From 77e67163daaa670ee43ddbc4fd3fd3e8c3c38d49 Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Thu, 10 Feb 2011 21:04:01 +1100
Subject: s3-auth consolidate create_local_token() into make_server_info_krb5()

This ensures that all callers don't need to each add builtin groups
and privileges to the user's token

Andrew Bartlett
---
 source3/smbd/sesssetup.c | 20 +-------------------
 1 file changed, 1 insertion(+), 19 deletions(-)

(limited to 'source3/smbd/sesssetup.c')

diff --git a/source3/smbd/sesssetup.c b/source3/smbd/sesssetup.c
index c5d44c6185..57b0b68be7 100644
--- a/source3/smbd/sesssetup.c
+++ b/source3/smbd/sesssetup.c
@@ -372,6 +372,7 @@ static void reply_spnego_kerberos(struct smb_request *req,
 	ret = make_server_info_krb5(mem_ctx,
 				    user, domain, real_username, pw,
 				    logon_info, map_domainuser_to_guest,
+				    username_was_mapped,
 				    &server_info);
 	if (!NT_STATUS_IS_OK(ret)) {
 		DEBUG(1, ("make_server_info_krb5 failed!\n"));
@@ -382,25 +383,6 @@ static void reply_spnego_kerberos(struct smb_request *req,
 		return;
 	}
 
-	server_info->nss_token |= username_was_mapped;
-
-	/* we need to build the token for the user. make_server_info_guest()
-	   already does this */
-
-	if ( !server_info->security_token ) {
-		ret = create_local_token( server_info );
-		if ( !NT_STATUS_IS_OK(ret) ) {
-			DEBUG(10,("failed to create local token: %s\n",
-				nt_errstr(ret)));
-			data_blob_free(&ap_rep);
-			data_blob_free(&session_key);
-			TALLOC_FREE( mem_ctx );
-			TALLOC_FREE( server_info );
-			reply_nterror(req, nt_status_squash(ret));
-			return;
-		}
-	}
-
 	if (!is_partial_auth_vuid(sconn, sess_vuid)) {
 		sess_vuid = register_initial_vuid(sconn);
 	}
-- 
cgit