summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Collapse)AuthorFilesLines
2011-01-14s4-dsdb: removed the last use of samdb_search_*() from the dsdb ldb modulesAndrew Tridgell1-4/+12
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dsdb: removed some more samdb_search_*() calls from samldb.cAndrew Tridgell1-26/+69
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dsdb: replaced another use of samdb_search in a ldb moduleAndrew Tridgell1-4/+10
we should be using the dsdb_module_search*() calls Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dsdb: fixed primaryGroupID to use dsdb_module_search_dn()Andrew Tridgell1-6/+14
this avoids using a multi-part extended DN in a search that hits the check in extended_dn_in Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dsdb: fixed filtering of tokengroupsAndrew Tridgell1-5/+3
builtin groups are shown in user tokenGroups searches Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14ldb: new ABI file for 0.9.23Andrew Tridgell1-0/+247
2011-01-14s4-kdc: don't ask for an extended DN for krbtgt_dnAndrew Tridgell1-1/+1
otherwise msg->dn would be non-minimal and would fail in searches Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-test: added a tokengroups testAndrew Tridgell2-0/+101
this tests that the remote tokenGroups match the internally calculated ones Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-samdb: give a more useful debug when we can't open the privileges dbAndrew Tridgell1-0/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-auth: fixed status return Andrew Tridgell1-1/+1
Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-samba-tool: fixed the gpo command to use the right DN for access checksAndrew Tridgell1-5/+14
2011-01-14s4-dsdb: minimise the DN in group expansionAndrew Tridgell1-0/+5
this DN we have came from an extended DN search, which means it may have multiple extended components. We need to minimise the DN before AD will accept it Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14ldb: added ldb_dn_minimise()Andrew Tridgell2-0/+64
this removes any extraneous components from a DN. For an extended DN, this means removing the string DN and all but the first extended component. This is needed as AD returns "invalid syntax" if you don't use a minimal DN as the base DN for a search. A non-minimal DN also doesn't ever match in a search expression. Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dns: renamed DNS_TYPE_ZERO to DNS_TYPE_TOMBSTONEAndrew Tridgell1-5/+5
we now know that these are tombstone records, with a timestamp Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-dsdb: validate number of extended componentsAndrew Tridgell1-2/+10
this checks that the number of extended components in a DN is valid, to match MS AD behaviour. We need to do this to ensure that our tools don't try to do operations that will be invalid when used against MS servers Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14ldb: added ldb_dn_get_extended_comp_num()Andrew Tridgell3-1/+10
this returns the number of extended components. We need this to validate a DN in the extended_dn_in module Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org>
2011-01-14s4-samba_tool Added ACL checking to python GPO management toolAndrew Bartlett1-8/+26
2011-01-14pyldb Simplify python wrappers for struct ldb_val (LdbValue)Andrew Bartlett1-17/+4
Andrew Bartlett
2011-01-14s4-auth Add get and set methods for auth_session_info python wrapperAndrew Bartlett2-7/+73
This allows the session key, security_token and credentials to be manipulated from python. Andrew Bartlett Pair-Programmed-With: Andrew Tridgell <tridge@samba.org>
2011-01-14s4-auth Add function to obtain any user's session_info from a given LDBAndrew Bartlett6-81/+209
This will be a building block for a tokenGroups test, which can compare against a remote server (in particular the rootDSE) against what we would calculate the tokenGroups to be. (this meant moving some parts out of the auth_sam code into the containing library) Andrew Bartlett
2011-01-14s4-auth use new dsdb_expand_nested_groups()Andrew Bartlett2-152/+11
This isn't quite as good as using tokenGroups, but that is only available for BASE searches, and this isn't how the all the callers work at the moment. Andrew Bartlett
2011-01-14s4-dsdb Implement tokenGroups expansion directly in ldb operational moduleAndrew Bartlett3-30/+269
This removes a silly cross-dependency between the ldb moudle stack and auth/ Andrew Bartlett
2011-01-12s4:torture/nbench/nbench.c - initialise "n"Matthias Dieter Wallnöfer1-1/+1
Autobuild-User: Matthias Dieter Wallnöfer <mdw@samba.org> Autobuild-Date: Wed Jan 12 20:38:02 CET 2011 on sn-devel-104
2011-01-12s4:dns_server/dlz_bind9.c - initialise "ret" variablesMatthias Dieter Wallnöfer1-2/+2
2011-01-12s4:extended_dn_out LDB module - initialise "have_reveal_control"Matthias Dieter Wallnöfer1-1/+1
2011-01-12s4:librpc/rpc/dcerpc_connect.c - fix uninitialised variableMatthias Dieter Wallnöfer1-0/+1
2011-01-12ldb:ltdb_sequence_number - initialise "tmp_ctx" to prevent uninitialisation ↵Matthias Dieter Wallnöfer1-1/+2
warning
2011-01-12ldb:ldbsearch.c - fix possible uninitialised variableMatthias Dieter Wallnöfer1-2/+2
And add a comparison for the "ret" result - this is more standard-oriented
2011-01-12torture:drs/rpc/msds_intid.c - proof for the correct "intId"Matthias Dieter Wallnöfer1-1/+1
"drs_attr" is uninitialised in this loop
2011-01-12s4:winbind/idmap.c - we cannot use "failed" until we are in a transactionMatthias Dieter Wallnöfer1-8/+14
We've to wait until "trans" is initialised.
2011-01-12ldb:ltdb_sequence_number - check for an OOM exceptionMatthias Dieter Wallnöfer1-0/+4
2011-01-12ldb:ldb_dn_explode - remove/unify some duplicate initialisationsMatthias Dieter Wallnöfer1-6/+2
2011-01-12s4:dynconfig/dynconfig.h - fix ending newline warningMatthias Dieter Wallnöfer1-1/+1
2011-01-12torture: add ndr tests for backup key protocolMatthieu Patou3-1/+161
Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Jan 12 10:25:00 CET 2011 on sn-devel-104
2011-01-12idl: Add IDL for remote key backup protocol (rkbp)Matthieu Patou1-1/+1
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-01-12idl: remove protected storageMatthieu Patou1-1/+1
Signed-off-by: Stefan Metzmacher <metze@samba.org>
2011-01-12Add some debug in s4's winbind serverMatthieu Patou3-2/+3
Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Wed Jan 12 01:43:11 CET 2011 on sn-devel-104
2011-01-11s4-tests: Tests for expansion of ACEs containing generic information.Nadezhda Ivanova1-2/+59
Autobuild-User: Nadezhda Ivanova <nivanova@samba.org> Autobuild-Date: Tue Jan 11 12:10:25 CET 2011 on sn-devel-104
2011-01-11ldb: link to the download directory on the websiteAndrew Tridgell1-16/+4
2011-01-11s4: fixed 'make dist' not to need configure for s4Andrew Tridgell1-2/+4
2011-01-09s4: make pipes with underscore works alsoMatthieu Patou1-1/+3
Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sun Jan 9 15:47:01 CET 2011 on sn-devel-104
2011-01-08waf: ensure "make dist" works from a clean git tree for all librariesAndrew Tridgell1-2/+4
this uses a temporary waf lock file to force the build directory Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Sat Jan 8 02:35:22 CET 2011 on sn-devel-104
2011-01-08s4: upgradeprovision: Improve wording, punctuationMichael Wood1-57/+60
Signed-off-by: Matthieu Patou <mat@matws.net> Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Sat Jan 8 00:25:08 CET 2011 on sn-devel-104
2011-01-07netlogon: move netlogon helpers to ../libcli/netlogon.Günther Deschner3-2/+3
Guenther
2011-01-07s4/ldapcmp: Two new options are added to the toolZahari Zahariev1-40/+76
The new ones are --base and --scope they give us the opportunity to compare DN subsets of the partitions. Now we are also able to compare any two objects even if they have different DNs. This is exteremely helpful when you are after nasty nTSecurityDescriptor bug. Signed-off-by: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> Autobuild-User: Anatoliy Atanasov <anatoliy.atanasov@postpath.com> Autobuild-Date: Fri Jan 7 13:22:26 CET 2011 on sn-devel-104
2011-01-07s4-ldap_server Allow multiple binds on LDAP serverAndrew Bartlett1-0/+18
Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Jan 7 00:02:23 CET 2011 on sn-devel-104
2011-01-06acl tests: Fix import.Jelmer Vernooij1-4/+7
Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Thu Jan 6 16:07:49 CET 2011 on sn-devel-104
2011-01-06Use new style objects.Jelmer Vernooij1-1/+2
2011-01-06Remove unused imports.Jelmer Vernooij6-14/+7
2011-01-05s4/ldapcmp: Correct fix for creds2Anatoliy Atanasov1-0/+3
We need to set domain and workstation to creds2 otherwise we get Segfault because they are not initialized correctly.
generated by cgit (git 2.34.1) at 2024-11-06 01:34:37 +0000