[PATCH 7/7] s3-winbind: Allow sec_initial_uid() to store creds.

Mon Jul 1 05:02:48 MDT 2013

Signed-off-by: Andreas Schneider <asn at samba.org>
---
 source3/winbindd/winbindd_ccache_access.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/source3/winbindd/winbindd_ccache_access.c b/source3/winbindd/winbindd_ccache_access.c
index 5557b95..7787b3e 100644
--- a/source3/winbindd/winbindd_ccache_access.c
+++ b/source3/winbindd/winbindd_ccache_access.c
@@ -168,7 +168,7 @@ static bool check_client_uid(struct winbindd_cli_state *state, uid_t uid)
 		return False;
 	}
 
-	if (uid != ret_uid) {
+	if (uid != ret_uid && ret_uid != sec_initial_uid()) {
 		DEBUG(1, ("check_client_uid: Client lied about its uid: said %u, "
 			"actually was %u; denying access\n",
 			(unsigned int)uid, (unsigned int)ret_uid));
-- 
1.8.3.1


