smb_token.h revision 9fb67ea305c66b6a297583b9b0db6796b0dfe497
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License (the "License").
* You may not use this file except in compliance with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
* Copyright 2010 Sun Microsystems, Inc. All rights reserved.
* Use is subject to license terms.
*/
#ifndef _SMB_TOKEN_H
#define _SMB_TOKEN_H
#include <smbsrv/netrauth.h>
#include <smbsrv/smb_privilege.h>
#ifdef __cplusplus
extern "C" {
#endif
/*
* User Session Key
*
* This is part of the MAC key which is required for signing SMB messages.
*/
typedef struct smb_session_key {
/*
* Access Token
*
* An access token identifies a user, the user's privileges and the
* list of groups of which the user is a member. This information is
* used when access is requested to an object by comparing this
* information with the DACL in the object's security descriptor.
*
* There should be one unique token per user per session per client.
*
* Access Token Flags
*
* SMB_ATF_GUEST Token belongs to guest user
* SMB_ATF_ANON Token belongs to anonymous user
* and it's only good for IPC Connection.
* SMB_ATF_POWERUSER Token belongs to a Power User member
* SMB_ATF_BACKUPOP Token belongs to a Power User member
* SMB_ATF_ADMIN Token belongs to a Domain Admins member
*/
#define SMB_ATF_GUEST 0x00000001
#define SMB_ATF_ANON 0x00000002
#define SMB_ATF_POWERUSER 0x00000004
#define SMB_ATF_BACKUPOP 0x00000008
#define SMB_ATF_ADMIN 0x00000010
#define SMB_POSIX_GRPS_SIZE(n) \
/*
* It consists of the primary and supplementary POSIX groups.
*/
typedef struct smb_posix_grps {
typedef struct smb_token {
char *tkn_account_name;
char *tkn_domain_name;
} smb_token_t;
/*
* Details required to authenticate a user.
*/
typedef struct smb_logon {
char *lg_username; /* requested username */
char *lg_domain; /* requested domain */
char *lg_e_username; /* effective username */
char *lg_e_domain; /* effective domain */
char *lg_workstation;
int lg_native_os;
int lg_native_lm;
} smb_logon_t;
#ifndef _KERNEL
void smb_logon_abort(void);
void smb_token_destroy(smb_token_t *);
void smb_token_log(smb_token_t *);
void smb_logon_free(smb_logon_t *);
#else /* _KERNEL */
void smb_token_free(smb_token_t *);
#endif /* _KERNEL */
#ifdef __cplusplus
}
#endif
#endif /* _SMB_TOKEN_H */