From 80d8b2e180bde08a9339d6f4c1c7df15874954a7 Mon Sep 17 00:00:00 2001 From: Günther Deschner Date: Tue, 27 Oct 2009 13:49:21 +0100 Subject: lsa: add LSA_SECRET access masks. Guenther --- librpc/gen_ndr/lsa.h | 4 ++++ librpc/idl/lsa.idl | 19 +++++++++++++++++++ 2 files changed, 23 insertions(+) diff --git a/librpc/gen_ndr/lsa.h b/librpc/gen_ndr/lsa.h index f101fb6f2c..ccd4e2eca9 100644 --- a/librpc/gen_ndr/lsa.h +++ b/librpc/gen_ndr/lsa.h @@ -17,6 +17,10 @@ #define LSA_ACCOUNT_READ ( (STANDARD_RIGHTS_READ_ACCESS|LSA_ACCOUNT_VIEW) ) #define LSA_ACCOUNT_WRITE ( (STANDARD_RIGHTS_READ_ACCESS|LSA_ACCOUNT_ADJUST_PRIVILEGES|LSA_ACCOUNT_ADJUST_QUOTAS|LSA_ACCOUNT_ADJUST_SYSTEM_ACCESS) ) #define LSA_ACCOUNT_EXECUTE ( (STANDARD_RIGHTS_EXECUTE_ACCESS) ) +#define LSA_SECRET_ALL_ACCESS ( (LSA_SECRET_QUERY_VALUE|LSA_SECRET_SET_VALUE|SEC_STD_DELETE|STANDARD_RIGHTS_READ_ACCESS|SEC_STD_WRITE_DAC|SEC_STD_WRITE_OWNER) ) +#define LSA_SECRET_READ ( (LSA_SECRET_QUERY_VALUE|STANDARD_RIGHTS_READ_ACCESS) ) +#define LSA_SECRET_WRITE ( (LSA_SECRET_SET_VALUE|STANDARD_RIGHTS_READ_ACCESS) ) +#define LSA_SECRET_EXECUTE ( (STANDARD_RIGHTS_READ_ACCESS) ) #define LSA_ENUM_TRUST_DOMAIN_MULTIPLIER ( 60 ) #define LSA_REF_DOMAIN_LIST_MULTIPLIER ( 32 ) #define LSA_ENUM_TRUST_DOMAIN_EX_MULTIPLIER ( 82 ) diff --git a/librpc/idl/lsa.idl b/librpc/idl/lsa.idl index 58e0ea9e26..ed95b919f9 100644 --- a/librpc/idl/lsa.idl +++ b/librpc/idl/lsa.idl @@ -213,6 +213,25 @@ import "misc.idl", "security.idl"; LSA_SECRET_QUERY_VALUE = 0x00000002 } lsa_SecretAccessMask; + const int LSA_SECRET_ALL_ACCESS = + (LSA_SECRET_QUERY_VALUE | + LSA_SECRET_SET_VALUE | + SEC_STD_DELETE | + STANDARD_RIGHTS_READ_ACCESS | + SEC_STD_WRITE_DAC | + SEC_STD_WRITE_OWNER); /* 0x000F0003 */ + + const int LSA_SECRET_READ = + (LSA_SECRET_QUERY_VALUE | + STANDARD_RIGHTS_READ_ACCESS); /* 0x00020002 */ + + const int LSA_SECRET_WRITE = + (LSA_SECRET_SET_VALUE | + STANDARD_RIGHTS_READ_ACCESS); /* 0x00020001 */ + + const int LSA_SECRET_EXECUTE = + (STANDARD_RIGHTS_READ_ACCESS); /* 0x00020000 */ + typedef [public,bitmap32bit] bitmap { LSA_TRUSTED_QUERY_DOMAIN_NAME = 0x00000001, LSA_TRUSTED_QUERY_CONTROLLERS = 0x00000002, -- cgit