samba - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author	Files	Lines
2007-10-10	r12928: This patch improves the interaction between the vampire and provsion ↵	Andrew Bartlett	1	-16/+48
	code. Previously, we had to know (or guess) the host and domain guid at the provision stage. Now we query the database post-provision, to extract the values and fill in the zone file. This allows us to generate a correct zone file in the Windows migration case. In an effort to make SWAT easier to use, I have removed and renamed some of the provision options. I have also fixed a nasty issue in my js code. I had implictly declared a global variable of the name 'join', with disasterious results for any subsequent user of the string utility function: esp exception - ASSERT at lib/appweb/ejs/ejsParser.c:2064, 0 Backtrace: [ 0] substitute_var:20 -> list[i] = join("", list2) [ 1] setup_file:9 -> data = substitute_var(data, subobj) Andrew Bartlett (This used to be commit a38ceefd11f8b748f30383ef36a4752f178bfca1)
2007-10-10	r12892: Add a 'Migrate from Windows' page to our installation section in SWAT.	Andrew Bartlett	1	-0/+26
	Doing this required reworking ejsnet, particularly so it could take a set of credentials, not just a username and password argument. This required fixing the ejsnet.js test script, which now adds and deletes a user, and is run from 'make test'. This should prevent it being broken again. Deleting a user from ejsnet required that the matching backend be added to libnet, hooking fortunetly onto already existing code for the actual deletion. The js credentials interface now handles the 'set machine account' flag. New functions have been added to provision.js to wrap the basic operations (so we can write a command line version, as well as the web based version). Andrew Bartlett (This used to be commit a5e7c17c348c45e61699cc1626a0d5eae2df4636)
2007-10-10	r12891: We no longer manually set the 'name' attribute.	Andrew Bartlett	1	-2/+1
	Andrew Bartlett (This used to be commit 7b169aad3f94f1695b1f99cc91ff928cb2ca0389)
2007-10-10	r12823: Fix up the provison and newuser code in SWAT. This also cleans up the	Andrew Bartlett	1	-21/+30
	main provision script a bit, as the argument list was getting out of control. (It has been replaced in part with an object). This also returns the session_info from the auth code into ejs. We still need access control allowing only root to re-provision. Andrew Bartlett (This used to be commit 002cdcf3cab6563909d31edc5d825e857dc0a732)
2007-10-10	r12749: Fix the newuser script.	Andrew Bartlett	1	-6/+4
	Andrew Bartlett (This used to be commit 42cdad5e3f06c307baf80396fd8449b803ef84c3)
2007-10-10	r12739: Add support for using credentials in the provision process.	Andrew Bartlett	1	-16/+21
	This should allow us to provision to a 'normal' LDAP server. Also add in 'session info' hooks (unused). Both of these need to be hooked in on the webserver. Andrew Bartlett (This used to be commit b349d2fbfefd0e0d4620b9e8e0c4136f900be1ae)
2007-10-10	r12704: role => server role	Jelmer Vernooij	1	-4/+4
	(This used to be commit 5884a7effff0b11e82c9d273dbd0407b0f2eb02d)
2007-10-10	r12703: Fix handling of short passdb backends (also reported by Steinar ↵	Jelmer Vernooij	1	-2/+4
	Gunderson) (This used to be commit 4c562c42b43d98f4c6bdbacc5cb1dd5e65bc3418)
2007-10-10	r12699: correctly escape invalid DN characters (reported by Steinar H. ↵	Jelmer Vernooij	1	-1/+1
	Gunderson). this still doesn't work as a bug in ldb causes it to not understand escaped characters in DNs when parsing DNs (This used to be commit 10da56fb6cc57b6c0650a8dc81ded5faa643a96e)
2007-10-10	r12697: Support empty fullname fields in unix accounts	Jelmer Vernooij	1	-0/+4
	(This used to be commit 3d70ebca0b706ae22bc7a3f48c2247c450c42026)
2007-10-10	r12695: A dot is allowed in NetBIOS names.	Jelmer Vernooij	1	-2/+2
	(This used to be commit f4ac7d6359b5a6de04a6ea518dec99f4c9b49b3d)
2007-10-10	r12533: Get the ldb.errstring() out to the user on failure. It helps a lot	Andrew Bartlett	1	-2/+9
	with debugging! Andrew Bartlett (This used to be commit fe36cb6767ce99432e2778037aad334170dca173)
2007-10-10	r12252: With this change (hack) we can now do an provision onto Samba4's LDAP	Andrew Bartlett	1	-1/+4
	server. Now to try another one... Andrew Bartlett (This used to be commit 175f616d74ac3567a35713343be0c63c96c5aede)
2007-10-10	r12227: I realised that I wasn't yet seeing authenticated LDAP for the ldb	Andrew Bartlett	1	-9/+9
	backend. The idea is that every time we open an LDB, we can provide a session_info and/or credentials. This would allow any ldb to be remote to LDAP. We should also support provisioning to a authenticated ldap server. (They are separate so we can say authenticate as foo for remote, but here we just want a token of SYSTEM). Andrew Bartlett (This used to be commit ae2f3a64ee0b07575624120db45299c65204210b)
2007-10-10	r11995: A big kerberos-related update.	Andrew Bartlett	1	-0/+3
	This merges Samba4 up to current lorikeet-heimdal, which includes a replacement for some Samba-specific hacks. In particular, the credentials system now supplies GSS client and server credentials. These are imported into GSS with gss_krb5_import_creds(). Unfortunetly this can't take an MEMORY keytab, so we now create a FILE based keytab as provision and join time. Because the keytab is now created in advance, we don't spend .4s at negprot doing sha1 s2k calls. Also, because the keytab is read in real time, any change in the server key will be correctly picked up by the the krb5 code. To mark entries in the secrets which should be exported to a keytab, there is a new kerberosSecret objectClass. The new routine cli_credentials_update_all_keytabs() searches for these, and updates the keytabs. This is called in the provision.js via the ejs wrapper credentials_update_all_keytabs(). We can now (in theory) use a system-provided /etc/krb5.keytab, if krb5Keytab: FILE:/etc/krb5.keytab is added to the secrets.ldb record. By default the attribute privateKeytab: secrets.keytab is set, pointing to allow the whole private directory to be moved without breaking the internal links. (This used to be commit 6b75573df49c6210e1b9d71e108a9490976bd41d)
2007-10-10	r11956: removed the old rootdse.ldif, and the provision.js code that uses it	Andrew Tridgell	1	-3/+0
	(This used to be commit 4b56c129c6f1654f9dbe37bc950a836f15c48b3d)
2007-10-10	r11781: rename tree to tcons to match the sessions substructure of ↵	Stefan Metzmacher	1	-5/+5
	smbsrv_connection metze (This used to be commit acd3e644e030a3544ddc6cdcd4e0ec9617732cba)
2007-10-10	r11501: change provision code to use the new display specifiers	Andrew Tridgell	1	-0/+2
	(This used to be commit 696fa87a212e65d6337c39a84f682b64b52593a5)
2007-10-10	r11500: fixed a bug in the variable substition code using the new limit ↵	Andrew Tridgell	1	-1/+1
	argument to split() (This used to be commit 25131efea8c1a2b0bfa7f999766ebcbab8fa8006)
2007-10-10	r11496: add a minimal ads-compatible schema into our sam.ldb setup. This is	Andrew Tridgell	1	-2/+2
	needed for mmc management of Samba4. (This used to be commit cbbce4fe403efc0b9e63052c2aa1fbb5972f2abe)
2007-10-10	r11475: removed a extraneous ldb_delete() call (i had it there for debugging)	Andrew Tridgell	1	-1/+0
	(This used to be commit daa9dcd8f4b1dde801091ec64faa8158481d171c)
2007-10-10	r11474: - enable ldb transactions from ejs	Andrew Tridgell	1	-4/+19
	- speed up provisioning a bit using a ldb transaction (also means you can't end up with a ldb being half done) (This used to be commit 91dfe304cf688bb81b69ff3192ac84b78b34b311)
2007-10-10	r11458: fixed our ejs smbscript interfaces to use arrays where appropriate. In	Andrew Tridgell	2	-12/+4
	js arrays are a special type of object where the length property is automatic, and cannot be modified manually. Our code was manually setting length, which made it abort when someone passed in a real ejs array. To fix this we need to create real arrays instead of objects, and remove the code that manually sets the length (This used to be commit ebdd1393fde44a0a35446d1a922d29a7c1769ba7)
2007-10-10	r11363: fixed a problem with provisioning when hklm already exists (the	Andrew Tridgell	1	-2/+1
	problem is really caused by hklm not having objectclass attributes on its records, but this is a workaround) (This used to be commit 62d5253a033f47335ceefade9ad7d98ddfc19584)
2007-10-10	r11285: fixed winreg.js for the recent change to winreg.idl	Andrew Tridgell	1	-2/+2
	(This used to be commit 27f46b4f18346ea03d8626a380e417b00f7a88d1)
2007-10-10	r11222: Small provision fixes: canonicalName is now generated, and the DC=	Andrew Bartlett	1	-1/+1
	list should be from the dnsdomain (ie lowercae). Andrew Bartlett (This used to be commit 10d692a1c216134b301b5851ce1e71ed93cc6164)
2007-10-10	r11217: Ensure the realm is substituted in UPPER case.	Andrew Bartlett	1	-2/+2
	Andrew Bartlett (This used to be commit 0c29f0e30d64be09baad792eb2850aa0b8fa9981)
2007-10-10	r11203: Use different variable names to make it easier to tell which assert ↵	Andrew Bartlett	1	-4/+4
	fired. Andrew Bartlett (This used to be commit df6a40c2d261804f1cd4feb24572135a4c62a802)
2007-10-10	r11087: - add type,name,scope as attributes to winsRecords,	Stefan Metzmacher	1	-7/+58
	so you can use them in search filters, only for administration not used inside the winserver code - fix the samba3 ugrade scripts to create a correct samba4 wins.ldb metze (This used to be commit 9f3b6746d86583c48097da48c28f50f075bbd3e3)
2007-10-10	r10515: Handle replacement of "domain logons" and "domain master" by "server ↵	Jelmer Vernooij	1	-2/+14
	role" (This used to be commit c5e3a1c55d9e21f9ee618169dc05c69ee9c9c5b1)
2007-10-10	r10193: r11632@blu: tridge \| 2005-08-30 23:08:27 +1000	Andrew Tridgell	1	-0/+22
	if we fail to erase a ldb during provision by traversing and deleting records (an in-place erase) then just unlink it and start it again. This makes provisioning much more robust to changes in ldb that make it not backward compatible with old DBs. (This used to be commit 173655aec25c462b8b90b850df65ae6f95f44efb)
2007-10-10	r10190: Do some very basic input checking when provisioning.	Jelmer Vernooij	1	-0/+26
	(This used to be commit 87f25fe49caa78422582337c5208a331ef5b8c15)
2007-10-10	r9951: Add another value to the default HKLM.	Jelmer Vernooij	1	-4/+15
	Convert Samba3 policy "refuse machine pw change" to registry value. (This used to be commit a143234ac7622ef3ef87c80224927551a1452e4b)
2007-10-10	r9925: Fix swapped nt/lm password hashes - caught by Andrew Bartlett	Jelmer Vernooij	1	-1/+1
	(This used to be commit 4f0ee80f6cc1639f612a50ddb8d99ee36d8ce8d6)
2007-10-10	r9899: Be more conservative about what is sent to the remote server in ldb_map.	Jelmer Vernooij	1	-5/+6
	(This used to be commit 76e943d4416e38ce4cce27d5403bc3e133d0025b)
2007-10-10	r9854: Finish ldb_map testsuite	Jelmer Vernooij	1	-18/+79
	Update PLAN Some more small other fixes (This used to be commit de2bde2526ffaf521253e3b9e58fc11417986321)
2007-10-10	r9842: More error checks in the ldb_map modules, extend testsuite	Jelmer Vernooij	1	-28/+31
	(This used to be commit b7992de4b7d42a55e00509c887a269a07c19627d)
2007-10-10	r9834: More tests for the upgrade from Samba3	Jelmer Vernooij	1	-9/+21
	(This used to be commit d2db164d6f674cada470e871c558c75f98244141)
2007-10-10	r9830: Fix support for importing registry values. Extended the examplre ↵	Jelmer Vernooij	1	-5/+3
	registry tdb. (This used to be commit 11e2a1938966f3aa9e9c25433181c20843951a6b)
2007-10-10	r9827: Convert 'passdb backend' rather then 'passdb backends'	Jelmer Vernooij	1	-1/+2
	Be a bit more verbose (This used to be commit fb2fd8da10b281b2064d4cae5d5a0630e8a207da)
2007-10-10	r9816: Work on testsuite for upgrade	Jelmer Vernooij	2	-23/+39
	Add 'paths' object to provision code. (This used to be commit 488d737fb0ebbc2535d0ec17c14f0dc1eaf2a578)
2007-10-10	r9805: Add 'data' property to param EJS object	Jelmer Vernooij	1	-19/+49
	Write out new smb.conf file. Parameters that have disappeared between Samba 3 and 4 will optionally be prefixed with 'samba3:' (This used to be commit 27eefbd9059fe0a3daca15a71da7b4cb88ed22ec)
2007-10-10	r9800: Add EJS interface to param. tridge, sorry this overlaps a bit	Jelmer Vernooij	1	-3/+3
	with your loadparm interface. :-/ (This used to be commit bb0cef581a09a86113f3212c776c011ae73def14)
2007-10-10	r9793: Be more verbose, check for errors in upgrade script.	Jelmer Vernooij	1	-9/+23
	(This used to be commit b7c09df9e506f8048f69c4bdd1c3351e3b554e18)
2007-10-10	r9770: Couple other bugfixes	Jelmer Vernooij	2	-8/+9
	Update TODO-list (This used to be commit d9541535e3f9e1c058410eeb0a54d60181572f2b)
2007-10-10	r9762: Add support for reading good old smbpasswd files	Jelmer Vernooij	1	-23/+36
	Fix password support Make base64 decode/encode functions available to EJS (This used to be commit 1376a1fe44cd6b01709819095a711c14626b1d3e)
2007-10-10	r9756: One-way upgrade from Samba3->Samba4 basically works now	Jelmer Vernooij	2	-13/+8
	Still need to polish some rough edges (This used to be commit a8f309aa812533f57a90410722dfb342c8cf3b48)
2007-10-10	r9754: Upgrading with the command line utility now works, at least partially (-:	Jelmer Vernooij	1	-8/+95
	Upgrading using SWAT should work as well now. (This used to be commit 8baa2ac377315ae8b365f58c2bda0bf3d0c5aec3)
2007-10-10	r9746: Add "staff" as possible alternative to wheel	Jelmer Vernooij	1	-1/+1
	(should fix standard provisioning on AIX) (This used to be commit b1d9ef899821376d7883fa126a14c06ed1b16601)
2007-10-10	r9744: - [upgrade.js] Start working on smb.conf conversion.	Jelmer Vernooij	1	-36/+123
	- [ldb_map] Support storing non-mappable data in a fallback LDB (This used to be commit 435e4c6389b9d9b545beec8036289620ee5883db)