Age | Commit message (Collapse) | Author | Files | Lines |
|
Andrew Bartlett
(This used to be commit c2c72565e4efef44068c4f176619942f60a9cf6e)
|
|
Andrew Bartlett
(This used to be commit 1a5ade30dcdf40da8d0a6d7395f1a2e93388fca3)
|
|
Andrew Bartlett
(This used to be commit c1349cfd8d7e150489b94ccb005bfdffe88e4697)
|
|
samba3sam test cases for ldb_map, and to include this into our default
'make test'.
(This used to be commit f69a842314b3d5c57c3fa1f5b1bae3ee6d42da2b)
|
|
Martin Kühl
<mkhl@samba.org>.
Martin took over the work done last year by Jelmer, in last year's
SoC. This was a substanital task, as the the ldb modules API changed
significantly during the past year, with the addition of async calls.
This changeset reimplements and enables the ldb_map ldb module and
adapts the example module and test case, both named samba3sam, to the
implementation.
The ldb_map module supports splitting an ldb database into two parts
(called the "local" and "remote" part) and storing the data in one of
them (the remote database) in a different format while the other acts
as a fallback.
This allows ldb to e.g. store to and load data from a remote LDAP
server and present it according to the Samba4 schema while still
allowing the LDAP to present and modify its data separately.
A complex example of this is the samba3sam module (by Jelmer
Vernooij), which maps data between the samba3 and samba4 schemas.
A simpler example is given by the entryUUID module (by Andrew
Bartlett), which handles some of the differences between AD and
OpenLDAP in operational attributes. It principally maps objectGUID,
to and from entryUUID elements. This is also an example of a module
that doesn't use the local backend as fallback storage.
This merge also splits the ldb_map.c file into smaller, more
manageable parts.
(This used to be commit af2bece4d343a9f787b2e3628848b266cec2b9f0)
|
|
Andrew Bartlett
(This used to be commit eadc24ed291dcdb456139a206c6c8acf92bab6da)
|
|
This confirms that records are replicated into the correct databases,
and that the case insensitive flags really work.
Andrew Bartlett
(This used to be commit ad463c1a5243019548bdbeea3070ec2e6cbcfcdf)
|
|
partitions.
Test that we do that correctly.
Andrew Bartlett
(This used to be commit 90c07b88010b848423dee9556a24e8d181c365dd)
|
|
global USN and global transactions.
Andrew Bartlett
(This used to be commit 5abe3c4f5f31e369548640801435613421f2edac)
|
|
Andrew Bartlett
(This used to be commit 2728b60dfa50ded03e06f0bd53eee55fce5143bd)
|
|
commented out until we fix some more things on our server.
Andrew Bartlett
(This used to be commit ac9d3cb5b004ef1f8e06537634f8f5c33b6c0965)
|
|
Andrew Bartlett
(This used to be commit 0201f0df3f3768f0d831c84c573b27bff58d00c6)
|
|
Unfortunetly this didn't find the wildcard bug, but at least it tests
something...
Andrew Bartlett
(This used to be commit f763970caf37a9191abd9c40f297c3f413fe9a56)
|
|
Andrew Bartlett
(This used to be commit 52b4e83a1c2cd47bf2f8b6d65419dae12631725a)
|
|
both fully qualified and in the 'short' form. Now we test and support
this query format.
Andrew Bartlett
(This used to be commit 9ddcfacbcedc5eea2730d4bf902c0fcd02bcfa11)
|
|
things.
With this fix, we now correctly detect computers again, and get the
correct objectCategory, which is important for the OSX AD plugin.
Andrew Bartlett
(This used to be commit 4e39d7bb245bc337ac496c7e39a510d1c5611c71)
|
|
Add a test to show that we need this, and to prove it works (for add
at least).
Andrew Bartlett
(This used to be commit f72079029abb594677bf8c2b63e40c07e910004f)
|
|
(This used to be commit 7ddec83a602372765711bff7207657b73922aaea)
|
|
This updates the module to handle both SID allocation and nextRid
updating while importing users. (As imported users already have a
SID, so don't go via the allocation step). We also ensure that SIDs
in the database are unquie at create time.
Furthermore, at allocation time, we double-check the SID isn't already
in use, and that we don't create a foriegnSecurityPrincipal for a
'local' sid.
Also create random samAccountName entries for users without one (we
were setting $000000-000000000000).
We may want to seperate the uniqueness code from the rest of samldb,
and into a module with the objectguid code, which needs similar
checks. These checks also need to apply to modification, or those
modifications denied outright.
Also update part of the testsuite to validate this.
Andrew Bartlett
(This used to be commit 7a9c8eee4bea88f5f0bb7c62f701476384b7dc84)
|
|
Doing this required reworking ejsnet, particularly so it could take a
set of credentials, not just a username and password argument.
This required fixing the ejsnet.js test script, which now adds and
deletes a user, and is run from 'make test'. This should prevent it
being broken again.
Deleting a user from ejsnet required that the matching backend be
added to libnet, hooking fortunetly onto already existing code for the
actual deletion.
The js credentials interface now handles the 'set machine account' flag.
New functions have been added to provision.js to wrap the basic
operations (so we can write a command line version, as well as the web
based version).
Andrew Bartlett
(This used to be commit a5e7c17c348c45e61699cc1626a0d5eae2df4636)
|
|
(This used to be commit f4f99f9af33699ac8fe43b09fa7542aab72a031a)
|
|
subcontexts look like.
rafal
(This used to be commit 5a338b04f37f6160f4aaf7d9758aa2d817516eb1)
|
|
mappings right for the attributeTypes field of the aggregate schema
now to add the display specifiers and I won't need the proxy module
any more
(This used to be commit 69264362bd408f493487482a8d5e9779d9a0d475)
|
|
except the attributeTypes fields of the Aggregrate record. Proxying
just that field and the display specifiers gives us a working mmc
client
hopefully i'll work out what it doesn't like about the attributeTypes
field soon
(This used to be commit 3af867a3f4a5fd702089400d1687e2aff017f48a)
|
|
ldap server. It's still not quite right, and I'm chasing down a few
errors that mmc throws up, but its a lot closer than it was. I had to
change the approach quite substantially over the last couple of days,
but this approach now seems to be working out.
(This used to be commit 38ea11510c8824285d072fe0e03e443d9d584271)
|
|
rafal
(This used to be commit deb561ea4a00730787d129ae5eda38ceefe129f6)
|
|
needed to represent all the current records on a ADS LDAP server. The
idea is we will use something based on this code to work out exactly
what schema elements we will need for our initial ADS schema. I plan
on expanding this code to automatically work out attribute properties,
and write out a schema file that we can load into ldb.
Interestingly, it looks like we only need 43 objectclasses and around
200 attributes to represent all records of a newly installed w2k3 ADS
server.
(This used to be commit 7b0ae77757d347d2b0f5bac3a49e915e24c3ab78)
|
|
(This used to be commit 915878d7cebacf499c0c9d264a2dcbc82b521dfd)
|
|
(This used to be commit 04b8c473d7d55d4d802631074843e43fe7d9cfea)
|
|
cross-compilation
using mingw32
(This used to be commit 30ba8fdc3dc8dba543686591a27b819b8f9444db)
|
|
Add SOC STATUS doc
(This used to be commit 152c1a37b536c65e0b816319304d1fb46c2dc5a8)
|
|
(This used to be commit 8ff1358f401e0086b941f4ff73af5d4c38a1f8bf)
|
|
(This used to be commit 4c3b37d660e798764e35a31221f4939ab6f36948)
|
|
(This used to be commit ebed25b47d3d8bd350b51b462d605d713f17602d)
|
|
(This used to be commit 76e943d4416e38ce4cce27d5403bc3e133d0025b)
|
|
(This used to be commit d6dce7ef3eb21a5e90244cf2ce7403ab43b12d63)
|
|
Update PLAN
Some more small other fixes
(This used to be commit 31cd5d55a9754b4e670be5d3687dfaaab8adaefc)
|
|
(This used to be commit 5cbe1e6b70b03be441a36b36fb969339df0dfd45)
|
|
(This used to be commit b7992de4b7d42a55e00509c887a269a07c19627d)
|
|
(This used to be commit 77f24ed131bf57c30bb500e1d8d387bd4b403ddc)
|
|
(This used to be commit 47c11fd886d7c57cafe2e150d745d3ce17e3bb72)
|
|
syntax. Mimir, its
a good idea to use grep -r to find places that need fixing when you change the syntax of
a call :-)
(This used to be commit 1ead49f8e823a69dbd9cd3df3f5be04dc17e0d1f)
|
|
(This used to be commit dae90b6959508a19d35f711caf4c3f4bb9b3796a)
|
|
(This used to be commit f217f08b679ec3ed4784ed0fe74e9cbb935cdce9)
|
|
(This used to be commit bda6943c311e005cff0b46722355e9aa693db67a)
|
|
functionality. It now completely enumerates a winreg tree.
This would make a good basis for a js version of regshell if someone
felt like taking that on.
(This used to be commit 75d0cf78ec8c01dee2a6475d4c64417349d9ec3a)
|
|
and more conveniently (caller doesn't need to know the hive names now)
(This used to be commit dadd7e22fb439f7b18c429a95c75902e4741ba8d)
|
|
(This used to be commit 33bb76ed4e1a796cf68198c0bb480a7bbd31b6cd)
|
|
(This used to be commit 10043db676f9db8d1933b6a5f9ae050cefc538ac)
|
|
calls. This changes the generated RPC and IRPC calls to use the 'this'
object pointer instead of requiring the passing of the object on each
call. So typical usage is now:
var echo = echo_init();
var io = irpcObj();
status = echo.connect("ncacn_np:server");
assert(status.is_ok);
io.input.in_data = 7;
status = echo.AddOne(io);
assert(status.is_ok);
(This used to be commit f7b49ecd0868c1f0fec75b371f132bbf357ad8c6)
|