Age | Commit message (Collapse) | Author | Files | Lines |
|
to add
trusted domains.
Volker
(This used to be commit 8b8bb85ad365721bfa1cf5309d53d851f2013c22)
|
|
request handler, you really have to watch the recursion issues...
Andrew Bartlett
(This used to be commit 46628e86a2be6d334b2d0427e7052517c7ab1d4c)
|
|
passwords) be moved into the database, and not be hard-coded in the
module source.
Andrew Bartlett
(This used to be commit 1fbe09ce818ac1603bd747610262865b8698fe04)
|
|
was a bad idea...
as in samba4 we use TIME_T_MIN = 0 (maybe we should do this in samba3 too) because
negativ values mean error.
but still restrict TIME_T_MAX to INT32_MAX, to not overflow gmtime() on 64 bit systems,
is this behavior documented somewhere?
metze
(This used to be commit 333b1b8c4885c47a0d14d83896fce6740fa4d663)
|
|
when gmtime() fails...
metze
(This used to be commit 523746f2712371041800301294c73bb7686bf2d5)
|
|
- but limit TIME_T_MAX to INT32_MAX, otherwise 64 platfroms are broken
because gmtime() will fail with INT64_MAX passed in!
I'm not sure if that's the best fix for this problem, but it works...
Should we port the INT32_MAX limitation to samba3?
Comments, please?
metze
(This used to be commit 396fa81be5b950aa2120cff19540a0236f79a685)
|
|
expand because they don't exist yet). Thanks again to HotaruT.
Andrew Bartlett
(This used to be commit d3abfecec5c9468e93d2d40181ce5d20f8135566)
|
|
Andrew Bartlett
(This used to be commit 2a6023d7414c1c337bb24a8c6882a17380cbc658)
|
|
Andrew Bartlett
(This used to be commit 9e6997d5bde306f442b2c7379870af6495e11d25)
|
|
Andrew Bartlett
(This used to be commit 5d42638170245b684b45459d0538ea86fa811214)
|
|
Andrew Bartlett
(This used to be commit 42cdad5e3f06c307baf80396fd8449b803ef84c3)
|
|
allow escaped separation chars as part of the attr value
of an RDN
(This used to be commit 7ba341d6c3745cd99c4c79933f9bd54f41e12a9c)
|
|
Andrew Bartlett
(This used to be commit 10eadf48124d61f2eb586fb277a66aa4b9e6cad3)
|
|
This should be replaced with real ACLs, which tridge is working on.
In the meantime, the rules are very simple:
- SYSTEM and Administrators can read all.
- Users and anonymous cannot read passwords, can read everything else
- list of 'password' attributes is hard-coded
Most of the difficult work in this was fighting with the C/js
interface to add a system_session() all, as it still doesn't get on
with me :-)
Andrew Bartlett
(This used to be commit be9d0cae8989429ef47a713d8f0a82f12966fc78)
|
|
command line to ldbsearch. Very rough work, no checks are
done on the input yet (will segfault if you make it wrong).
Controls are passed via the --controls switch an are comma
separated (no escaping yet).
General syntax is <ctrl_name>:<criticality>
<ctrl_name> is a string
<criticality> is 1 or 0
Current semi-parsed controls are:
server_sort
syntax: server_sort:1:0:attributename
1st parm: criticality
2nd parm: reversed
3rd parm: attribute name to be used for sorting
todo: still missing suport for multiple sorting
attributes and ordering rule
no check on result code
paged_results
syntax: paged_results:1:100
1st parm: criticality
2nd parm: number of results to be returned
todo: ldbsearch will return only the first batch
(missing code to cycle over conditionally)
no check on result code
extended_dn
syntax: extended_dn:1:0
1st parm: criticality
2nd parm: type, see MS docs on meaning
Simo.
(This used to be commit 4c685ac0d1638a1d5392dfe733baf0db77e84858)
|
|
the cmdline credentials if we ask for it.
Andrew Bartlett
(This used to be commit 874dd09759eb0243988f39363c94785ae2e68485)
|
|
a second_stage_init private function for modules that need a second stage init.
Simo.
(This used to be commit 5e8b365fa2d93801a5de1d9ea76ce9d5546bd248)
|
|
This should allow us to provision to a 'normal' LDAP server.
Also add in 'session info' hooks (unused). Both of these need to be
hooked in on the webserver.
Andrew Bartlett
(This used to be commit b349d2fbfefd0e0d4620b9e8e0c4136f900be1ae)
|
|
Andrew Bartlett
(This used to be commit 0f8c162211662de59f42a96fe5bdf56ed5be883f)
|
|
(This used to be commit df1ccca3499015d68a6f9f86286d9f66b6c0476c)
|
|
There's still lot of work to do but the patch is stable
enough to be pushed into the main samba4 tree.
Simo.
(This used to be commit 77125feaff252cab44d26593093a9c211c846ce8)
|
|
Andrew Bartlett
(This used to be commit 708ce7de3034cfef3c6d8c7d49df8851ad1e5827)
|
|
--service-name=bar in testparm.
Andrew Bartlett
(This used to be commit be067e9a04a4dca02a9472ae7385dc0bf26735ea)
|
|
This changes -s from meaning 'suppress prompt' to 'services file'.
Andrew Bartlett
(This used to be commit 0f78bd743b8bc415e47006a683c53bfdff1bc1e1)
|
|
Andrew Bartlett
(This used to be commit 3c49dd9219b12f5ed229ba108a02b85a18146df8)
|
|
It needs work to not dump defaults from loadparm.c, but otherwise it works.
Andrew Bartlett
(This used to be commit 1260fcf46579d708a406625f548add9be9fdc6fb)
|
|
metze
(This used to be commit f2e97983f278211c6d70400ce1f43d6a69df0d8a)
|
|
metze
(This used to be commit 4ca1a9a6063ef0caee09eb5310d079ee054d91b4)
|
|
sambaNTPassword. Likewise lmPwdHistory -> sambaLMPwdHistory.
The idea here is to avoid having conflicting formats when we get to
replication. We know the base data matches, but we may need to use a
module to munge formats.
Andrew Bartlett
(This used to be commit 8e608dd4bf4f108e02274a9977ced04a0a270570)
|
|
Because we don't know the syntax of unicodePwd, we want to avoid using
that attribute name. It may cause problems later when we get
replication form windows.
I'm doing this before the tech preview, so we don't get too many
supprises as folks upgrade databases into later versions.
Andrew Bartlett
(This used to be commit 097d9d0b7fd3b1a10fb7039f0671fd459bed2d1b)
|
|
Andrew Bartlett
(This used to be commit c10491fb9be1eb8a13f03ed16fd3ed799315287e)
|
|
Also fix up all the current issues with the skel module.
Andrew Bartlett
(This used to be commit d0a0a8de3fa73d8f06a801203e00b90ed8359b98)
|
|
be a valid talloc() pointer, as other modules may rely on this.
Andrew Bartlett
(This used to be commit 356c8c56090a7c4254609c0cc138c994b618fa55)
|
|
(This used to be commit a02b0c5568977e1a2a396460d13a24076d4681f0)
|
|
returned address.
Andrew Bartlett
(This used to be commit 57b0aae0d4b52d9a9879c4606d2e4b3ef0d3d0d7)
|
|
Andrew Bartlett
(This used to be commit 964f7fc6ca4ac7578ca0d467392d4e174211b6e2)
|
|
(This used to be commit 5884a7effff0b11e82c9d273dbd0407b0f2eb02d)
|
|
Gunderson)
(This used to be commit 4c562c42b43d98f4c6bdbacc5cb1dd5e65bc3418)
|
|
wins_config.ldb
changes
- use a periodic run interval of 15 secs per default, as we no longer
send push notifies with each run
metze
(This used to be commit 0382b3135c770847be33fbf8ee500f2c0bf265e2)
|
|
and not on startup
metze
(This used to be commit fd234ebbac30a10083e2898eb291d8a4fef7198f)
|
|
allocate a new versionID
so that it gets replicated to the old owning wins server directly
metze
(This used to be commit 72198f00ea933db68f7ec5d85cac00c98b37a077)
|
|
Gunderson).
this still doesn't work as a bug in ldb causes it to not understand
escaped characters in DNs when parsing DNs
(This used to be commit 10da56fb6cc57b6c0650a8dc81ded5faa643a96e)
|
|
(This used to be commit 5e6df39363fba961e09e836e4b5a0115b278be90)
|
|
(This used to be commit 3d70ebca0b706ae22bc7a3f48c2247c450c42026)
|
|
(This used to be commit 63917616016133c623fc6ff59454bc313ee7dd8f)
|
|
(This used to be commit f4ac7d6359b5a6de04a6ea518dec99f4c9b49b3d)
|
|
(This used to be commit c722f665c90103f3ed57621c460e32ad33e7a8a3)
|
|
torture prototypes in seperate header
(This used to be commit 73610639b23ca3743077193fa0b1de7c7f65944d)
|
|
supportedSASLMechanism in the rootdse. (Second half of a patch
commited earlier today).
Andrew Bartlett
(This used to be commit 4b67b5d688493c385e12734fd2c0c9dbc1b238e4)
|
|
Get this out of the server credentials, and push it down to ldb via an
opaque pointer.
Andrew Bartlett
(This used to be commit 61700252e05e0be6b4ffa72ffc24a95c665597e3)
|