search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: 93ba172) | patch
s4-ldbmodules: Added new module aclread to handle access checks on LDAP search
commit99ac4e92ff3205f80ef0fe823cbbd05eed7d2bb6
authorNadezhda Ivanova <nivanova@samba.org>
Sun, 26 Sep 2010 18:47:47 +0000 (26 11:47 -0700)
committerNadezhda Ivanova <nivanova@samba.org>
Sun, 26 Sep 2010 22:36:09 +0000 (26 15:36 -0700)
tree369b26b108b2b42119c4548e98da9bda3e81f9ectree | snapshot (tar.gz zip)
parent93ba17285d8afb0d6e4040bf443e88ca4ad5147ecommit | diff
s4-ldbmodules: Added new module aclread to handle access checks on LDAP search

It is currently enabled only if the request comes from the LDAP server, and is
disabled  by default. Use acl:search=true in smb.conf to enable it.
It filters out all objects the user is not allowed to see, and all attributes
the user does not have RP on. Extended access not supported yet.
source4/dsdb/samdb/ldb_modules/acl_read.c [new file with mode: 0644] blob
source4/dsdb/samdb/ldb_modules/config.mk diff | blob | blame | history
source4/dsdb/samdb/ldb_modules/samba_dsdb.c diff | blob | blame | history
source4/dsdb/samdb/ldb_modules/wscript_build diff | blob | blame | history
reg import