From ae0115d8dbf05c52c631ea915f036a2129cd033e Mon Sep 17 00:00:00 2001
From: Andrew Bartlett <abartlet@samba.org>
Date: Mon, 23 Jul 2007 02:10:11 +0000
Subject: r23994: Finish my work to ensure that non-root and non-administrator
 users cannot vampire, provision or upgrade a Samba4 server via SWAT.

(The previous commit was an accident, and not complete).

This should get Samba4 closer to being 'secure' for an alpha release.

Andrew Bartlett
(This used to be commit 3b6695de36bcea8a76001c9a5585eac871646450)
---
 webapps/login.esp | 1 +
 1 file changed, 1 insertion(+)

(limited to 'webapps/login.esp')

diff --git a/webapps/login.esp b/webapps/login.esp
index 8d6c049d02..9e9f6f9903 100644
--- a/webapps/login.esp
+++ b/webapps/login.esp
@@ -39,6 +39,7 @@ f.display();
 			session.authinfo.domain = auth.domain;
 			session.authinfo.credentials = creds;
 			session.authinfo.session_info = auth.session_info;
+			session.authinfo.user_class = auth.user_class;
 			
 			/* if the user was asking for the login page, then now
 			   redirect them to the main page. Otherwise just
-- 
cgit