summaryrefslogtreecommitdiff
path: root/source4/scripting/libjs
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r24640: Add a suggested BIND configuration snippit, to help with DNS ↵Andrew Bartlett1-1/+6
configuration. When we sort out GSS-TSIG on the server, we can expand this to have the 'right stuff'. Andrew Bartlett (This used to be commit 8f02ade1b2cc164f64f4ea8a371c107ccf6a81b3)
2007-10-10r23907: Fix bug 4790 reported by mwallnoefer@yahoo.de:Andrew Bartlett1-5/+7
Before the provisioning enters to the function provision_default_paths (in scripting/libjs/provision.js), the variable subobj.DNSDOMAIN isn't properly set (for example for the filename of the DNS zonefile). Andrew Bartlett (This used to be commit 07a9db1438df93442c5b50b1b97ca69662749608)
2007-10-10r23875: As pointed out by mwallnoefer@yahoo.de:Andrew Bartlett1-6/+6
On default Active Directory installations, the NETLOGON share isn't an indipendent directory. In fact it's mapped to the subdirectory "scripts" from the share SYSVOL under <Domain name>. Andrew Bartlett (This used to be commit 923d67ea9d78da46235221375b49b6f1d0d6a862)
2007-10-10r23859: Work to have Group Policy work 'out of the box' in Samba4.Andrew Bartlett1-0/+26
This involves creating the SYSVOL and NETLOGON shares at provision time, and creating the right subdirectories. This also changes the behaviour of lp.get("foo") in ejs - we now return undefined, rather than syntax error, if the parameter doesn't exist (perhaps because the share isn't defined). Andrew Bartlett (This used to be commit 45cadf3bc0d38f6600666511a392e1ce353adee7)
2007-10-10r23720: Allow the member server to work against an LDAP Backend. Another caseAndrew Bartlett1-0/+10
where LDB isn't as strict as OpenLDAP, the self join record contains duplicate servicePrincipalNames once the DNS name and domain name are made equal. (Easier to just skip the useless self-join). Andrew Bartlett (This used to be commit 49ff929be6fcf57721532de13bdd7a7e1617af6f)
2007-10-10r23717: We need to remove the _ in LDAP_MANAGERPASS for theAndrew Bartlett1-2/+2
--ldap-manager-pass= option to work. Andrew Bartlett (This used to be commit fbcb1ec14125a4ca57922ec75b01af9a99dcd954)
2007-10-10r23716: Clarify LDAP Manager DN and fix slapd startup syntax.Andrew Bartlett1-1/+3
Andrew Bartlett (This used to be commit 17dad5d8c345c2c3a7643bff7a43473339a22d40)
2007-10-10r23715: Make the provision-backend script print out the exact commands to run,Andrew Bartlett1-4/+6
to set up the LDAP backend. Andrew Bartlett (This used to be commit cc7900210a2e473060d5897ec729923ac6b2f18d)
2007-10-10r23703: Start to get Samba4 to again work with LDAP backends, after I turnedAndrew Bartlett1-3/+3
on metze's schema work. Andrew Bartlett (This used to be commit 3111bbdf64f57bf8d2638fd9829c071dcfeb4af1)
2007-10-10r23560: - Activate metze's schema modules (from metze's schema-loading-13 ↵Andrew Bartlett1-6/+8
patch). - samba3sam.js: rework the samba3sam test to not use objectCategory, as it's has special rules (dnsName a simple match) - ldap.js: Test the ordering of the objectClass attributes for the baseDN - schema_init.c: Load the mayContain and mustContain (and system...) attributes when reading the schema from ldb - To make the schema load not suck in terms of performance, write the schema into a static global variable - ldif_handlers.c: Match objectCategory for equality and canonicolisation based on the loaded schema, not simple tring manipuation - ldb_msg.c: don't duplicate attributes when adding attributes to a list - kludge_acl.c: return allowedAttributesEffective based on schema results and privilages Andrew Bartlett (This used to be commit dcff83ebe463bc7391841f55856d7915c204d000)
2007-10-10r23361: Merge from SAMBA_4_0_RELEASE:Andrew Bartlett1-1/+1
Print the smb.conf path being created in provision. Andrew Bartlett (This used to be commit bb583463bf483e1b355647f9fc93afbfcb9d41d3)
2007-10-10r23351: Merge from SAMBA_4_0_RELEASE:Andrew Bartlett1-18/+22
Fix a nasty issue we had with SWAT. We could not provision into a different domain, as we didn't re-calcuate the DOMAINDN after the user changed it in the form. Andrew Bartlett (This used to be commit 430c998dc9ea41ea29cf184d03404b50ef14f78d)
2007-10-10r23264: Make it more clear what this is actually setting upAndrew Bartlett1-1/+1
(This used to be commit f687bc92aea00aa489d310ac31e08a5718a36ec4)
2007-10-10r23189: Work towards a totally scripted setup of LDAP backends, so others canAndrew Bartlett1-4/+5
easily try this out. I also intend to use this for the selftest, but I'm chasing issues with the OpenlDAP (but not Fedora DS) backend. Andrew Bartlett (This used to be commit 0f457b1d2e20c36ab220b4a6711ce7930c4c7d21)
2007-10-10r23177: Add in a new provision-backend script. This helps set up the ↵Andrew Bartlett1-2/+52
OpenLDAP or Fedora DS backend. This required a new mkdir() call in ejs. We can now provision just the schema for ad2oLschema to operate on (with provision_schema(), without performing the whole provision, just to wipe it again (adjustments to 'make test' to come soon). Andrew Bartlett (This used to be commit 01d54d13dc66ef2127ac52c64ede53d0790738ec)
2007-10-10r23032: Remove calls to println(), and ensure we print the ldb errstring().Andrew Bartlett1-9/+11
Andrew Bartlett (This used to be commit 5b6f704b24f7da40ce917fe8ed1a500684d1f3cd)
2007-10-10r23012: we need a POLICYGUID in provisionAndrew Tridgell1-0/+1
(This used to be commit b9f8650b20e5132410153f5b61a68dca5df548ff)
2007-10-10r22756: Make it easier to setup an LDAP replica. Provision withAndrew Bartlett1-3/+5
--partitions-only (suggestions for a better name welcome) will setup the partitions records, but no any data in those partitions. This can then point at the already configured remote LDAP server. Andrew Bartlett (This used to be commit ee7b06fc832ca7c572205c7c268c3c7c552effa0)
2007-10-10r22478: Update the LDAP backend code to handle initialisation of multipleAndrew Bartlett1-3/+39
partitions onto the target LDAP server. Make the LDAP provision run before smbd starts, then stop the LDAP server. This ensures this occurs synchronously, We then restart it for the 'real run' (with slapd's stdin being the FIFO). This required fixing a few things in the provision scripts, with more containers being created via a add/modify pair. Andrew Bartlett (This used to be commit 860dfa4ea1ab2b62d4d4fe0644e0a9b882fdafa1)
2007-10-10r21673: Fix Samba 3 data read tests. I can't figure out why the upgrade one ↵Jelmer Vernooij1-2/+20
is broken, so that one is still disabled. (This used to be commit ef794f03d50022a77303c77045a04d9407d07cbc)
2007-10-10r21513: I don't know how long this has been wrong, but fix this up so we canAndrew Bartlett1-1/+1
re-provision (as is required for the TEST_LDAP=yes version of make test). Andrew Bartlett (This used to be commit ea4c2ea22fb3975d80130f52edecaf6d1790adde)
2007-10-10r21351: Change ldb ejs bindings return codes.Simo Sorce1-54/+59
We were returning just true/false and discarding error number and string. This checking probably breaks swat, will fix it in next round as swat is what made me look into this as I had no way to get back error messages to show to the users. Simo. (This used to be commit 35886b4ae68be475b0fc8b2689ca04d766661261)
2007-10-10r21294: this is useless, now that there's no operation in between...Stefan Metzmacher1-7/+0
metze (This used to be commit 838d307e6ca0740bc330a5ebc46b95f3181a5c14)
2007-10-10r21135: Instead of having hooks to update keytabs as an explicit thing, updateAndrew Bartlett1-11/+6
them as a hook on ldb modify, via a module. This should allow the secrets.ldb to be edited by the admin, and to have things update in the on-disk keytab just as an in-memory keytab would. This isn't really a dsdb plugin, but I don't have any other good ideas about where to put it. Andrew Bartlett (This used to be commit 6ce557a1aff4754d2622be8f1c6695d9ee788d54)
2007-10-10r20953: add templates in provision_become_dc()Stefan Metzmacher1-0/+3
metze (This used to be commit 306ea74f85c8cd0df767a25c45304cb33410e03c)
2007-10-10r20922: use the show_deleted module by defaultStefan Metzmacher1-0/+1
metze (This used to be commit edc37501d6ecdaf7b13006b732914e21ae0be657)
2007-10-10r20806: make it possible to configure the secrets.ldb urlStefan Metzmacher1-1/+18
via "secrets database = my_secrets.ldb" metze (This used to be commit a096a9741597105140845f59e54a76060da0010b)
2007-10-10r20805: don't use hardcoded values for secrects.keytab and sam.ldbStefan Metzmacher1-3/+8
metze (This used to be commit c78e345feaef607b9297372aacb00ec068127785)
2007-10-10r20689: "pdc" and "bdc" have been replaced by "domain controller"Simo Sorce1-6/+2
(This used to be commit 6976f283fc30a401bcc1d2c5089135c3fe8f1728)
2007-10-10r20683: load indexes before applying replicated objects,Stefan Metzmacher1-0/+3
as for every object the repl_meta_data module needs to look up the object by objectGUID metze (This used to be commit 55f845377ce3a7aeb028805754dc9c05d429548e)
2007-10-10r20575: apply records to the test_samdb.ldb (my birthday present to myself...:-)Stefan Metzmacher1-0/+3
we need to modify some modules to only handle originating changes... metze (This used to be commit 0f387d58e69a6ee806fea02229ef8fa030f2918d)
2007-10-10r20572: - prepare a test_samdb.ldb in the NET-API-BECOME-DC torture testStefan Metzmacher1-12/+47
- we call a ejs script from the torture test for this task so that we can use the provision template ldif's. metze (This used to be commit e84b0c7d4004df312ae58ed76dd708a2c3c37986)
2007-10-10r20568: split out the rootdse ldifStefan Metzmacher1-0/+10
and set the isSyncronized = TRUE when we done metze (This used to be commit 5875ce1ac6ff694d07787ff0cf81b3429580311b)
2007-10-10r20565: configure the list of global ldb modules also in js codeStefan Metzmacher1-2/+25
metze (This used to be commit cbebe559a2563a3ab9dd2e002c79676a803b71a4)
2007-10-10r20560: make it possible to configure the backend and modulesStefan Metzmacher1-6/+11
for all partitions and make it not use LDAP in the variable names because it isn't specific to the ldap backend case. metze (This used to be commit 3e337ec2764038e4ff05c3e926220abaa5583702)
2007-10-10r20557: use ${DOMAINDN} instead of ${BASEDN}Stefan Metzmacher1-14/+14
metze (This used to be commit 2a6e6a2695b256411c91768c7bee748228e40e6f)
2007-10-10r20555: fix typo...Stefan Metzmacher1-1/+1
metze (This used to be commit 09622f01227093b4b351fcc79fe29d5b2f388376)
2007-10-10r20554: - use ${ROOTDN} for the rootDomainNamingContextStefan Metzmacher1-1/+2
- the ${CONFIGDN} is a child of the ${ROOTDN} metze (This used to be commit ebbd8a83c982efdc58e53798d1fd191f08731005)
2007-10-10r20553: add ${CONFIGDN} and ${SCHEMADN} instead of using hardcoded pathsStefan Metzmacher1-0/+2
under ${BASEDN} metze (This used to be commit 09ca6aae12d8e10b76971cf269f7c62f228a4c87)
2007-10-10r20505: I had the wrong ldif name here.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 5781d0f41ac1847c38ebda290f5e85423dd20186)
2007-10-10r20495: Further notes on joining with fedora DS.Andrew Bartlett1-0/+1
Add in a hook for adding an ACI, needed to allow anonymous access until we hook across a SYSTEM token to the LDAP server. Andrew Bartlett (This used to be commit f45504e2714680978f101b4a98516686a17531df)
2007-10-10r20492: Add in instructions/sample LDIF to setup Fedora DS as a backend.Andrew Bartlett1-0/+1
Add a new module entrypoint to handle the new, interesting and different mappings required for Fedora DS. Andrew Bartlett (This used to be commit 600c7f1a68c175b835ce45d13794a6f66bcc8493)
2007-10-10r20468: Patch from Martin Kuehl <kuehl@univention.de> to make it easier to loadAndrew Bartlett1-7/+38
into an exsting LDAP server. (Allow some parts to pre-exist, and try to blow away less data). Andrew Bartlett (This used to be commit 99faff0ad8fa12d596c599064a0125a6b3365134)
2007-10-10r19427: print out the currect nameStefan Metzmacher1-1/+1
metze (This used to be commit 0fcdc8c243f50da5a1203370740ac8d022a5cfdc)
2007-10-10r19334: Commit commented provisioning code to activate the schemaSimo Sorce1-0/+32
(This used to be commit 57ee79c15579d1bbe7c0d3202b84a06b75320e40)
2007-10-10r19318: Because we don't test the vampire code in SWAT very regularly, it ↵Andrew Bartlett1-2/+4
bit-rotted. Fix up interfaces and interaction between the two.. Andrew Bartlett (This used to be commit 9b77d285d8cd8999547c0d17e97681d236acbdb0)
2007-10-10r19258: Don't delete the contents of the partitions twice, and in particularAndrew Bartlett1-17/+6
don't delete their contents until we have specified the new partition locations. However, preserve the important part of tridge's change, that is to ensure that no database index is present when the mass delete occours. In my testing, it is best to leave the index until the provision is compleated. Andrew Bartlett (This used to be commit 962219df7dc53ce6f6889f4b71ee19850c7ff7b5)
2007-10-10r19252: - fixed 'erase' argument to setup_ldb()Andrew Tridgell1-2/+21
- when wiping a ldb, wipe within each naming context first. By not wiping the naming contexts we didn't wipe the partitions, which caused a massive slowdown in re-provisioning due to re-indexing of the schema. (This used to be commit b62437214cf7c98c81598c4f37c91ab284928dbb)
2007-10-10r19216: Merge from SAMBA_4_0_RELEASE:Andrew Bartlett1-0/+1
Move default for subobj.LDAPMODULES into scripting/libjs/provision.js so that SWAT can provision again. Andrew Bartlett (This used to be commit a4aafe307d6d1396fa79b0c48b0a36cbf682f0ce)
2007-10-10r18977: Seperate these asserts, so we know which fired.Andrew Bartlett1-1/+2
Andrew Bartlett (This used to be commit 9b2003618b28cb045e74937803e9aad773781803)