/+24
2013-01-21dsdb-acl: dsdb_attribute_by_lDAPDisplayName() is needed for all attributesStefan Metzmacher1-16/+18
2013-01-21dsdb-acl: introduce a 'el' helper variable to acl_modify()Stefan Metzmacher1-12/+11
2013-01-21dsdb-acl: introduce a 'msg' helper variable to acl_modify()Stefan Metzmacher1-20/+20
2013-01-21dsdb-schema: make sure we build [system]PossibleInferiors completelyStefan Metzmacher1-0/+4
2013-01-21dsdb-schema: make sure use clean caches in schema_inferiors.cStefan Metzmacher2-28/+32
2013-01-21dsdb-schema: make schema_subclasses_order_recurse() staticStefan Metzmacher1-3/+3
2013-01-21Tests: rewrite ldap_schema to specify attributesMatthieu Patou1-15/+24
2013-01-17dsdb-operational: Avoid doing the ldb_attr_cmp if bypass flag is not setMatthieu Patou1-1/+1
2013-01-17dsdb: Do not hold the transaction over the IRPC call to perform a role transferAndrew Bartlett1-1/+26
2013-01-17drs-fsmo: Improve handling of FSMO role takeover.Andrew Bartlett2-4/+12
2013-01-17dsdb-acl: calculate sDRightsEffective based on "nTSecurityDescriptor"Stefan Metzmacher1-3/+11
2013-01-17dsdb-acl: add helper variable 'ldb' in acl_sDRightsEffectiveStefan Metzmacher1-1/+2
2013-01-17dsdb-acl: fix the order of special and system checksStefan Metzmacher1-22/+61
2013-01-17dsdb-acl: Do not apply ACL on special DNs to hide attributes that the user sh...Matthieu Patou1-0/+4
2013-01-17dsdb-acl: talloc_free the private context when we pass to the next moduleStefan Metzmacher1-0/+1
2013-01-17dsdb-acl: don't call dsdb_user_password_support() if we don't use the resultStefan Metzmacher1-2/+8
2013-01-15dsdb: Add test for modification of two attributes, one permitted, one denied ...Andrew Bartlett1-0/+15
2013-01-15dsdb-acl: Run sec_access_check_ds on each attribute proposed to modify (bug #...Andrew Bartlett1-28/+27