summaryrefslogtreecommitdiff
path: root/source4/librpc/idl/security.idl
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r6132: allow up to 15 sub_auth in a dom_sidStefan Metzmacher1-1/+1
(tridge: asked me for that commit) metze (This used to be commit 2791de069a571aaa53283d68b5cc957d82e7ce41)
2007-10-10r5850: enable parsing of revision 4 security acl'sStefan Metzmacher1-14/+40
metze (This used to be commit 2a6a075c7da2da7bb62fb42936252717bb9d0593)
2007-10-10r5798: limit the size of an sid, 28 bytes complete is the biggest SIDStefan Metzmacher1-1/+1
that can be handled. tridge: do you think it would make sense to change the sub_auth[num_auths] to sub_auth[5], so we can copy the struct by sid1 = sid2; comments please metze (This used to be commit 2fc8a604b003a6c3425eb7bbf77fbe467c956085)
2007-10-10r5362: Add pointer_default() support to pidl. pointer_default()Jelmer Vernooij1-0/+3
is assumed to be "ptr" if not specified (just like midl). The validator will warn when "ptr" is used at the moment, because pidl only supports unique, ref and relative at the moment. (This used to be commit 31bed62a9a6f7830f523d509b67970648d40aaef)
2007-10-10r4649: make more use of bitmap and enum'sStefan Metzmacher1-41/+53
metze (This used to be commit fa798fe1f0c39dfee7d4c86a8cd5924be8a32922)
2007-10-10r4147: converted from NT_USER_TOKEN to struct security_tokenAndrew Tridgell1-45/+28
this is mostly just a tidyup, but also adds the privilege_mask, which I will be using shortly in ACL checking. note that I had to move the definition of struct security_token out of security.idl as pidl doesn't yet handle arrays of pointers, and the usual workaround (to use a intermediate structure) would make things too cumbersome for this structure, especially given we never encode it to NDR. (This used to be commit 7b446af09b8050746bfc2c50e9d56aa94397cc1a)
2007-10-10r4072: - changed the names of some of the well known sids to be more consistentAndrew Tridgell1-5/+48
- added string constants for the important privileges. (This used to be commit d5bc706140faf2d0a917f90f87884cd097e8a48c)
2007-10-10r4052: fixed a bunch of code to use the type safe _p allocation macrosAndrew Tridgell1-1/+1
(This used to be commit 80d15fa3402a9d1183467463f6b21c0b674bc442)
2007-10-10r4035: more effort on consistent naming of the access mask bits.Andrew Tridgell1-18/+30
This removes the duplicate named SEC_RIGHTS_MAXIMUM_ALLOWED and SEC_RIGHTS_FULL_CONTROL, which are just other names for SEC_FLAG_MAXIMUM_ALLOWED and SEC_RIGHTS_FILE_ALL. The latter names match the new naming conventions in security.idl Also added names for the generic->specific mappings for files are directories (This used to be commit 17a4e0b3aca227b40957ed1e0c57e498debc6ddf)
2007-10-10r4011: get rid of rpc_secdes.h and replace it with a single sane set ofAndrew Tridgell1-0/+94
definitions for security access masks, in security.idl The previous definitions were inconsistently named, and contained many duplicate and misleading entries. I kept finding myself tripping up while using them. (This used to be commit 01c0fa722f80ceeb3f81f01987de95f365a2ed3d)
2007-10-10r3885: Add security descriptor comparison to our RPC-SAMSYNC test. We nowAndrew Bartlett1-0/+5
verify that the security descriptor found in the SamSync is the same as what is available over SAMR. Unfortunately, the administrator seems unable to retrieve the SACL on the security descriptor, so I've added a new function to compare with a mask. Andrew Bartlett (This used to be commit 39ae5e1dac31a22086be50fb23261e02be877f3f)
2007-10-10r3829: added a RAW-ACLS test suite that tests query/set of ACLs on a fileAndrew Tridgell1-2/+21
(This used to be commit 2ff9816ae0ae41e0e63e4276a70d292888346dc7)
2007-10-10r3810: create a LIB_SECURITY subsystemStefan Metzmacher1-0/+123
- move dom_sid, security_descriptor, security_* funtions to one place and rename some of them metze (This used to be commit b620bdd672cfdf0e009492e648b0709e6b6d8596)