CVS update: samba/source/auth

[Gerald (Jerry) Carter]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 7 Jul 2003 jerry at samba.org wrote:

> 
> Date:	Mon Jul  7 05:11:09 2003
> Author:	jerry
> 
> Update of /data/cvs/samba/source/auth
> In directory dp.samba.org:/tmp/cvs-serv10743/auth
> 
> Modified Files:
>       Tag: SAMBA_3_0
> 	auth_util.c auth_winbind.c 
> Log Message:
> and so it begins....
> 
> * remove idmap_XX_to_XX calls from smbd.  Move back to the
>   the winbind_XXX and local_XXX calls used in 2.2
> 
> * all uid/gid allocation must involve winbindd now
> 
> * move flags field around in winbindd_request struct
> 
> * add WBFLAG_QUERY_ONLY option to winbindd_sid_to_[ug]id()
>   to prevent automatic allocation for unknown SIDs
> 
> * add 'winbind trusted domains only' parameter to force a domain member
>   server to use matching users names from /etc/passwd for its domain
>   (needed for domain member of a Samba domain)
> 
> * rename 'idmap only' to 'enable rid algorithm' for better clarity
>   (defaults to "yes")
> 
> code has been tested on 
> 
>   * domain member of native mode 2k domain
>   * ads domain member of native mode 2k domain
>   * domain member of NT4 domain
>   * domain member of Samba domain
>   * Samba PDC running winbindd with trusts
> 
> Logons tested using 2k clients and smbclient as domain users
> and trusted users. Tested both 'winbind trusted domains only = [yes|no]'
> 
> This will be a long week of changes.  The next item on the list is 
> winbindd_passdb.c & machine trust accounts not in /etc/passwd (done
> via winbindd_passdb)

Also fixed a misc bug that prevented a domain member from finding its 
machine trust account password when authenticating users from remote 
domains.






cheers, jerry
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/

iD8DBQE/CQGEIR7qMdg1EfYRAqvEAJ9BwcONTp/23+EvtLEMp0lVgKvC0gCfQSOr
3c6WzjwVZe62S83cKrxvWS0=
=1iTt
-----END PGP SIGNATURE-----