s4:kdc: Add structure containing authentication policy auditing information

author Joseph Sutton <josephsutton@catalyst.net.nz>

Wed, 14 Jun 2023 22:18:00 +0000 (10:18 +1200)

committer Andrew Bartlett <abartlet@samba.org>

Thu, 15 Jun 2023 05:29:28 +0000 (05:29 +0000)
author Joseph Sutton <josephsutton@catalyst.net.nz>
Wed, 14 Jun 2023 22:18:00 +0000 (10:18 +1200)
committer Andrew Bartlett <abartlet@samba.org>
Thu, 15 Jun 2023 05:29:28 +0000 (05:29 +0000)
diff --git a/auth/authn_policy.h b/auth/authn_policy.h

index 65690ca2c4639d31134a578ff2316137a73e36c8..bb1d91ec701f52f2fd9824135f9c5a8c8ed0e440 100644 (file)
--- a/auth/authn_policy.h
+++ b/auth/authn_policy.h
@@ -41,4 +41,27 @@ NTSTATUS authn_policy_ntlm_apply_device_restriction(const char *client_account_n
                                                     const char *device_account_name,
                                                     const struct authn_ntlm_client_policy *client_policy);
  
+enum authn_audit_event {
+       AUTHN_AUDIT_EVENT_OK = 0,
+       AUTHN_AUDIT_EVENT_KERBEROS_DEVICE_RESTRICTION,
+       AUTHN_AUDIT_EVENT_KERBEROS_SERVER_RESTRICTION,
+       AUTHN_AUDIT_EVENT_NTLM_DEVICE_RESTRICTION,
+       AUTHN_AUDIT_EVENT_NTLM_SERVER_RESTRICTION,
+       AUTHN_AUDIT_EVENT_OTHER_ERROR,
+};
+
+enum authn_audit_reason {
+       AUTHN_AUDIT_REASON_NONE = 0,
+       AUTHN_AUDIT_REASON_DESCRIPTOR_INVALID,
+       AUTHN_AUDIT_REASON_DESCRIPTOR_NO_OWNER,
+       AUTHN_AUDIT_REASON_SECURITY_TOKEN_FAILURE,
+       AUTHN_AUDIT_REASON_ACCESS_DENIED,
+       AUTHN_AUDIT_REASON_FAST_REQUIRED,
+};
+
+struct authn_int64_optional {
+       bool is_present;
+       int64_t val;
+};
+
  #endif
diff --git a/auth/authn_policy_impl.h b/auth/authn_policy_impl.h

index 6f151b66c6c81693b6728c051b08c6479d8fe8bc..87a13253835ad53f74830446c055a2791bb94f5b 100644 (file)
--- a/auth/authn_policy_impl.h
+++ b/auth/authn_policy_impl.h
@@ -52,4 +52,16 @@ struct authn_server_policy {
         DATA_BLOB allowed_to_authenticate_to;
  };
  
+/* Auditing information. */
+
+struct authn_audit_info {
+       struct authn_policy *policy;
+       const struct auth_user_info_dc *client_info;
+       enum authn_audit_event event;
+       enum authn_audit_reason reason;
+       NTSTATUS policy_status;
+       const char *location;
+       struct authn_int64_optional tgt_lifetime_raw;
+};
+
  #endif
author	Joseph Sutton <josephsutton@catalyst.net.nz>
	Wed, 14 Jun 2023 22:18:00 +0000 (10:18 +1200)
committer	Andrew Bartlett <abartlet@samba.org>
	Thu, 15 Jun 2023 05:29:28 +0000 (05:29 +0000)
auth/authn_policy.h		patch \| blob \| blame \| history
auth/authn_policy_impl.h		patch \| blob \| blame \| history