DEBUG(2,("Retrieving alias [%s]\n", group->name));
if(ldap_get_attribute("rid", temp)) {
- group->rid = atoi(temp);
+ group->rid = strtol(temp, NULL, 16);
} else {
DEBUG(0, ("Missing rid\n"));
return NULL;
ldap_make_mod(mods, LDAP_MOD_ADD, "objectClass", "sambaAlias");
ldap_make_mod(mods, LDAP_MOD_ADD, "cn", group->name);
- slprintf(temp, sizeof(temp)-1, "%d", (gid_t)(-1));
- ldap_make_mod(mods, LDAP_MOD_ADD, "gidNumber", temp);
-
- slprintf(temp, sizeof(temp)-1, "%d", group->rid);
+ slprintf(temp, sizeof(temp)-1, "%x", group->rid);
ldap_make_mod(mods, LDAP_MOD_ADD, "rid", temp);
}
}
+/************************************************************************
+ Create a alias member entry
+ ************************************************************************/
+
+static BOOL ldapalias_memmods(DOM_SID *user_sid, LDAPMod ***mods,
+ int operation)
+{
+ pstring member;
+ pstring sid_str;
+ fstring name;
+ uint8 type;
+
+ if (lookup_sid(user_sid, name, &type))
+ return (False);
+ sid_to_string(sid_str, user_sid);
+
+ slprintf(member, sizeof(member)-1, "%s,%s,%d", name, sid_str, type);
+
+ *mods = NULL;
+ ldap_make_mod(mods, operation, "member", member);
+ return True;
+}
+
+
/***************************************************************
Begin/end smbgrp enumeration.
****************************************************************/
if (lp_server_role() == ROLE_DOMAIN_NONE)
return NULL;
- if (!ldap_open_connection(False))
+ if (!ldap_connect())
return NULL;
ldap_search_for("objectClass=sambaAlias");
static void ldapalias_enumclose(void *vp)
{
- ldap_close_connection();
+ ldap_disconnect();
}
fstring filter;
LOCAL_GRP *ret;
- if(!ldap_open_connection(False))
+ if(!ldap_connect())
return (False);
slprintf(filter, sizeof(filter)-1,
ret = ldapalias_getgrp(&localgrp, members, num_membs);
- ldap_close_connection();
+ ldap_disconnect();
return ret;
}
fstring filter;
LOCAL_GRP *ret;
- if(!ldap_open_connection(False))
+ if(!ldap_connect())
return (False);
slprintf(filter, sizeof(filter)-1,
ldap_search_for(filter);
ret = ldapalias_getgrp(&localgrp, members, num_membs);
- ldap_close_connection();
+ ldap_disconnect();
return ret;
}
fstring filter;
LOCAL_GRP *ret;
- if(!ldap_open_connection(False))
+ if(!ldap_connect())
return (False);
slprintf(filter, sizeof(filter)-1,
- "(&(rid=%d)(objectClass=sambaAlias))", grp_rid);
+ "(&(rid=%x)(objectClass=sambaAlias))", grp_rid);
ldap_search_for(filter);
ret = ldapalias_getgrp(&localgrp, members, num_membs);
- ldap_close_connection();
+ ldap_disconnect();
return ret;
}
return ldapalias_getgrp(&localgrp, members, num_membs);
}
+
+/*************************************************************************
+ Add/modify/delete aliases.
+ *************************************************************************/
+
static BOOL ldapalias_addgrp(LOCAL_GRP *group)
{
LDAPMod **mods;
+ if (!ldap_allocaterid(&group->rid))
+ {
+ DEBUG(0,("RID generation failed\n"));
+ return (False);
+ }
+
ldapalias_grpmods(group, &mods, LDAP_MOD_ADD);
return ldap_makemods("cn", group->name, mods, True);
}
return ldap_makemods("cn", group->name, mods, False);
}
+static BOOL ldapalias_delgrp(uint32 grp_rid)
+{
+ fstring filter;
+ char *dn;
+ int err;
+
+ if (!ldap_connect())
+ return (False);
+
+ slprintf(filter, sizeof(filter)-1,
+ "(&(rid=%x)(objectClass=sambaAlias))", grp_rid);
+ ldap_search_for(filter);
+
+ if (!ldap_entry || !(dn = ldap_get_dn(ldap_struct, ldap_entry)))
+ {
+ ldap_disconnect();
+ return (False);
+ }
+
+ err = ldap_delete_s(ldap_struct, dn);
+ free(dn);
+ ldap_disconnect();
+
+ if (err != LDAP_SUCCESS)
+ {
+ DEBUG(0, ("delete: %s\n", ldap_err2string(err)));
+ return (False);
+ }
+
+ return True;
+}
+
+
+/*************************************************************************
+ Add users to/remove users from aliases.
+ *************************************************************************/
+
+static BOOL ldapalias_addmem(uint32 grp_rid, DOM_SID *user_sid)
+{
+ LDAPMod **mods;
+ fstring rid_str;
+
+ slprintf(rid_str, sizeof(rid_str)-1, "%x", grp_rid);
+
+ if(!ldapalias_memmods(user_sid, &mods, LDAP_MOD_ADD))
+ return (False);
+
+ return ldap_makemods("rid", rid_str, mods, False);
+}
+
+static BOOL ldapalias_delmem(uint32 grp_rid, DOM_SID *user_sid)
+{
+ LDAPMod **mods;
+ fstring rid_str;
+
+ slprintf(rid_str, sizeof(rid_str)-1, "%x", grp_rid);
+
+ if(!ldapalias_memmods(user_sid, &mods, LDAP_MOD_DELETE))
+ return (False);
+
+ return ldap_makemods("rid", rid_str, mods, False);
+}
+
+
+/*************************************************************************
+ Return aliases that a user is in.
+ *************************************************************************/
+
static BOOL ldapalias_getusergroups(const char *name, LOCAL_GRP **groups,
int *num_grps)
{
fstring filter;
int i;
+ if(!ldap_connect())
+ return (False);
+
slprintf(filter, sizeof(pstring)-1,
"(&(member=%s,*)(objectclass=sambaAlias))", name);
ldap_search_for(filter);
if(!i) {
*groups = NULL;
+ ldap_disconnect();
return (True);
}
i--;
} while(ldapalias_getgrp(&grouplist[i], NULL, NULL) && (i > 0));
+ ldap_disconnect();
return (True);
}
ldapalias_addgrp,
ldapalias_modgrp,
+ ldapalias_delgrp,
+
+ ldapalias_addmem,
+ ldapalias_delmem,
ldapalias_getusergroups
};
git.samba.org / samba.git / blobdiff