summaryrefslogtreecommitdiff
path: root/source4/scripting
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r12252: With this change (hack) we can now do an provision onto Samba4's LDAPAndrew Bartlett1-1/+4
server. Now to try another one... Andrew Bartlett (This used to be commit 175f616d74ac3567a35713343be0c63c96c5aede)
2007-10-10r12227: I realised that I wasn't yet seeing authenticated LDAP for the ldbAndrew Bartlett3-14/+38
backend. The idea is that every time we open an LDB, we can provide a session_info and/or credentials. This would allow any ldb to be remote to LDAP. We should also support provisioning to a authenticated ldap server. (They are separate so we can say authenticate as foo for remote, but here we just want a token of SYSTEM). Andrew Bartlett (This used to be commit ae2f3a64ee0b07575624120db45299c65204210b)
2007-10-10r12218: Use common functions for generating listsJelmer Vernooij1-2/+2
(This used to be commit ba913b86e866a67402785d9177711beb16db2cab)
2007-10-10r12104: Move to (sync) smb_composite_connect from smbcli_tree_full_connection()Rafal Szczesniak1-2/+13
This is one of the last places using the latter function. rafal (This used to be commit c95d30d38c4969c070766d320ed52e332e131195)
2007-10-10r12014: free the irpc_request structure with the irpc_call_recv functions,Stefan Metzmacher1-1/+0
to match all other _recv functions we have metze (This used to be commit bd4f85ab5f60c7430ac88062fa6a9f6cffa9596f)
2007-10-10r12013: fix compiler warningsStefan Metzmacher2-6/+6
metze (This used to be commit 4d35c2b8e671cc8fe44971cf2a577236afd1abbd)
2007-10-10r12012: fix renaming smbsrv_trees -> smbsrv_tconsStefan Metzmacher1-6/+6
metze (This used to be commit e5654f9791a2786e45108216344b2daea3ad9d91)
2007-10-10r11995: A big kerberos-related update.Andrew Bartlett2-0/+15
This merges Samba4 up to current lorikeet-heimdal, which includes a replacement for some Samba-specific hacks. In particular, the credentials system now supplies GSS client and server credentials. These are imported into GSS with gss_krb5_import_creds(). Unfortunetly this can't take an MEMORY keytab, so we now create a FILE based keytab as provision and join time. Because the keytab is now created in advance, we don't spend .4s at negprot doing sha1 s2k calls. Also, because the keytab is read in real time, any change in the server key will be correctly picked up by the the krb5 code. To mark entries in the secrets which should be exported to a keytab, there is a new kerberosSecret objectClass. The new routine cli_credentials_update_all_keytabs() searches for these, and updates the keytabs. This is called in the provision.js via the ejs wrapper credentials_update_all_keytabs(). We can now (in theory) use a system-provided /etc/krb5.keytab, if krb5Keytab: FILE:/etc/krb5.keytab is added to the secrets.ldb record. By default the attribute privateKeytab: secrets.keytab is set, pointing to allow the whole private directory to be moved without breaking the internal links. (This used to be commit 6b75573df49c6210e1b9d71e108a9490976bd41d)
2007-10-10r11956: removed the old rootdse.ldif, and the provision.js code that uses itAndrew Tridgell1-3/+0
(This used to be commit 4b56c129c6f1654f9dbe37bc950a836f15c48b3d)
2007-10-10r11814: 1) Set name resolution methods according to smb.confRafal Szczesniak1-1/+4
2) Set credentials workstation name, otherwise rpc bind function segfaults on auth stage rafal (This used to be commit 6dc67ba6a30e6fc3fc21821d009ea940b093eec2)
2007-10-10r11781: rename tree to tcons to match the sessions substructure of ↵Stefan Metzmacher1-5/+5
smbsrv_connection metze (This used to be commit acd3e644e030a3544ddc6cdcd4e0ec9617732cba)
2007-10-10r11748: By default, use name resolution method provided by meansRafal Szczesniak1-0/+1
of smb.conf. rafal (This used to be commit 739169e8eda74ad53d728fe6d11a30513c218853)
2007-10-10r11588: Remove unused (at the moment) variable and quiet compiler warning.Rafal Szczesniak1-1/+0
rafal (This used to be commit 90db7f13bc0df0a276dc736d2f9439616cb3b2f7)
2007-10-10r11586: Further work on ejs interface for libnet. The idea is to split libnetRafal Szczesniak2-4/+57
functionalities into groups of subcontexts of net subcontext just the way it's done in net tool. This way we can pass common arguments when creating subcontext. Also, this may allow easier writing net tool completely as a script. At the moment there's a name resolve code segfault to be fixed. rafal (This used to be commit 25310d05927dab69d37248977f974bcaedbd081b)
2007-10-10r11567: Ldb API change patch.Simo Sorce1-3/+4
This patch changes the way lsb_search is called and the meaning of the returned integer. The last argument of ldb_search is changed from struct ldb_message to struct ldb_result which contains a pointer to a struct ldb_message list and a count of the number of messages. The return is not the count of messages anymore but instead it is an ldb error value. I tryed to keep the patch as tiny as possible bu as you can guess I had to change a good amount of places. I also tried to double check all my changes being sure that the calling functions would still behave as before. But this patch is big enough that I fear some bug may have been introduced anyway even if it passes the test suite. So if you are currently working on any file being touched please give it a deep look and blame me for any error. Simo. (This used to be commit 22c8c97e6fb466b41859e090e959d7f1134be780)
2007-10-10r11501: change provision code to use the new display specifiersAndrew Tridgell1-0/+2
(This used to be commit 696fa87a212e65d6337c39a84f682b64b52593a5)
2007-10-10r11500: fixed a bug in the variable substition code using the new limit ↵Andrew Tridgell1-1/+1
argument to split() (This used to be commit 25131efea8c1a2b0bfa7f999766ebcbab8fa8006)
2007-10-10r11498: added an optional extra argument to split to limit the number ofAndrew Tridgell1-8/+19
pieces a string is split into. This allows for a fix in the variable substitution used in provisioning (This used to be commit be06785d4835abcbc7d75c0176c85a8ecc0cc11d)
2007-10-10r11496: add a minimal ads-compatible schema into our sam.ldb setup. This isAndrew Tridgell1-2/+2
needed for mmc management of Samba4. (This used to be commit cbbce4fe403efc0b9e63052c2aa1fbb5972f2abe)
2007-10-10r11475: removed a extraneous ldb_delete() call (i had it there for debugging)Andrew Tridgell1-1/+0
(This used to be commit daa9dcd8f4b1dde801091ec64faa8158481d171c)
2007-10-10r11474: - enable ldb transactions from ejsAndrew Tridgell2-4/+100
- speed up provisioning a bit using a ldb transaction (also means you can't end up with a ldb being half done) (This used to be commit 91dfe304cf688bb81b69ff3192ac84b78b34b311)
2007-10-10r11458: fixed our ejs smbscript interfaces to use arrays where appropriate. InAndrew Tridgell8-42/+48
js arrays are a special type of object where the length property is automatic, and cannot be modified manually. Our code was manually setting length, which made it abort when someone passed in a real ejs array. To fix this we need to create real arrays instead of objects, and remove the code that manually sets the length (This used to be commit ebdd1393fde44a0a35446d1a922d29a7c1769ba7)
2007-10-10r11439: Make presedence on strcmp comparison clear, and fill inAndrew Bartlett1-1/+3
logon_parameters for the auth subsystem. Andrew Bartlett (This used to be commit 767c5ca7bec3737d1261e209cd895d1300354f25)
2007-10-10r11365: fixed a comment typoAndrew Tridgell1-1/+1
(This used to be commit 3333d71ab6594c1e8977098c31c9437686039f1c)
2007-10-10r11363: fixed a problem with provisioning when hklm already exists (theAndrew Tridgell1-2/+1
problem is really caused by hklm not having objectclass attributes on its records, but this is a workaround) (This used to be commit 62d5253a033f47335ceefade9ad7d98ddfc19584)
2007-10-10r11354: - generate a ejs error on bad ldif to add/modifyAndrew Tridgell1-3/+7
- fixed a double free error in ldb.close() (This used to be commit 7f797e7097cffa1f5b5bac34e100af77d4026f89)
2007-10-10r11308: Correctly return status code in case of js error or libnetRafal Szczesniak1-1/+8
function execution error. rafal (This used to be commit a50a5bef6e4c0051d13ed59fe5ddade709a98ba7)
2007-10-10r11303: Support defining and installing public headers for libraries.Jelmer Vernooij1-1/+1
Support installing libraries. Get rid of pkg-config file (will be autogenerated later on). (This used to be commit b4745032a2c55752c527026feb221ccc3dce10c8)
2007-10-10r11285: fixed winreg.js for the recent change to winreg.idlAndrew Tridgell1-2/+2
(This used to be commit 27f46b4f18346ea03d8626a380e417b00f7a88d1)
2007-10-10r11281: Initial ejs interface for libnet functions.Rafal Szczesniak4-1/+149
rafal (This used to be commit f9c436bbdf0f071247da025f6984f9ee1c48dca8)
2007-10-10r11244: Relative path names in .mk filesJelmer Vernooij2-19/+21
(This used to be commit 24e10300906c380919d2d631bfb3b8fd6b3f54ba)
2007-10-10r11222: Small provision fixes: canonicalName is now generated, and the DC=Andrew Bartlett1-1/+1
list should be from the dnsdomain (ie lowercae). Andrew Bartlett (This used to be commit 10d692a1c216134b301b5851ce1e71ed93cc6164)
2007-10-10r11217: Ensure the realm is substituted in UPPER case.Andrew Bartlett1-2/+2
Andrew Bartlett (This used to be commit 0c29f0e30d64be09baad792eb2850aa0b8fa9981)
2007-10-10r11214: Remove scons files (see ↵Jelmer Vernooij2-15/+0
http://lists.samba.org/archive/samba-technical/2005-October/043443.html) (This used to be commit 7fffc5c9178158249be632ac0ca179c13bd1f98f)
2007-10-10r11203: Use different variable names to make it easier to tell which assert ↵Andrew Bartlett1-4/+4
fired. Andrew Bartlett (This used to be commit df6a40c2d261804f1cd4feb24572135a4c62a802)
2007-10-10r11171: fix the buildStefan Metzmacher1-1/+2
metze (This used to be commit 0d948cf430f34757a17170cdd26ac6b87341a75f)
2007-10-10r11087: - add type,name,scope as attributes to winsRecords,Stefan Metzmacher1-7/+58
so you can use them in search filters, only for administration not used inside the winserver code - fix the samba3 ugrade scripts to create a correct samba4 wins.ldb metze (This used to be commit 9f3b6746d86583c48097da48c28f50f075bbd3e3)
2007-10-10r11086: add sys.unix2nttime() functionStefan Metzmacher1-0/+17
metze (This used to be commit a3abf10d431f82b12b0795d5bc217c8ec3ce89f7)
2007-10-10r11085: as ejs doesn't support '&' '|' bitwise AND and OR,Stefan Metzmacher1-0/+47
we need some helper functions for this metze (This used to be commit e27e36909d367748fc653ddc0fd1c699b77780e9)
2007-10-10r11083: use the addresses from the recordStefan Metzmacher1-1/+3
metze (This used to be commit 5d46cdd1ee8ae2a49a81f0a36a4c3f12d7635de9)
2007-10-10r10914: moved the ldap time string functions into ldb so they can be used byAndrew Tridgell1-1/+2
the time attribute handling functions (This used to be commit 93c296d52718e77f8b702e1721b548eaadc56c76)
2007-10-10r10586: Add MergedObject() builder. Default to Library() ratherJelmer Vernooij1-2/+2
then StaticLibrary() (This used to be commit b53313dc517986c69a4e4cb8fe3885b696f8faa1)
2007-10-10r10528: Add credentials.h back into includes.h as some compilers don'tJelmer Vernooij2-2/+0
seem to be able to handle incomplete enum types. (This used to be commit 540155fad3c8e3d79fb631bb3f14273f82130a73)
2007-10-10r10515: Handle replacement of "domain logons" and "domain master" by "server ↵Jelmer Vernooij1-2/+14
role" (This used to be commit c5e3a1c55d9e21f9ee618169dc05c69ee9c9c5b1)
2007-10-10r10510: Decrease the amount of data included by includes.h a bitJelmer Vernooij2-0/+2
(This used to be commit 03647e1321cf6c9bd6ced3945265f635e9468973)
2007-10-10r10402: Make the RPC-SAMLOGON test pass against Win2k3 SP0 again.Andrew Bartlett2-2/+2
I still have issues with Win2k3 SP1, and Samba4 doesn't pass it's own test for the moment, but I'm working on these issues :-) This required a change to the credentials API, so that the special case for NTLM logins using a principal was indeed handled as a special, not general case. Also don't set the realm from a ccache, as then it overrides --option=realm=. Andrew Bartlett (This used to be commit 194e8f07c0cb4685797c5a7a074577c62dfdebe3)
2007-10-10r10348: Add scons scripts for remaining subsystems. Most subsystems build now,Jelmer Vernooij2-0/+15
but final linking still fails (as does generating files asn1, et, idl and proto files) (This used to be commit 4f0d7f75b99c7f4388d8acb0838577d86baf68b5)
2007-10-10r10316: More dynconfig fixesJelmer Vernooij3-3/+0
(This used to be commit 0963ab9c148772b961f17ec779213b0eb861e1dd)
2007-10-10r10252: a recent checkin from simo changed the handling of BASE and SUBTREEAndrew Tridgell1-0/+1
searches in ldb to be more ldap compliant, but broke the wins server and the ejs ldb code. This fixes those up so 'make test' passes again. (This used to be commit dff660c23c97114d0c1be705f4d6a9c114b60456)
2007-10-10r10193: r11632@blu: tridge | 2005-08-30 23:08:27 +1000Andrew Tridgell1-0/+22
if we fail to erase a ldb during provision by traversing and deleting records (an in-place erase) then just unlink it and start it again. This makes provisioning much more robust to changes in ldb that make it not backward compatible with old DBs. (This used to be commit 173655aec25c462b8b90b850df65ae6f95f44efb)