libcli/security/security_token.h

   1 /*
   2    Unix SMB/CIFS implementation.
   3
   4    security descriptor utility functions
   5
   6    Copyright (C) Andrew Tridgell                2004
   7    Copyright (C) Andrew Bartlett                2010
   8    Copyright (C) Stefan Metzmacher              2005
   9
  10    This program is free software; you can redistribute it and/or modify
  11    it under the terms of the GNU General Public License as published by
  12    the Free Software Foundation; either version 3 of the License, or
  13    (at your option) any later version.
  14
  15    This program is distributed in the hope that it will be useful,
  16    but WITHOUT ANY WARRANTY; without even the implied warranty of
  17    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  18    GNU General Public License for more details.
  19
  20    You should have received a copy of the GNU General Public License
  21    along with this program.  If not, see <http://www.gnu.org/licenses/>.
  22 */
  23
  24 #ifndef _LIBCLI_SECURITY_SECURITY_TOKEN_H_
  25 #define _LIBCLI_SECURITY_SECURITY_TOKEN_H_
  26
  27 #include "replace.h"
  28 #include "lib/util/data_blob.h"
  29 #include "librpc/gen_ndr/security.h"
  30
  31 #define PRIMARY_USER_SID_INDEX 0
  32 #define PRIMARY_GROUP_SID_INDEX 1
  33 #define PRIMARY_SIDS_COUNT 2
  34 #define REMAINING_SIDS_INDEX 2
  35
  36 /*
  37   return a blank security token
  38 */
  39 struct security_token *security_token_initialise(TALLOC_CTX *mem_ctx);
  40
  41 /****************************************************************************
  42  prints a struct security_token to debug output.
  43 ****************************************************************************/
  44 void security_token_debug(int dbg_class, int dbg_lev, const struct security_token *token);
  45
  46 bool security_token_is_sid(const struct security_token *token, const struct dom_sid *sid);
  47
  48 bool security_token_is_system(const struct security_token *token);
  49
  50 bool security_token_is_anonymous(const struct security_token *token);
  51
  52 bool security_token_has_sid(const struct security_token *token, const struct dom_sid *sid);
  53
  54 /*
  55  * Return any of the domain sids found in the token matching "domain"
  56  * in _domain_sid, makes most sense if you just found one.
  57  */
  58 size_t security_token_count_flag_sids(const struct security_token *token,
  59                                       const struct dom_sid *prefix_sid,
  60                                       size_t num_flags,
  61                                       const struct dom_sid **_flag_sid);
  62
  63 bool security_token_has_builtin_guests(const struct security_token *token);
  64
  65 bool security_token_has_builtin_administrators(const struct security_token *token);
  66
  67 bool security_token_has_nt_authenticated_users(const struct security_token *token);
  68
  69 bool security_token_has_enterprise_dcs(const struct security_token *token);
  70
  71 #endif