Age | Commit message (Collapse) | Author | Files | Lines |
|
will now control the auth methods, but an override is still available,
ex:
auth methods:domain controller = <methods>
Andrew Bartlett
(This used to be commit b7e727186ed8eda6a68c873e089f655dc24fe8ae)
|
|
patch).
- samba3sam.js: rework the samba3sam test to not use objectCategory,
as it's has special rules (dnsName a simple match)
- ldap.js: Test the ordering of the objectClass attributes for the baseDN
- schema_init.c: Load the mayContain and mustContain (and system...) attributes when
reading the schema from ldb
- To make the schema load not suck in terms of performance, write the
schema into a static global variable
- ldif_handlers.c: Match objectCategory for equality and canonicolisation
based on the loaded schema, not simple tring manipuation
- ldb_msg.c: don't duplicate attributes when adding attributes to a list
- kludge_acl.c: return allowedAttributesEffective based on schema results
and privilages
Andrew Bartlett
(This used to be commit dcff83ebe463bc7391841f55856d7915c204d000)
|
|
Print the smb.conf path being created in provision.
Andrew Bartlett
(This used to be commit bb583463bf483e1b355647f9fc93afbfcb9d41d3)
|
|
Fix a nasty issue we had with SWAT. We could not provision into a
different domain, as we didn't re-calcuate the DOMAINDN after the user
changed it in the form.
Andrew Bartlett
(This used to be commit 430c998dc9ea41ea29cf184d03404b50ef14f78d)
|
|
(This used to be commit f687bc92aea00aa489d310ac31e08a5718a36ec4)
|
|
easily try this out.
I also intend to use this for the selftest, but I'm chasing issues
with the OpenlDAP (but not Fedora DS) backend.
Andrew Bartlett
(This used to be commit 0f457b1d2e20c36ab220b4a6711ce7930c4c7d21)
|
|
OpenLDAP or Fedora DS backend.
This required a new mkdir() call in ejs.
We can now provision just the schema for ad2oLschema to operate on
(with provision_schema(), without performing the whole provision, just
to wipe it again (adjustments to 'make test' to come soon).
Andrew Bartlett
(This used to be commit 01d54d13dc66ef2127ac52c64ede53d0790738ec)
|
|
change the way the ejs object is being created and return listing
context (with status) rather than collecting all entries gathered
from libnet call.
rafal
(This used to be commit b16787a56120498c985f2617f43250df725c285a)
|
|
rafal
(This used to be commit 2f16ff04d22e13cfb2dc5d8b69004d969a4c25fb)
|
|
hosted on the server.
rafal
(This used to be commit 385a094443e29990a2895693f2b6435e3d32c0f3)
|
|
temporarily...)
rafal
(This used to be commit 0ecb8fd81ebbd7327aa5c6b9347aa4dcb1ba6421)
|
|
path(s).
rafal
(This used to be commit 278d26576a625d0fa161f492b902074ea82ef1a8)
|
|
Andrew Bartlett
(This used to be commit 5b6f704b24f7da40ce917fe8ed1a500684d1f3cd)
|
|
(This used to be commit b9f8650b20e5132410153f5b61a68dca5df548ff)
|
|
errors on platforms like sparc. This is why sun1 died during
provision.
(This used to be commit ad6a672ec3cf077d419458e2f07ebe6d9a2b94b2)
|
|
- make it possible to set ntds_objectGUID and ntds_invocationId via the ejy bindings
metze
(This used to be commit df7863ea1c964ec58feedd0bf72ef64456e3a3d1)
|
|
--partitions-only (suggestions for a better name welcome) will setup
the partitions records, but no any data in those partitions. This can
then point at the already configured remote LDAP server.
Andrew Bartlett
(This used to be commit ee7b06fc832ca7c572205c7c268c3c7c552effa0)
|
|
irpc_servers_byname()
metze
(This used to be commit b54584dfabee77ec7743cab431bda9765057a295)
|
|
very usefull for make testenv!
this makes it also possible to pass a config file to smbscript
metze
(This used to be commit f65fcd764b656ba9953d88dc7b002e4977af5011)
|
|
as discussed with jelmer and abartlet
metze
(This used to be commit e9fe3c40e10accb63d7a2124d3a7e77e499c4209)
|
|
partitions onto the target LDAP server.
Make the LDAP provision run before smbd starts, then stop the LDAP
server. This ensures this occurs synchronously, We then restart it
for the 'real run' (with slapd's stdin being the FIFO).
This required fixing a few things in the provision scripts, with more
containers being created via a add/modify pair.
Andrew Bartlett
(This used to be commit 860dfa4ea1ab2b62d4d4fe0644e0a9b882fdafa1)
|
|
metze
(This used to be commit 7f07895cac3e933b39f81bf67812834352184af0)
|
|
- change a comment (matches the idea better)
rafal
(This used to be commit 4e8d9d3f6066d86af0e6dbe1f7091ce848dceb4f)
|
|
is broken, so that one is still disabled.
(This used to be commit ef794f03d50022a77303c77045a04d9407d07cbc)
|
|
(This used to be commit 7f451cbb8da26cfe27861c402e06b3f34f7ac647)
|
|
re-provision (as is required for the TEST_LDAP=yes version of make
test).
Andrew Bartlett
(This used to be commit ea4c2ea22fb3975d80130f52edecaf6d1790adde)
|
|
'phantom_root' flag in the search_options control
- Add in support for LDB controls to the js layer
- Test the behaviour
- Implement support for the 'phantom_root' flag in the partitions module
- Make the LDAP server set the 'phantom_root' flag in the search_options control
- This replaces the global_catalog flag passed down as an opaque pointer
- Rework the string-format control parsing function into
ldb_parse_control_strings(), returning errors by ldb_errorstring()
method, rather than with printf to stderr
- Rework some of the ldb_control handling logic
Andrew Bartlett
(This used to be commit 2b3df7f38d7790358dbb4de1b8609bf794a351fb)
|
|
(This used to be commit 76b377d5ad5c115e5fbb24a10d543883f04283a6)
|
|
We were returning just true/false and discarding error number and string.
This checking probably breaks swat, will fix it in next round as swat
is what made me look into this as I had no way to get back error messages
to show to the users.
Simo.
(This used to be commit 35886b4ae68be475b0fc8b2689ca04d766661261)
|
|
metze
(This used to be commit 838d307e6ca0740bc330a5ebc46b95f3181a5c14)
|
|
them as a hook on ldb modify, via a module.
This should allow the secrets.ldb to be edited by the admin, and to
have things update in the on-disk keytab just as an in-memory keytab
would.
This isn't really a dsdb plugin, but I don't have any other good ideas
about where to put it.
Andrew Bartlett
(This used to be commit 6ce557a1aff4754d2622be8f1c6695d9ee788d54)
|
|
metze
(This used to be commit 306ea74f85c8cd0df767a25c45304cb33410e03c)
|
|
metze
(This used to be commit edc37501d6ecdaf7b13006b732914e21ae0be657)
|
|
metze
(This used to be commit e668d3bd6955f0bd4e37560925c4107fd870c02f)
|
|
- remove unused mem_ctx variable
- copy the userman_domain string as child of obj
metze
(This used to be commit 575938753bb2f3b8593f240234cff71995a28df8)
|
|
size of a buffer for result returned, not number of entries
- pass libnet function returned status to UserListCtx creation
to properly mark the last chunk of the list
rafal
(This used to be commit 05d307546f93794a0a981c3aa942669b9b18afd1)
|
|
rafal
(This used to be commit fd0650283b750aec7952b025db54ab46020a547d)
|
|
rafal
(This used to be commit eebd00ba2bfdfe3bbbcc0a50b91e2e2b03371df6)
|
|
metze
(This used to be commit ad110d22fba621e7d15b457fb1ff5aa29b3fd3b0)
|
|
via "secrets database = my_secrets.ldb"
metze
(This used to be commit a096a9741597105140845f59e54a76060da0010b)
|
|
metze
(This used to be commit c78e345feaef607b9297372aacb00ec068127785)
|
|
metze
(This used to be commit e2cdd882b5ab12396244a13e0e58d8ee52f234ab)
|
|
mimir: when you want to register more functions
please do that in the smb_setup_ejs_net() function
metze
(This used to be commit 5828632931376c3982bf0b6d110d217a8e05d60e)
|
|
(This used to be commit 42bb335bd50a5070ee59c9d9748db8a9e9d6a9b0)
|
|
this as the change is getting bigger and bigger.
Jelmer, Metze, I don't know enough of our build system so please check
if .mk files are ok.
rafal
(This used to be commit 77ede0656c0b17a84ee8550776ab158007f0e71f)
|
|
rafal
(This used to be commit 10968c3f4b0bb63a9902adcbd44d30ad7bfd4afe)
|
|
(This used to be commit 6976f283fc30a401bcc1d2c5089135c3fe8f1728)
|
|
as for every object the repl_meta_data module needs to look
up the object by objectGUID
metze
(This used to be commit 55f845377ce3a7aeb028805754dc9c05d429548e)
|
|
uint32_t server_id
to
struct server_id server_id;
which allows a server ID to have an node number. The node number will
be zero in non-clustered case. This is the most basic hook needed for
clustering, and ctdb.
(This used to be commit 2365abaa991d57d68c6ebe9be608e01c907102eb)
|
|
we need to modify some modules to only handle originating changes...
metze
(This used to be commit 0f387d58e69a6ee806fea02229ef8fa030f2918d)
|