svn commit: samba r4072 - in branches/SAMBA_4_0/source: auth librpc/idl

tridge at samba.org tridge at samba.org
Mon Dec 6 07:10:25 GMT 2004


Author: tridge
Date: 2004-12-06 07:10:25 +0000 (Mon, 06 Dec 2004)
New Revision: 4072

WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=4072

Log:
- changed the names of some of the well known sids to be more consistent

- added string constants for the important privileges. 

Modified:
   branches/SAMBA_4_0/source/auth/auth_util.c
   branches/SAMBA_4_0/source/librpc/idl/security.idl


Changeset:
Modified: branches/SAMBA_4_0/source/auth/auth_util.c
===================================================================
--- branches/SAMBA_4_0/source/auth/auth_util.c	2004-12-06 06:45:51 UTC (rev 4071)
+++ branches/SAMBA_4_0/source/auth/auth_util.c	2004-12-06 07:10:25 UTC (rev 4072)
@@ -387,13 +387,13 @@
 	 * don't really support) is the addition of Authenticated_Users.
 	 */
 	ptoken->user_sids[2] = dom_sid_parse_talloc(mem_ctx, SID_WORLD);
-	ptoken->user_sids[3] = dom_sid_parse_talloc(mem_ctx, SID_NETWORK);
+	ptoken->user_sids[3] = dom_sid_parse_talloc(mem_ctx, SID_NT_NETWORK);
 
 	if (is_guest) {
 		ptoken->user_sids[4] = dom_sid_parse_talloc(mem_ctx, SID_BUILTIN_GUESTS);
 		ptoken->num_sids++;
 	} else {
-		ptoken->user_sids[4] = dom_sid_parse_talloc(mem_ctx, SID_AUTHENTICATED_USERS);
+		ptoken->user_sids[4] = dom_sid_parse_talloc(mem_ctx, SID_NT_AUTHENTICATED_USERS);
 		ptoken->num_sids++;
 	}
 
@@ -453,7 +453,7 @@
 	
 	(*server_info)->guest = True;
 
-	(*server_info)->user_sid = dom_sid_parse_talloc((*server_info), SID_ANONYMOUS);
+	(*server_info)->user_sid = dom_sid_parse_talloc((*server_info), SID_NT_ANONYMOUS);
 	(*server_info)->primary_group_sid = dom_sid_parse_talloc((*server_info), SID_BUILTIN_GUESTS);
 	(*server_info)->n_domain_groups = 0;
 	(*server_info)->domain_groups = NULL;

Modified: branches/SAMBA_4_0/source/librpc/idl/security.idl
===================================================================
--- branches/SAMBA_4_0/source/librpc/idl/security.idl	2004-12-06 06:45:51 UTC (rev 4071)
+++ branches/SAMBA_4_0/source/librpc/idl/security.idl	2004-12-06 07:10:25 UTC (rev 4072)
@@ -115,11 +115,24 @@
 	const string SID_CREATOR_GROUP        = "S-1-3-1";
 
 	/* SECURITY_NT_AUTHORITY */
-	const string SID_NT_AUTHORITY        = "S-1-5";
-	const string SID_NETWORK             = "S-1-5-2";
-	const string SID_ANONYMOUS           = "S-1-5-7";
-	const string SID_AUTHENTICATED_USERS = "S-1-5-11";
-	const string SID_SYSTEM              = "S-1-5-18";
+	const string SID_NT_AUTHORITY             = "S-1-5";
+	const string SID_NT_DIALUP                = "S-1-5-1";
+	const string SID_NT_NETWORK               = "S-1-5-2";
+	const string SID_NT_BATCH                 = "S-1-5-3";
+	const string SID_NT_INTERACTIVE           = "S-1-5-4";
+	const string SID_NT_SERVICE               = "S-1-5-6";
+	const string SID_NT_ANONYMOUS             = "S-1-5-7";
+	const string SID_NT_PROXY                 = "S-1-5-8";
+	const string SID_NT_ENTERPRISE_DCS        = "S-1-5-9";
+	const string SID_NT_SELF                  = "S-1-5-10";
+	const string SID_NT_AUTHENTICATED_USERS   = "S-1-5-11";
+	const string SID_NT_RESTRICTED            = "S-1-5-12";
+	const string SID_NT_TERMINAL_SERVER_USERS = "S-1-5-13";
+	const string SID_NT_REMOTE_INTERACTIVE    = "S-1-5-14";
+	const string SID_NT_THIS_ORGANISATION     = "S-1-5-15";
+	const string SID_NT_SYSTEM                = "S-1-5-18";
+	const string SID_NT_LOCAL_SERVICE         = "S-1-5-19";
+	const string SID_NT_NETWORK_SERVICE       = "S-1-5-20";
 
 	/* SECURITY_BUILTIN_DOMAIN_RID */
 	const string SID_BUILTIN                   = "S-1-5-32";
@@ -133,6 +146,36 @@
 	const string SID_BUILTIN_BACKUP_OPERATORS  = "S-1-5-32-551";
 	const string SID_BUILTIN_REPLICATOR        = "S-1-5-32-552";
 
+
+	/*
+	  privilege names
+	*/
+	const string SEC_PRIV_SECURITY                 = "SeSecurityPrivilege";
+	const string SEC_PRIV_BACKUP                   = "SeBackupPrivilege";
+	const string SEC_PRIV_RESTORE                  = "SeRestorePrivilege";
+	const string SEC_PRIV_SYSTEMTIME               = "SeSystemtimePrivilege";
+	const string SEC_PRIV_SHUTDOWN                 = "SeShutdownPrivilege";
+	const string SEC_PRIV_REMOTE_SHUTDOWN          = "SeRemoteShutdownPrivilege";
+	const string SEC_PRIV_TAKE_OWNERSHIP           = "SeTakeOwnershipPrivilege";
+	const string SEC_PRIV_DEBUG                    = "SeDebugPrivilege";
+	const string SEC_PRIV_SYSTEM_ENVIRONMENT       = "SeSystemEnvironmentPrivilege";
+	const string SEC_PRIV_SYSTEM_PROFILE           = "SeSystemProfilePrivilege";
+	const string SEC_PRIV_PROFILE_SINGLE_PROCESS   = "SeProfileSingleProcessPrivilege";
+	const string SEC_PRIV_INCREASE_BASE_PRIORITY   = "SeIncreaseBasePriorityPrivilege";
+	const string SEC_PRIV_LOAD_DRIVER              = "SeLoadDriverPrivilege";
+	const string SEC_PRIV_CREATE_PAGEFILE          = "SeCreatePagefilePrivilege";
+	const string SEC_PRIV_INCREASE_QUOTA           = "SeIncreaseQuotaPrivilege";
+	const string SEC_PRIV_CHANGE_NOTIFY            = "SeChangeNotifyPrivilege";
+	const string SEC_PRIV_UNDOCK                   = "SeUndockPrivilege";
+	const string SEC_PRIV_MANAGE_VOLUME            = "SeManageVolumePrivilege";
+	const string SEC_PRIV_IMPERSONATE              = "SeImpersonatePrivilege";
+	const string SEC_PRIV_CREATE_GLOBAL            = "SeCreateGlobalPrivilege";
+	const string SEC_PRIV_ENABLE_DELEGATION        = "SeEnableDelegationPrivilege";
+	const string SEC_PRIV_INTERACTIVE_LOGON        = "SeInteractiveLogonRight";
+	const string SEC_PRIV_NETWORK_LOGON            = "SeNetworkLogonRight";
+	const string SEC_PRIV_REMOTE_INTERACTIVE_LOGON = "SeRemoteInteractiveLogonRight";
+
+
 	/* a domain SID. Note that unlike Samba3 this contains a pointer,
 	   so you can't copy them using assignment */
 	typedef [public,noprint] struct {



More information about the samba-cvs mailing list