From 8d3a2914d8dfae4b9e4e9537aea87748d5456bb4 Mon Sep 17 00:00:00 2001
From: Stefan Metzmacher <metze@samba.org>
Date: Thu, 14 Jun 2012 17:52:23 +0200
Subject: [PATCH] auth.idl: mark confidential attributes as [noprint]

We should allow NDR_PRINT_DEBUG() to log them.

TODO: we could add some more magic which logs it at level 100.

metze
---
 librpc/idl/auth.idl | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/librpc/idl/auth.idl b/librpc/idl/auth.idl
index 2451d2bab77..b0494f99ecf 100644
--- a/librpc/idl/auth.idl
+++ b/librpc/idl/auth.idl
@@ -83,8 +83,8 @@ interface auth
 		uint32 num_sids;
 		[size_is(num_sids)] dom_sid sids[*];
 		auth_user_info *info;
-		DATA_BLOB user_session_key;
-		DATA_BLOB lm_session_key;
+		[noprint] DATA_BLOB user_session_key;
+		[noprint] DATA_BLOB lm_session_key;
 	} auth_user_info_dc;
 
 	typedef [public] struct {
@@ -104,13 +104,13 @@ interface auth
 		 * Bottom line, it is not the same as the session keys in info3.
 		 */
 
-		DATA_BLOB session_key;
+		[noprint] DATA_BLOB session_key;
 
 		[value(NULL), ignore] cli_credentials *credentials;
 	} auth_session_info;
 
 	typedef [public] struct {
 		auth_session_info *session_info;
-		DATA_BLOB exported_gssapi_credentials;
+		[noprint] DATA_BLOB exported_gssapi_credentials;
 	} auth_session_info_transport;
 }
-- 
2.11.4.GIT