git.samba.org / samba.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
s4:kdc: Add resource SID compression
[samba.git] / librpc / idl / auth.idl
diff --git a/librpc/idl/auth.idl b/librpc/idl/auth.idl
index a6b4a118be2fca7d5a9afcb4294001da9eba9b10..351a2fcfb18af110da07741fb1c5d417c3d6b36b 100644 (file)
--- a/librpc/idl/auth.idl
+++ b/librpc/idl/auth.idl
@@ -100,12 +100,20 @@ interface auth
        } ticket_type;
 
        /*
-        * Used to indicate whether or not to include resource groups in the
-        * formation of SamInfo or a PAC.
+        * Used to indicate whether or not to include or disregard resource
+        * groups when forming a SamInfo structure, user_info_dc structure, or
+        * PAC, and whether or not to compress them when forming a PAC.
+        *
+        * When producing a TGT, existing resource groups are always copied
+        * unmodified into the PAC. When producing a service ticket, existing
+        * resource groups and resource groups in other domains are always
+        * discarded.
         */
        typedef enum {
-               AUTH_INCLUDE_RESOURCE_GROUPS = 0,
-               AUTH_EXCLUDE_RESOURCE_GROUPS = 1
+               AUTH_GROUP_INCLUSION_INVALID = 0, /* require invalid values to be handled. */
+               AUTH_INCLUDE_RESOURCE_GROUPS = 2,
+               AUTH_INCLUDE_RESOURCE_GROUPS_COMPRESSED = 3,
+               AUTH_EXCLUDE_RESOURCE_GROUPS = 4
        } auth_group_inclusion;
 
        typedef [public] struct {
Samba Shared Repository